• 918 34 713
  • kurs@sgpartner.no
SG Partner AS
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Filter by Categories
Uncategorized
HomeISACAGRC - Governance Risk and Compliance

Certified in Risk and Information Systems Control incl QAE CRISC

Kurskode: CRISC

varighet: 4 Dag(er)

Sted: Virtual, Instructor Led Training
Katergori: ISACA

Course Overview

The CRISC - Certified Risk and Information System Control - certificate gives you international recognition (from ISACA) as a security professional. The CRISC extensive set of online practice questions (QAE) are included in the courseprice.

  • Continuing Professional Education (CPE) : 31
  • Practice questions (QAE = Questions, Answers and Explanations) : 12 month access

 

The Certified in Risk and Information Systems Control certification is designed for IT professionals who have hands-on experience with risk identification, assessment, and evaluation; risk response; risk monitoring; IS control design and implementation; and IS control monitoring and maintenance.

The CRISC designation will not only certify professionals who have knowledge and experience identifying and evaluating entity-specific risk, but also aid them in helping enterprises accomplish business objectives by designing, implementing, monitoring and maintaining risk-based, efficient and effective IS controls.

  • • Governance (25%)
  • • IT Risk Assessment (20%)
  • • Risk Response and Reporting (32%)
  • • Information Technology and Security (22%)

DOMAIN 1—Governance 26%

Organizational Governance A

  • • Organizational Strategy, Goals, and Objectives
  • • Organizational Structure, Roles, and Responsibilities
  • • Organizational Culture
  • • Policies and Standards
  • • Business Processes
  • • Organizational Assets

Risk Governance B

  • • Enterprise Risk Management and Risk Management Framework
  • • Three Lines of Defense
  • • Risk Profile
  • • Risk Appetite and Risk Tolerance
  • • Legal, Regulatory, and Contractual Requirements
  • • Professional Ethics of Risk Management
DOMAIN 2—IT Risk Assessment 20%

IT Risk Identification A

  • • Risk Events (e.g., contributing conditions, loss result)
  • • Threat Modelling and Threat Landscape
  • • Vulnerability and Control Deficiency Analysis (e.g., root cause analysis)
  • • Risk Scenario Development

IT Risk Analysis and Evaluation B

  • • Risk Assessment Concepts, Standards, and Frameworks
  • • Risk Register
  • • Risk Analysis Methodologies
  • • Business Impact Analysis
  • • Inherent and Residual Risk
DOMAIN 3—Risk Response and Reporting 32%

Risk Response A

  • • Risk Treatment / Risk Response Options
  • • Risk and Control Ownership
  • • Third-Party Risk Management
  • • Issue, Finding, and Exception Management
  • • Management of Emerging Risk

Control Design and Implementation B

  • • Control Types, Standards, and Frameworks
  • • Control Design, Selection, and Analysis
  • • Control Implementation
  • • Control Testing and Effectiveness Evaluation

Risk Monitoring and Reporting C

  • • Risk Treatment Plans
  • • Data Collection, Aggregation, Analysis, and Validation
  • • Risk and Control Monitoring Techniques
  • • Risk and Control Reporting Techniques (heatmap, scorecards, dashboards)
  • • Key Performance Indicators
  • • Key Risk Indicators (KRIs)
  • • Key Control Indicators (KCIs)
DOMAIN 4—Information Technology and Security 22%

Information Technology Principles A

  • • Enterprise Architecture
  • • IT Operations Management (e.g., change management, IT assets, problems, incidents)
  • • Project Management
  • • Disaster Recovery Management (DRM)
  • • Data Lifecycle Management
  • • System Development Life Cycle (SDLC)
  • • Emerging Technologies

Information Security Principles B

  • • Information Security Concepts, Frameworks, and Standards
  • • Information Security Awareness Training
  • • Business Continuity Management
  • • Data Privacy and Data Protection Principles

There is no prerequisite to take the CRISC exam; however, in order to apply for CRISC certification you must meet the necessary experience requirements as determined by ISACA

CRISC is for IT professionals, risk professionals, business analysts, and project manager and/or compliance professionals and anyone who has job responsibilities in the following areas: Risk identification, assessment, evaluation, risk response, monitoring and IS control design/monitoring and implementation/maintenance.

NOK 35.000

-
+
Kurskode: CRISC Kateegori: ,

Salar Ghadani

Salg

Har du spørsmål, ta kontakt

918 34 713 salar@sgpartner.no
Kurskode: CRISC

varighet: 4 Dag(er)

KATEGORI: ISACA
Underkatergori: GRC - Governance Risk and Compliance

Relaterte kurs

Relaterte produkter

  • Advanced in AI Audit (AAIA) AAIA

    COURSE CONTENT: Domain 1: AI Governance and Risk AI Models, Considerations and Requirements • Types of AI • Machine Learning/AI Models • Algorithms • AI Life Cycle • Business…

    Les mer
  • COBIT® Foundation – Including Exam COBF
    NOK 24.000

    COURSE CONTENT: • Module 1:  Course Introduction • Module 2:  Framework Introduction • Module 3:  Principles • Module 4:  Governance System and Components • Module 5:  Governance and Management…

    Les mer Dette produktet har flere varianter. Alternativene kan velges på produktsiden