- United Arab Emirates
- Saudi Arabia
- Qatar
- Oman
- Kuwait
- Bahrain
- Pakistan
- Egypt
- Libya
- Afghanistan
- Sudan
- Cyprus
- Fiji
- Ethiopia
- Ghana
- Kenya
- Nigeria
- Mauritius
- South Africa
- Zambia
- Zimbabwe
- Mozambique
- Uganda
- Tanzania
- Angola
- And Growing up
Certified in Risk and Information Systems Control [CRISC] Course
★★★★★ 4.5/5
The technical knowledge and practices that CRISC evaluates and promotes are the building blocks of victory in the field. After qualifying for CRISC certification, a professional can be hired as a senior IT auditor, security engineer architect, IT security analyst, or information assurance program manager.
The CRISC is designed for professionals who have three years of experience in professional-level risk control and management. To get the CRISC credential, a professional must: Concur to abide by the CRISC Continuing Education Policy Pass the CRISC exam Stick to the ISACA Code of Professional Ethics.
Training Options
Classroom Training
Online Instructor Led
Onsite Training
Course Information
Domain 1: Governance
Module 1: Organisational Governance
- Organisational Strategy, Goals and Objectives
- Organisational Structure, Roles and Responsibilities
- Organisational Culture
- Policies and Standards
- Business Process Review
- Organisational Assets
Module 2: Risk Governance
- Enterprise Risk Management and Risk Management Frameworks
- Three Lines of Defence
- Risk Profile
- Risk Appetite, Tolerance and Capacity
- Legal, Regulatory and Contractual Requirements
- Professional Ethics of Risk Management
Domain 2: IT Risk Assessment
Module 3: IT Risk Identification
- Risk Events
- Threat Modelling and Threat Landscape
- Vulnerability and Control Deficiency Analysis
- Risk Scenario Development
Module 4: IT Risk Analysis, Evaluation and Assessment
- Risk Assessment Concepts, Standards and Frameworks
- Risk Register
- Risk Analysis Methodologies
- Business Impact Analysis
- Inherent, Residual and Current Risk
» Show More 👇
Domain 3: Risk Response and Reporting
Module 5: Risk Response
- Risk and Control Ownership
- Risk Treatment/Risk Response Options
- Third Party Risk Management
- Issue, Finding and Expectation Management
- Management of Emerging Risk
Module 6: Control, Design and Implementation
- Control Types, Standards and Frameworks
- Control Design, Selection and Analysis
- Control Implementation
- Control Testing and Effectiveness Evaluation
Module 7: Risk Monitoring and Reporting
- Risk Treatment Plans
- Data Collection, Aggregation, Analysis and Validation
- Risk and Control Monitoring Techniques
- Key Performance Indicators
- Key Risk Indicators
- Key Control Indicators
Domain 4: Information Technology and Security
Module 8: Information Technology Principles
- Enterprise Architecture
- IT Operations Management
- Project Management
- Enterprise Resiliency
- Data Life Cycle Management
- System Development Life Cycle
- Emerging Trends in Technology
Module 9: Information Security Principles
- Information Security Concepts, Frameworks and Standards
- Information Security Awareness Training
- Data Privacy and Principles of Data Protection
» Show Less 👆
Audience Profile
This training course is ideal for anyone who wants to develop their knowledge and skills of managing IT risk and information security controls within their organization successfully.
Corporate Training Options
Online Instructor Led
Live, Online Training by top Instructors and practitioners across the globe.
Onsite
Training
Conduct training at the work location you desired.
Classroom Training
The Venue will be ideally located and easy to access with covid-19 SOP's.
Overseas Training
Travel to any desired location for your training.
Why CounselTrain is the best option for Corporate Trainings?
Customized Learning
Business Fulfilment
Industry Expert Trainers
What People say?
Not sure,
which course to choose?
Our Clients across the Globe!
Our Corporate Clients
