The Certified in Risk and Information Systems Control
Course Over View
The Certified in Risk and Information Systems Control (CRISC) certification, offered by End Security, is the premier qualification for professionals involved in enterprise risk management. CRISC holders are recognized for their expertise in identifying and managing risks through the development, implementation, and maintenance of information systems controls.
Who Should Attend?
- IT Professionals
- Risk Management Professionals
- Control and Assurance Professionals
- Project Managers
- Business Analysts
- Compliance Professionals
Course Objectives
- Understand IT Risk: Gain deep insights into identifying and assessing IT risk in business processes.
- Risk Response: Learn to develop and implement risk response strategies.
- Risk Monitoring: Master the skills required for continuous risk monitoring and reporting.
- IS Control Design and Implementation: Design and implement effective information system controls.
- CRISC Exam Preparation: Prepare thoroughly for the CRISC certification exam.
Course Outline
1. IT Risk Identification (27%)
- Risk Identification and Assessment
- Risk Scenario Development
- Risk Appetite and Tolerance
2. IT Risk Assessment (28%)
- Risk Assessment Methods
- Risk Analysis and Evaluation
- Risk and Control Monitoring and Reporting
3. Risk Response and Mitigation (23%)
- Risk Response and Mitigation Techniques
- Control Design and Implementation
- Risk and Control Monitoring Plans
4. Risk and Control Monitoring and Reporting (22%)
- Key Risk Indicators (KRIs)
- Risk Management Frameworks
- Risk Reporting Tools and Techniques
