CRISC (Certified in Risk & Information Security Control)

More than just an exam bootcamp, our CRISC Workshop covers both the implementation of an IS Risk process and the CRISC certification. Learn the practical as well as the theoretical as the course tutor shares their 15+ years industry experience to help bring the abstract to life.

Description

Around the world, demand is high for skilled information security professionals that can effectively & practically, manage information and cyber risks. The CRISC certification is the globally accepted standard of achievement in this field. RiskIT and Cobit are two of the most trusted and widely implemented IS Risk Frameworks. Understand the role risk plays in business decision making and how to build a robust business centric, risk process using these tools.

Learn how to identify these risks to the business, assess them and then mitigate those risks with cost-effective controls with the practical scenario methodologies and toolkits covered.  

Exam

The event fully prepares delegates for the CRISC exam.  Please note that the exam is not included with the course.

Outline

Domain 1—IT/IS Risk Identification

Identify risk to contribute to the execution of the IT risk management strategy in support of business objectives and in alignment with the enterprise risk management (ERM) strategy.

Domain 2—IT/IS Risk Assessment

Analyse and evaluate IT risk to determine the likelihood and impact on business objectives to enable risk-based decision making.

Domain 3—IT/IS Risk Response Mitigation

Determine risk response options and evaluate their efficiency and effectiveness to manage risk in alignment with business objectives.

Domain 4—IT/IS Risk and Control Monitoring and Reporting

Monitor and report on IT risk and controls to ensure the continued efficiency and effectiveness of the IT risk management strategy and its alignment to business objectives.

Overview

This event fully covers the current CRISC exam syllabus by explaining how to use COBIT, ValIT and RiskIT to implement an InfoSec Risk Management process while supporting the core business strategy. Sample exam questions, exam techniques and study plans are also covered.

Prerequisites

The delegate should be familiar with security technologies and threats gained from 3-5 years industry or equivalent experience.  An understanding of information systems and networking is also required. This event has no technical experience requirement.

The Programme

Electronic courseware provided including study manual and practice exam questions