CRISC

4.5/5

Course Information

Certified Risk and Information Systems Control (CRISC) Course Outline

This training course will focus on the four domains of Certified Risk Information Systems Control. The course outline encompasses:

  • An Introduction to CRISC
  • Course Objectives
  • About CRISC
  • CRISC Domain Overview
  • CRISC Value

Domain 1: Risk Identification

  • Risk Identification Objectives
  • Risk Identification Overview
  • Concepts of IT Risk
  • Risk Management Standards
  • Risk Identification Frameworks
  • Assets
  • Threats
  • Vulnerabilities
  • Elements of Risk
  • Penetration Testing
  • COBIT 5
  • ISO
  • Risk Scenarios
  • Communicating Risk
  • Risk Awareness
  • Organisational Structures and Culture
  • Risk within the Enterprise
  • Compliance
  • Principles of Risk
  • Conclusion

Domain 2: Risk Assessment

  • Risk Assessment Objectives
  • Risk Assessment Overview
  • Risk Assessment Techniques
  • Risk Assessment Analysis
  • Methodologies
  • Control Assessment
  • Risk Evaluation and Impact Assessment
  • Risk and Control Analysis
  • Third Party Management
  • System Development Lifecycle
  • Developing Technologies
  • Enterprise Architecture
  • Conclusion

Domain 3: Risk Response and Mitigation

  • Risk Response and Mitigation Objectives
  • Risk Response and Mitigation Overview
  • Risk Response Options
  • Response Analysis
  • Risk Response Plans
  • Control Objectives and Practices
  • Control Ownership
  • Systems Control Design Implementation
  • Control and Countermeasures
  • Business Continuity
  • Disaster Recovery
  • Risk Accountability
  • Inherent and Residual Risk
  • Conclusion

Domain 4: Risk and Control Monitoring and Reporting

  • Risk and Control Monitoring and Reporting Objectives
  • Risk and Control Monitoring and Reporting Overview
  • Key Risk Indicators (KRIs)
  • Data Collection
  • Monitoring Controls
  • Control Assessments
  • Penetration Testing
  • Vulnerability Assessments
  • Third Party Assurance
  • Maturity Model Assessment
  • Techniques for Improvement
  • Capability Maturity Model
  • IT Risk Profile
  • Conclusion

This teaching will be supported by discussion sessions and exercises to enhance the delegate’s understanding and enable them to master the material. There will also be final exam preparation and delegates will have the opportunity to attempt practice questions.

Who should attend this CRISC Training Course?

Anyone who manages IT risk and information security controls within their job role and would like to prepare for the CRISC exam.

Prerequisites

The course itself has no prerequisites, but you should be familiar with the CRISC job practice domains. To receive CRISC certification, you must meet the work experience requirements of 3 years of experience across at least 2 of the four CRISC domains, some of which must be in either domain 1 or 2. The four domains are as follows:
  • IT Risk Identification

  • IT Risk Assessment

  • Risk Response and Mitigation

The Trainer’s extensive background is excellently complimented by hands-on experience in CRISC right from inception to completion. 

The Trainer provides complete freedom to the candidates to explore the subject and learn based on real-time examples. The trainer helps the candidates in completing their projects and prepares them for interview questions and answers. Candidates are free to ask any questions at any time.

  • More than 7+ Yearsof Experience.
  • Trained more than 1000+students in a year.
  • Strong Theoretical & Practical Knowledge.
  • Certified Professionals with High Grade.
  • Expert level Subject Knowledge and fully up-to-date on real-world industry applications.
  • Trainer has experienced on multiple real-time projects in their Industries.

How long does it take to get CRISC certification?

CRISC requirements include a minimum of three years of work experience in information security program management in two or more of the CRISC job domains, including either Domain 1 or 2. This experience must be obtained in the 10 years preceding the application or within five years of passing the exam.

Which is better CRISC or CISA?

The CRISC certification is second only to the CISSP terms in which would be reported earnings. It would be validating your ability to work with IT risk management at the level off. If your career goals are focused solely on audit-related roles, then the CISA might be considered the right credential for you.

How do I pass CRISC?

Read the CRISC Review Manual 6th edition cover-to-cover at least twice. Check the Questions, Answers, and Explanations (QAE) manual latest edition and make sure to go through all questions and explanations. Take notes whenever possible and focus on comprehension rather than memorizing.

Request more Information

    What People say?

    Not sure,
    which course to choose?

    Our Clients across the Globe!