Skip to content

Certified in Risk and Information Systems Control (CRISC)

Online Course


Training Deals

Summary

Price
Enquire to get more info on pricing
Finance options

Online

E-Commerce

PO Booking

Telephone

Study method
Online
Duration
Self-paced
Qualification
No formal qualification
Additional info
  • Tutor is available to students

24 students enquired about this course

Add to basket or enquire

Overview

Certified Risk and Information Systems Control (CRISC) Course Outline

The Certified Risk Information Systems Control training course provides delegates with valuable technical skills, which ensure success and prosperity in the realm of IT security. The CRISC certification is a powerful manifestation of proficiency and expertise regarding various areas of risk. As well as this, CRISC demonstrates a commitment to IT security operations and enterprises, and a willingness to deliver quality within their profession. The demand for CRISC qualified individuals is ever-growing, and CRISC has been established as one of the most desirable and preferable IT security certifications worldwide.

During this course, delegates will become knowledgeable of the methods and processes associated with risk identification, risk analysis, responding to risk, and controlling risk. Consequently, individuals will acquire experience in determining and evaluating specific risks and will learn how to achieve business objectives via the design, implementation, observation, and preservation of risk-based, competent information security disciplines. As well as this, delegates will discover how to address challenges that they may encounter in the field of IT and will be able to adapt CRISC principles to their own organisation.

Preparation for the CRISC examination will be a primary focus throughout this training course. Delegates will explore all four areas of the CRISC exam, and candidates will also be provided with a complete revision programme consisting of knowledge assessments, discussions, exercises, and model questions.

Description

Certified Risk and Information Systems Control (CRISC) Course Outline

This training course will focus on the four domains of Certified Risk Information Systems Control. The course outline encompasses:

  • An Introduction to CRISC
  • Course Objectives
  • About CRISC
  • CRISC Domain Overview
  • CRISC Value

Domain 1: Risk Identification

  • Risk Identification Objectives
  • Risk Identification Overview
  • Concepts of IT Risk
  • Risk Management Standards
  • Risk Identification Frameworks
  • Assets
  • Threats
  • Vulnerabilities
  • Elements of Risk
  • Penetration Testing
  • COBIT 5
  • ISO
  • Risk Scenarios
  • Communicating Risk
  • Risk Awareness
  • Organisational Structures and Culture
  • Risk within the Enterprise
  • Compliance
  • Principles of Risk
  • Conclusion

Domain 2: Risk Assessment

  • Risk Assessment Objectives
  • Risk Assessment Overview
  • Risk Assessment Techniques
  • Risk Assessment Analysis
  • Methodologies
  • Control Assessment
  • Risk Evaluation and Impact Assessment
  • Risk and Control Analysis
  • Third Party Management
  • System Development Lifecycle
  • Developing Technologies
  • Enterprise Architecture
  • Conclusion

Domain 3: Risk Response and Mitigation

  • Risk Response and Mitigation Objectives
  • Risk Response and Mitigation Overview
  • Risk Response Options
  • Response Analysis
  • Risk Response Plans
  • Control Objectives and Practices
  • Control Ownership
  • Systems Control Design Implementation
  • Control and Countermeasures
  • Business Continuity
  • Disaster Recovery
  • Risk Accountability
  • Inherent and Residual Risk
  • Conclusion

Domain 4: Risk and Control Monitoring and Reporting

  • Risk and Control Monitoring and Reporting Objectives
  • Risk and Control Monitoring and Reporting Overview
  • Key Risk Indicators (KRIs)
  • Data Collection
  • Monitoring Controls
  • Control Assessments
  • Penetration Testing
  • Vulnerability Assessments
  • Third Party Assurance
  • Maturity Model Assessment
  • Techniques for Improvement
  • Capability Maturity Model
  • IT Risk Profile
  • Conclusion


This teaching will be supported by discussion sessions and exercises to enhance the delegate’s understanding and enable them to master the material. There will also be final exam preparation and delegates will have the opportunity to attempt practice questions.

Who is this course for?

Anybody wishing to gain CRISC certification.

Requirements

Who should attend this CRISC Training Course?

Anyone who manages IT risk and information security controls within their job role and would like to prepare for the CRISC exam.

Prerequisites

The course itself has no prerequisites, but you should be familiar with the CRISC job practice domains. To receive CRISC certification, you must meet the work experience requirements of 3 years of experience across at least 2 of the four CRISC domains, some of which must be in either domain 1 or 2. The four domains are as follows:

  • IT Risk Identification
  • IT Risk Assessment
  • Risk Response and Mitigation
  • Risk and Control Monitoring and Reporting

Questions and answers

Reviews

Currently there are no reviews for this course. Be the first to leave a review.

FAQs