課程資料
報名日期
全年招生
課程級別
學習模式
修業期
16 小時 27 分鐘
教學語言
英語
授課導師
Stone River eLearning
評分
課程簡介
Certified in Risk and Information Systems Control certification
The ISACA Certified in Risk and Information Systems Control certification is one of the top risk management certifications in the world. This course will help prepare you to be acknowledged as a Risk Management expert. Taking a proactive approach based on Agile methodology, you’ll learn how to enhance your company’s business resilience, deliver stakeholder value and optimize Risk Management across the enterprise. This course covers areas of risk governance, policies and controls. You will also learn and understand the risk management lifecycle with a focus on IT systems security and control.
The CRISC certification course is designed to provide professionals with the knowledge and skills required to effectively manage IT risks and implement information systems controls within organizations. The course covers essential concepts related to risk identification, assessment, evaluation, response, and control, as well as the integration of risk management practices with overall business objectives.
CRISC is intended for professionals who work in the fields of IT risk management, control assurance, and governance.
While there are no strict prerequisites for attending a CRISC preparation course, it's recommended that participants have some background in IT risk management, information security, and related areas. The CRISC certification is typically intended for professionals who have at least three years of cumulative work experience in at least three of the four domains covered by the CRISC exam.
課程章節
- 4 個章節
- 67 堂課
- 第 1 章 Governance and Risk Management Concepts
- 第 2 章 IT Risk Assessment Practices
- 第 3 章 Risk Response and Reporting Effectively
- 第 4 章 Information Technology and Security Principles
課程內容
- Learn how ISACA looks at IT Risk Management and what that means for you as a Risk Practitioner.
- Understand established frameworks and standards (e.g., COBIT, ISO) that guide IT governance and risk management practices.
- Identify and document potential risks that could affect the organization's IT environment.
- Categorize identified risks based on their nature, impact, and relevance to the organization.
- Prioritize risks based on their severity, potential impact on business objectives, and the organization's risk appetite.
- Evaluate the acceptability of risks by comparing the identified risks with the organization's risk tolerance and criteria.
- Develop risk response strategies for each risk, including risk mitigation plans, contingency plans, and risk transfer strategies.
- Continuously monitor the organization's IT environment to identify new risks or changes in existing risks.
- Regularly review risk assessments and update them based on changes in the organization's environment and risk landscape.
- Document the entire risk assessment process, including identified risks, analysis, control measures, and response plans.
- Understand the set of fundamental concepts and practices that guide the design, implementation, management, and protection of information technology systems,
- Learn the basics of data privacy requirements and how that integrates with risk management.
此課程所涵蓋的技能
評價
-
LLe Nhat Minh
Content is ok. but materials are too general, please give details explanation, diagram in the material.
-
MMark Teasdale
You guys are awesome! Really fun learning with you - will highly recommend you all to work colleagues - thanks!
-
SSabine Heine-Bickle
A much more digestible way to go through the content than just reading the review manual (though I would recommend also looking through that). Presenters were good and engaging. Would have been good to have some more example exam questions as these have a particular style, but these are also available elsewhere to go through. I passed my exam with this course :-)
-
IIan Lawden
My personal preference is 'classroom instructor led' ... however, this was as near to that as one could expect, not least due to the great personalities of the presenters and the sharing of their own experiences in such an informal yet informative manner. Superb pace and bite size segments were well thought out and easily digestible.
