logo

ISACA Course

course overview

Click to View dates & book now

Overview

The ISACA Certified in Risk and Information Systems Control (CRISC) qualification is awarded to individuals who identify and manage risks through the development, implementation and maintenance of information systems (IS) controls. Launched in 2010, CRISC is internationally recognised and held by over 17,000 IT professionals worldwide.

The CRISC Exam Preparation course is a four-day classroom session that provides a comprehensive revision programme for the key job practice knowledge domains, and exam preparation exercises that help delegates pass the exam at the first attempt. Delivered in just three days, this course has been designed to maximise time effectiveness and reduce any unnecessary time away from the office. It has also been shown to be considerably more effective than self-study preparation, which requires more time and commitment.

Audience

This course is designed for IT professionals preparing to take the ISACA Certified in Risk and Information Systems Control (CRISC) examination via a Computer-Based Testing (CBT) session which is available during three testing windows per year Candidates who pass the exam and have at least three years of relevant work experience will be awarded the CRISC qualification.

Skills Gained

For organisations, employing CRISC professionals brings great benefits such as
  • Build greater understanding about the impact of it risk and how it relates to the overall organisation;
  • Assure development of more effective plans to mitigate risk; &
  • Establish a common perspective and language about it risk that can set the standard for the enterprise
With a growing demand for professionals with risk and control skills, it is a great time to gain a globally recognised certification in this field. Becoming CRISC certified will:
  • Demonstrate your knowledge and expertise in risk management.
  • Increase your value within your organisation.
  • Provide a gateway to more strategic level roles.
  • Maintain your high level of professionalism through continuing professional education.

Prerequisites

The CRISC Review Manual and CRISC Review, Questions, Answers and Explanation Manual will be provided to delegates booked on the course.

Outline

This course provides intensive revision across all 4 CRISC job practice domains.
Domain 1 — Risk Management
  • Collect and review environmental risk data
  • Identify potential vulnerabilities to people, processes and assets
  • Develop IT scenarios based on information and potential impact to the organisation
  • Identify key stakeholders for risk scenarios
  • Establish risk register
  • Gain senior leadership and stakeholder approval of the risk plan
  • Collaborate to create a risk awareness program and conduct training
Domain 2 – IT Risk Assessment
  • Analyse risk scenarios to determine likelihood and impact
  • Identify current state of risk controls and their effectiveness
  • Determine gaps between the current state of risk controls and the desired state
  • Ensure risk ownership is assigned at the appropriate level
  • Communicate risk assessment data to senior management and appropriate stakeholders
  • Update the risk register with risk assessment data
Domain 3 – Risk Response and Mitigation
  • Align risk responses with business objectives
  • Develop, consult with and assist risk owners with development risk action plans
  • Ensure risk mitigation controls are managed to acceptable levels
  • Ensure control ownership is appropriately assigned to establish accountability
  • Develop and document control procedures for effective control
  • Update the risk register
  • Validate that risk responses are executed according to risk action plans
Domain 4 – Risk and Control Monitoring and Reporting
  • Risk and control monitoring and reporting
  • Define key risk indicators (KRIs) and identify key performance indicators (KPIs) to enable performance measurement
  • Determine the effectiveness of control assessments
  • Identify and report trends/changes to KRIs/KPIs that affect control performance or the risk profile
Final Session – CRISC Sample Exam Questions

Talk to an expert

Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. Its a cost effective option. One on one training can be delivered too, at reasonable rates.

Submit an enquiry from any page on this site and let us know you are interested in the requirements box, or simply mention it when we contact you.

All $ prices are in USD unless it’s a NZ or AU date

SPVC = Self Paced Virtual Class

LVC = Live Virtual Class

Please Note: All courses are availaible as Live Virtual Classes

Trusted by over 1/2 million students in 15 countries

Our clients have included prestigious national organisations such as Oxford University Press, multi-national private corporations such as JP Morgan and HSBC, as well as public sector institutions such as the Department of Defence and the Department of Health.