Certified In Risk And Information Systems Control (CRISC)

Home /
IT Security /
CRISC Training /
Certified In Risk And Information Systems Control (CRISC)

Learn how to achieve business objectives by the design, implementation and observation.
Understand the techniques and procedures allied with risk identification.
Gain an understanding of how to respond and control risk.

Book Now

Certified In Risk And Information Systems Control (CRISC)

Overview 1

Outlines 2

FAQs 3

What's Included 4

Course Overview

CRISC certification allows us to evaluate and manage risk, which is specially designed to help IT, professionals. This course enables delegates to design, implement, monitor, and maintain controls for enterprises. It covers topics, i.e. risk identification, assessment, response, and control monitoring and also includes the four most important domains of CRISC, which are:

IT risk identification
IT risk assessment
Risk response and mitigation
Risk and control monitoring and reporting

During this 3-days training course, delegates will gain knowledge of the methods and processes allied with risk identification, risk analysis, responding to risk, and controlling risk. Preparing for the CRISC exam will be an important focus throughout the training course. Delegates will learn about all the four domains of the CRISC exam, and they will also be provided with a whole revision program with knowledge assessment, discussions, exercises and model questions.

Course Outline

Introduction to CRISC
Objectives
About CRISC
Overview of CRISC Domain
Value of CRISC

Domain 1: Risk Identification

Risk Identification Objectives and Overview
Concepts of IT Risk
Risk Management Standards
Risk Identification Frameworks
Assets
Threats
Vulnerabilities
Elements of Risk
Penetration Testing
COBIT 5
ISO
Risk Scenarios
Communicating Risk
Risk Awareness
Organisational Structures and Culture
Risk within the Enterprise
Compliance
Principles of Risk
Conclusion

Domain 2: Risk Assessment

Risk Assessment Objectives
Risk Assessment Overview
Risk Assessment Techniques
Risk Assessment Analysis
Methodologies
Control Assessment
Risk Evaluation and Impact Assessment
Risk and Control Analysis
Third-Party Management
System Development Lifecycle
Developing Technologies
Enterprise Architecture
Conclusion

Domain 3: Risk Response and Mitigation

Risk Response and Mitigation Objectives and Overview
Risk Response Options
Response Analysis
Plans Risk Response
Control Objectives and Practices
Control Ownership
Systems Control Design Implementation
Control and Countermeasures
Business Continuity
Disaster Recovery
Risk Accountability
Inherent and Residual Risk
Conclusion

Domain 4: Risk, Control Monitoring and Reporting

Risk and Control Monitoring and Reporting Objectives
Risk and Control Monitoring and Reporting Overview
Key Risk Indicators (KRIs)
Data Collection
Monitoring Controls
Control Assessments
Penetration Testing
Vulnerability Assessments
Third-Party Assurance
Maturity Model Assessment
Techniques for Improvement
Capability Maturity Model
IT Risk Profile
Conclusion

The course itself has no prerequisites, but delegates should be aware of the CRISC job practice domains. To gain the CRISC certification, the representatives must meet the requirements of 3 years of experience across as a minimum 2 of the four CRISC domains and, some of which must be in domain 1 or 2.

Anyone who manages info security controls and IT risk inside their job role and would like to prepare for the CRISC exam can attend this course.

The Certified In Risk And Information Systems Control (CRISC) Cost in United Kingdom Starts from £6595.00

Please see our CRISC Training courses available in United Kingdom

Get More Information

Still have questions? We’re happy to help.