Follow us:   

Log inSign Up
Call us
800 388 80 90
329 Queensberry Street,
North Melbourne VIC 3051, Australia.
hi@educrat.com

What do you want to Learn?

Instructor-led Training
  • Live Instructor-led training session
  • 4-full days or 28 hours for the training
  • Approved courseware
  • Industry experts & certified trainers
  • Includes certification exam voucher
  • Quizzes, practice exams, workshops
  • 100% money back guarantee (?)
  • Lifelong FREE post-training support (?)
Corporate Training
  • Exclusive training session for your teams
  • Affordable and tailored prices
  • Your preferred dates, timing & location
  • Industry experts & certified trainers
  • Face-to-face and online options
  • Standard and tailored content
  • Lifelong FREE post-training support (?)

Customer Testimonials

Trainer has explained in very much detailed manner. The course has helped us for future learning.

Shahbaz Saeed Mirza

Habib Metro Bank
Course was effective and the trainer was highly knowledgeable.

Muhammad Suleman

Pepsi Co.
Course facilities and environment are excellent. Trainer's Knowledge is also excellent.

Irfan Hussain

Bank Al-Habib
Course content is the best and the Trainer is very mature and kind enough to deliver the training.

Shahzad Iqbal Qadri

Engro
The trainer's knowledge & teaching skills are excellent. This course is perfect for our career level.

Zeeshan Rafique

Pepsi Co.
Course is overall good and covers most aspects of my job. Trainer has conduct and delivered the course excellently.

M. Rashid Butt

Pepsi Co.
Overall, it is an excellent course. The trainer is excellent in his areas. Full of knowledge & committed.

Muhammad Danish Hussain

K Electric

Overview

The Certified in Risk and Information Systems Control (CRISC®) certification from ISACA is a valuable credential which testifies to a practitioner’s expertise in identifying and managing IT risk, and implementing and managing information system controls. It also offers the knowledge and credibility necessary while interacting with stakeholders, peers, and regulators.

With the CRISC Boot Camp, you will go beyond preparing for the certification exam to enhance your knowledge and skills on enterprise risk management and control. That way, you can be sure of improving your on-the-job performance. This, in turn, makes you a valuable addition to your team and an integral member for assessing, governing, and mitigating risk.

Learning Objectives

In addition to preparing you for the CRISC certification examination, this course will help you achieve the following learning objectives as defined by ISACA:

  • Identify the IT risk management strategy in support of business objectives and alignment with the Enterprise Risk Management (ERM) strategy.
  • Analyze and evaluate IT risk to determine the likelihood and impact on business objectives to enable risk-based decision making.
  • Determine risk response options and evaluate their efficiency and effectiveness to manage risk in alignment with business objectives.
  • Continuously monitor and report on IT risk and controls to relevant stakeholders to ensure the continued efficiency and effectiveness of the IT risk management strategy and its alignment with business objectives.

Is CRISC® Boot Camp For YOU?

This course is suited for:


  • Professionals who wish to achieve the CRISC qualification
  • Risk professionals
  • IT professionals
  • Control professionals
  • Compliance professionals
  • Project managers
  • Business analysts

What are the prerequisites?

There are no prerequisites for attending this training course and attempting the CRISC certification examination. However, you will need to meet ISACA requirements to be certified, including at least 3-year professional experience in IT risk management and information systems controls.


Certification Examination

Certification examination voucher is part of this training course. Candidates can schedule online web-proctored examination on any suitable day and time at their own convenience, within 12 months.

Examination Fromat

  • 150 multiple choice questions
  • 4 hours duration
  • Passing criteria is 450 points from 800 (scaled results)
  • Closed book examination

After CRISC® Certification

Once you pass the examination, you can go for related top-tier certifications such as:

What Will You Study?

Domain 1—Governance
Organizational Governance
Organizational Strategy, Goals, and Objectives
Organizational Structure, Roles, and Responsibilities
Organizational Culture
Policies and Standards
Business Processes
Organizational Assets
Risk Governance
Enterprise Risk Management and Risk Management Framework
Three Lines of Defense
Risk Profile
Risk Appetite and Risk Tolerance
Legal, Regulatory, and Contractual Requirements
Professional Ethics of Risk Management
Domain 2—IT Risk Assessment
IT Risk Identification
Risk Events (e.g., contributing conditions, loss result)
Threat Modelling and Threat Landscape
Vulnerability and Control Deficiency Analysis (e.g., root cause analysis)
Risk Scenario Development
IT Risk Analysis and Evaluation
Risk Assessment Concepts, Standards, and Frameworks
Risk Register
Risk Analysis Methodologies
Business Impact Analysis
Inherent and Residual Risk
Domain 3—Risk Response and Reporting
Risk Response
Risk Treatment / Risk Response Options
Risk and Control Ownership
Third-Party Risk Management
Issue, Finding, and Exception Management
Management of Emerging Risk
Control Design and Implementation
Control Types, Standards, and Frameworks
Control Design, Selection, and Analysis
Control Implementation
Control Testing and Effectiveness Evaluation
Risk Monitoring and Reporting
Risk Treatment Plans
Data Collection, Aggregation, Analysis, and Validation
Risk and Control Monitoring Techniques
Risk and Control Reporting Techniques (heatmap, scorecards, dashboards)
Key Performance Indicators
Key Risk Indicators (KRIs)
Key Control Indicators (KCIs)
Domain 4—Information Technology and Security
Information Technology Principles
Enterprise Architecture
IT Operations Management (e.g., change management, IT assets, problems, incidents)
Project Management
Disaster Recovery Management (DRM)
Data Lifecycle Management
System Development Life Cycle (SDLC)
Emerging Technologies
Information Security Principles
Information Security Concepts, Frameworks, and Standards
Information Security Awareness Training
Business Continuity Management
Data Privacy and Data Protection Principles
Practice examination
Exam passing tips and tricks
Sample exam
×

FAQs

What does the CRISC exam cover?
The CRISC certification exam covers the four domains below, which are shown with their weights:
Domain 1 – Governance (26%)
Domain 2 – IT Risk Assessment (20%)
Domain 3 – Risk Response and Reporting (32%)
Domain 4 – Information Technology and Security (22%)
When will I receive my examination result?
Certification candidates will be able to view their preliminary results upon completing their examination. Their official scores are communicated within 10 working days.
What are the certification prerequisites?
In addition to passing the exam, you will need to fulfil the requirements listed below to become CRISC® certified:
Demonstrate a minimum of five years of experience in IT risk management and IT controls.
Meet the required minimum work experience in the ten years preceding the date for applying for the certification.
Adhere to the Code of Professional Ethics.
Adhere to the Continuing Professional Education (CPE) policy.
When will my certificate expire?
ISACA CRISC certification is valid for only three years. You will need to renew your certification before that to maintain it.
How can I maintain my certification?
Certified CRISC® professionals will need to do the following to maintain their certification:
Earn and report a minimum of 20 CPE (Continuing Professional Education) hours every year, starting from the year after they were certified.
Earn and report a minimum of 120 CPE hours over the span of three years.
Pay the annual maintenance fee.
Comply with the CPE audit if selected.