Course Objectives
Upon completing this course, participants will gain a comprehensive, up-to-date and in-depth knowledge of the following:
- An understanding of the format and structure of the CRISC certification exam
- A knowledge of the various topics and technical areas covered by the exam
- Practice with specific strategies, tips and techniques for taking and passing the exam
- Opportunities to execute practice questions with debriefs of answers
Pre-requisites
Below are the certification requirements, if you are taking the course just for knowledge it is not mandatory to possess the below requirements:
- 1-3 years of experience in IT risk and/or security and audit
- Recommended to have Early career candidates: IT Risk Fundamentals certificate and CISA certification a plus before starting
- At least a graduate degree qualification, with or without a major (honours)
- Appropriate managerial skills with knowledge of relevant tools and techniques
- Proficiency in English language equivalent to the GCE O Level is expected
*To find out more about certification, go to: https://www.isaca.org/credentialing/crisc/get-crisc-certified
- Hardware & Software
- This course will be conducted as a Virtual Live Class (VLC) via Zoom platform.
- Participants must own a Zoom account and have a laptop or a desktop with “Zoom Client for Meetings” installed. Download from zoom.us/download.
System Requirement |
Must-have:
Please ensure that your computer or laptop meets the following requirements.
Good-to-have:
Not recommended: |
Course Outline
Introduction to Certified in Risk and Information Systems Control (CRISC)
- Examination information and preparation techniques
- Understand how questions are structured
- Preparing for CRISC examination
- Certification Prerequisites, Application, Maintenance and Renewal
Domain 1 Governance
- Organisational Governance
- Organizational Strategy, Goals, and Objectives
- Organizational Structure, Roles, and Responsibilities
- Organizational Culture
- Policies and Standards
- Business Processes
- Organizational Assets
- Risk Governance
- Enterprise Risk Management and Risk Management Framework
- Three Lines of Defense
- Risk Profile
- Risk Appetite and Risk Tolerance
- Legal, Regulatory, and Contractual Requirements
- Professional Ethics of Risk Management
Domain 2 IT Risk Assessment
- IT Risk Identification
- Risk Events
- Threat Modelling and Threat Landscape
- Vulnerability and Control Deficiency Analysis
- Risk Scenario Development
- IT Risk Analysis, Evaluation & Assessment
- Risk Assessment Concepts, Standards, and Frameworks
- Risk Register
- Risk Analysis Methodologies
- Business Impact Analysis
- Inherent, Current and Residual Risk
Domain 3 Risk Response and Reporting
- Risk Response
- Risk and Control Ownership
- Risk Treatment / Risk Response Options
- Third-Party Risk Management
- Issue, Finding, and Exception Management
- Management of Emerging Risk
- Control Design and Implementation
- Control Types, Standards, and Frameworks
- Control Design, Selection, and Analysis
- Control Implementation
- Control Testing and Effectiveness Evaluation
- Risk Monitoring and Reporting
- Risk Treatment Plans
- Data Collection, Aggregation, Analysis, and Validation
- Risk and Control Monitoring Techniques
- Risk and Control Reporting Techniques
- Key Performance Indicators
- Key Risk Indicators
- Key Control Indicators
Domain 4 Information Technology and Security
- Information Technology Principles
- IT Operations Management
- Enterprise Resiliency
- Project Management
- Data Lifecycle Management
- System Development Life Cycle
- Emerging Trends in Technology
- Information Security Principles
- Information Security Concepts, Frameworks, and Standards
- Information Security Awareness Training
- Data Privacy and Principles of Data Protection
Certificate Obtained and Conferred by
- Upon meeting the attendance and assessment(s) criteria, participants will be awarded with a digital Statement of Attainment (SOA), accredited by SkillsFuture Singapore. SOA will be reflected as [code name, ICT-SNA-4005-1.1 Business Risk Management].
- Upon meeting the attendance and assessment(s) criteria, participants will be awarded with a digital Certificate of Completion from NTUC LearningHub.
Categories
More Information
- NTUC LearningHub
Add a review