Information Security Risk Management and Audit

This specialised micro-credential is designed to equip learners with the expertise needed to navigate the complexities of modern information security, risk management and audit practices.

The programme is structured into three competency units, each targeting specific areas of expertise:

• Information Systems Audit: This competency unit prepares you for the globally recognised ISACA Certified Information Systems Auditor (CISA) certification. Covering key areas such as the information systems auditing process, IT governance, and protection of information assets, you will master a risk-based approach essential for planning, executing, and reporting of audit engagements for both IT and business systems within an organisation.
• Information Security Management: In today’s dynamic IT landscape, professionals must remain vigilant against data breaches, ransomware attacks, and other emerging threats. This unit prepares you for the ISACA Certified Information Security Manager (CISM) certification, empowering you to assess risks, implement effective governance frameworks, and proactively respond to security incidents.
• Risk and Information Systems Control: Focused on preparing you for the ISACA Certified in Risk and Information Systems Control (CRISC) certification, this competency unit emphasises a proactive risk management approach rooted in Agile methodology. You will learn to enhance your organisation’s resilience, deliver tangible stakeholder value, and streamline risk management practices across the enterprise.

Integrating online and in-person delivery, this micro-credential offers hands-on experience through case studies and lab sessions. It benefits from the expertise of SIT faculty and experienced industry practitioners, ensuring high-quality instruction and mentorship.

Upon completion, you will be equipped with the skills and credentials needed to excel in roles related to information security, risk management, and audit across organisations worldwide.

Who Should Attend

The micro-credential prepares learners for the following job roles:

• Information security managers/analysts

• IT auditors

• Risk management specialists

• Cybersecurity consultants

Assumed Prior Knowledge

Learners should possess knowledge in key areas within computer science, computer networking, cybersecurity, databases, and programming, which are typically covered in an IT-related three-year diploma.

What You Will Learn

This micro-credential is predominantly delivered through a competency-based education (CBE) approach where learners acquire and demonstrate mastery of knowledge and skills that are directly relevant to job functions. This prepares them to be industry-ready where they can apply their newly acquired competencies to their work.