Moocable is learner-supported. When you buy through links on our site, we may earn an affiliate commission.
Certifications

CRISC

via Cybrary

Description

What is the CRISC certification by ISACA? ISACA’s Certified in Risk and Information Systems Control certification is for IT and business professionals who develop and maintain information system controls, and whose job revolves around security operations and compliance. The CRISC is quickly being implemented into operational and management level positions at organizations of almost any size. Individuals who have achieved the CRISC certification have proven a strong level of understanding and capability to enact best-practice information systems control. This certification is ideal for anyone involved in risk monitoring and mitigation within their organization, including the following personnel: IT, Cyber Security, Business Analysts, Risk Professionals, PM's, Management / Executives. The Online CRISC Training Course - Risk and Information Systems Control Our CRISC course will prepare you for identifying, evaluating, and managing risk through construction, implementation, and maintenance of information technology and security controls. In under nine hours, you can raise your confidence and understanding of IT risk management. Our CRISC training course covers the four CRISC domains, including: Domain 1 - Risk Identification Domain 2 - IT Risk Assessment Domain 3 - Risk Response and Reporting Domain 4 - Information Technology and Security About the CRISC Certification The CRISC certification is an ANSI accredited certification and is, therefore, an internationally recognized standard of performance. Developed by a team of risk management industry-leading professionals, the CRISC certification is designed to ensure that those that achieve it are equipped to benefit their organizations in the following ways: Firmly understand the impact of IT and Enterprise risk management and how risk affects their organization. Can effectively prepare and enact strategic and focused plans and risk and control monitoring to mitigate risk. Make competent risk-based decisions. Set common language and perspective risks that can become the baseline for risk management within their organizations. CEU / CPE: 9

Tags
CISA Certification

Syllabus

Syllabus CRISC Course IntroductionWelcome and IntroductionThe CRISC ExamIntroduction to Information Security and Risk ManagementRisk DefinitionsPrinciples of Information SecurityDomain 1: GovernanceGovernance OverviewUnderstanding GRC (Governance, Risk, and Compliance)LiabilityInformation Security Strategy and RoadmapFrameworks: ISO 27000 SeriesFrameworks: NIST CSFISACA’s IT Risk FrameworkInformation Security ProgramInformation Security PoliciesStandards, Procedures, Guidelines, and BaselinesInformation Security ControlsProject ManagementRisk CultureEthicsDomain 2: Risk AssessmentRisk Assessment OverviewRisk IdentificationThreat Modeling and Risk ScenariosRisk RegisterNIST 800-39NIST 800-30Risk Assessment and AnalysisNIST SP 800-37 Rev 1 and SDLCISO 27005 Risk Management StandardRisk Assessment Tools and TechniquesCost-Benefit Analysis and ROIDomain 3: Risk Response and ReportingRisk Response and Reporting OverviewRisk Action PlanRisk AcceptanceRisk MitigationRisk Avoidance, Sharing, and TransferInformation Security Program StakeholdersControl DesignRisk Monitoring and ReportingDomain 4: IT and SecurityIT Security and Data Protection OverviewData ClassificationStates of DataSecure Data DisposalMitigating External RisksMitigating Internal RisksIdentity and Access ManagementIdentity ManagementAuditingVulnerability Assessment - Part 1Vulnerability Assessment - Part 2Penetration Testing - Part 1Penetration Testing - Part 2MonitoringConfiguration and Change ManagementThird-Party GovernanceCloud IntegrationBusiness Continuity and Disaster RecoveryCourse Conclusion Read more

Start Learning Find study partner
Certifications

CRISC

via Cybrary
Start Learning Find study partner
Affiliate notice

What is the CRISC certification by ISACA? ISACA’s Certified in Risk and Information Systems Control certification is for IT and business professionals who develop and maintain information system controls, and whose job revolves around security operations and compliance. The CRISC is quickly being implemented into operational and management level positions at organizations of almost any size. Individuals who have achieved the CRISC certification have proven a strong level of understanding and capability to enact best-practice information systems control. This certification is ideal for anyone involved in risk monitoring and mitigation within their organization, including the following personnel: IT, Cyber Security, Business Analysts, Risk Professionals, PM's, Management / Executives. The Online CRISC Training Course - Risk and Information Systems Control Our CRISC course will prepare you for identifying, evaluating, and managing risk through construction, implementation, and maintenance of information technology and security controls. In under nine hours, you can raise your confidence and understanding of IT risk management. Our CRISC training course covers the four CRISC domains, including: Domain 1 - Risk Identification Domain 2 - IT Risk Assessment Domain 3 - Risk Response and Reporting Domain 4 - Information Technology and Security About the CRISC Certification The CRISC certification is an ANSI accredited certification and is, therefore, an internationally recognized standard of performance. Developed by a team of risk management industry-leading professionals, the CRISC certification is designed to ensure that those that achieve it are equipped to benefit their organizations in the following ways: Firmly understand the impact of IT and Enterprise risk management and how risk affects their organization. Can effectively prepare and enact strategic and focused plans and risk and control monitoring to mitigate risk. Make competent risk-based decisions. Set common language and perspective risks that can become the baseline for risk management within their organizations. CEU / CPE: 9

Syllabus CRISC Course IntroductionWelcome and IntroductionThe CRISC ExamIntroduction to Information Security and Risk ManagementRisk DefinitionsPrinciples of Information SecurityDomain 1: GovernanceGovernance OverviewUnderstanding GRC (Governance, Risk, and Compliance)LiabilityInformation Security Strategy and RoadmapFrameworks: ISO 27000 SeriesFrameworks: NIST CSFISACA’s IT Risk FrameworkInformation Security ProgramInformation Security PoliciesStandards, Procedures, Guidelines, and BaselinesInformation Security ControlsProject ManagementRisk CultureEthicsDomain 2: Risk AssessmentRisk Assessment OverviewRisk IdentificationThreat Modeling and Risk ScenariosRisk RegisterNIST 800-39NIST 800-30Risk Assessment and AnalysisNIST SP 800-37 Rev 1 and SDLCISO 27005 Risk Management StandardRisk Assessment Tools and TechniquesCost-Benefit Analysis and ROIDomain 3: Risk Response and ReportingRisk Response and Reporting OverviewRisk Action PlanRisk AcceptanceRisk MitigationRisk Avoidance, Sharing, and TransferInformation Security Program StakeholdersControl DesignRisk Monitoring and ReportingDomain 4: IT and SecurityIT Security and Data Protection OverviewData ClassificationStates of DataSecure Data DisposalMitigating External RisksMitigating Internal RisksIdentity and Access ManagementIdentity ManagementAuditingVulnerability Assessment - Part 1Vulnerability Assessment - Part 2Penetration Testing - Part 1Penetration Testing - Part 2MonitoringConfiguration and Change ManagementThird-Party GovernanceCloud IntegrationBusiness Continuity and Disaster RecoveryCourse Conclusion Read more

Tags

CISA Certification

Quick Links

Browse by subject

Browse by provider

Browse by university

Browse by publisher

Browse by institution

Roadmaps

Posts