Certified in Risk and Information Systems Control (CRISC) Official Course

Starts:  Feb 11, 2025 09:00 (IE)
Ends:  Feb 19, 2025 17:00 (IE)
Associated with  Ireland Chapter

This event is primarily for ISACA Chapter Members only (Ireland & UK)

If you are further afield please enquire about pricing.

The delivery format is not decided and the fact you have got this far suggests an interest so please help us out in our planning.

I have set down dates of 11th, 12th, 18 & 19th Feb2025 so both you and our trainers have firm dates to work to.

The Options are as follows:

  1. Webinar for four days. Materials delivered electronically
  2. Webinar for four days. Hard copy of materials posted out (additional cost)
  3. Two days Webinar (11th & 12th) and two days in person (18th & 19th including a specimen exam on the afternoon of day 2 - 19th)
  4. Four days in person

The Chapter can also generate invoices and order up the Exam, Manual and Q&A online database at an additional cost

Please let us know (without obligation) what your prefferd options are.

I would intend to have details confirmed by Mid December

Please contact Everett.Breakey@isaca.ie

Prerequisites. None.

Duration: As outlined

Course Description:

CRISC is the only enterprise IT risk-focused certification that prepares IT professionals to put agile risk management best practices in place to keep pace with the rapidly evolving business landscape. The comprehensive content outline ensures that CRISCs can become trusted advisors to upper management and the board, alerting them to vulnerabilities, potential impact, and solutions to mitigate these risks/threats proactively.

The course covers all four domains of the CRISC Syllabus.

DOMAIN 1—Governance

Organizational Governance Organizational Strategy, Goals, and Objectives Organizational Structure, Roles, and Responsibilities Organizational Culture Policies and Standards Business Processes Organizational Assets Risk Governance Enterprise Risk Management and Risk Management Framework Three Lines of Défense Risk Profile Risk Appetite and Risk Tolerance Legal, Regulatory, and Contractual Requirements Professional Ethics of Risk Management

DOMAIN 2—IT Risk Assessment

IT Risk Identification Risk Events (e.g., contributing conditions, loss result) Threat Modelling and Threat Landscape Vulnerability and Control Deficiency Analysis (e.g., root cause analysis) Risk Scenario Development IT Risk Analysis and Evaluation B Risk Assessment Concepts, Standards, and Frameworks Risk Register Risk Analysis Methodologies Business Impact Analysis Inherent and Residual Risk

DOMAIN 3—Risk Response and Reporting

Risk Response Risk Treatment / Risk Response Options Risk and Control Ownership Third-Party Risk Management Issue, Finding, and Exception Management Management of Emerging Risk Control Design and Implementation Control Types, Standards, and Frameworks Control Design, Selection, and Analysis Control Implementation Control Testing and Effectiveness Evaluation Risk Monitoring and Reporting Risk Treatment Plans Data Collection, Aggregation, Analysis, and Validation Risk and Control Monitoring Techniques Risk and Control Reporting Techniques (heatmap, scorecards, dashboards) Key Performance Indicators Key Risk Indicators (KRIs) Key Control Indicators (KCIs)

DOMAIN 4—Information Technology and Security

Information Technology Principles Enterprise Architecture IT Operations Management (e.g., change management, IT assets, problems, incidents) Project Management Disaster Recovery Management (DRM) Data Lifecycle Management System Development Life Cycle (SDLC) Emerging Technologies Information Security Principles Information Security Concepts, Frameworks, and Standards Information Security Awareness Training Business Continuity Management Data Privacy and Data Protection Principles

Any queries to - Everett.Breakey@isaca.ie

Register Now