Hero Banner

Certified in Risk and Information Systems Control (CRISC) Certification Course

One of the most comprehensive courses preparing you for the coveted CRISC certification from ISACA

We have trained over 750 organizations including:

Learn everything you need to know for acing the global CRISC examination

Detailed course content for each module; several practice quizzes & study material

High exam success rate amongst students of our CRISC course

Comprehensive content on IT Risk concepts, principles and management

ISACA’s Certified in Risk and Information Systems Control (CRISC) certification is a globally-acknowledged certificate that validates the holder's expertise in identifying and managing enterprise IT risk and implementing and maintaining information systems controls.

CRISC has received over 15 global recognitions. This course prepares you for the CRISC exam with detailed content, PDFs, quizzes and more.

Benefits of the CRISC Course

  • Prepares you for one of the most sought-after certifications in the enterprise risk management and control space.
  • Detailed content on each domain gives you a strong chance to pass the CRISC examination.
  • Teaches you the core concepts of IT risk management and shows you how to conduct a structured and repeatable risk assessment.

Highlights of the Course

  • 4 domains with 10-20 sub-sections each
  • Downloadable study material for enhanced learning
  • Bolster your preparation with quizzes at the end of each domain

CRISC Learning Objectives:

Upon completing the CRISC training course, delegates:

  • Should be able to identify and assess IT Risk and contribute to the organisation’s IT risk management strategy.
  • Should have adequate knowledge to pass the CRISC examination administered by ISACA.
  • Will be able to determine the various risk response and corresponding mitigation actions and evaluate the response efficacy and effectiveness to meet business objectives.
  • Be able to explain how unmanaged IT Risk can impact the entire organisation, regardless of size. 
  • Be able to prepare plans and strategies for mitigating risks. 
  • Will be able to monitor the effectiveness of IT controls to mitigate the risk and consequently create and interpret corresponding reports.
  • Create and monitor Key Risk Indicators (KRIs) and thresholds.
  • Be able to explain and communicate the importance of information risk management.
  • Develop a good understanding of Information Security Risk Concepts and Principles.

New call-to-action

Target audience

The CRISC certification is ideal for anyone who is responsible for IT risks and controls for an organisation. The following professionals also benefit immensely by securing the CRISC certification:

  • Business analysts
  • Compliance professionals
  • Control professionals
  • IT professionals
  • Project managers
  • Risk professionals

CRISC Course Domains

Domain 1 - Risk Identification
  • Risk Identification, Concepts & Elements of Risk
  • Assets, Threats, Vulnerabilities
  • Risk Identification Methodology, Standards and Frameworks
  • Risk Scenarios and Risk Register
  • Ownership and Accountability
Domain 2 - IT Risk Assessment
  • IT Risk Assessment and Assessment Techniques 
  • Risk Scenario Analysis, Current State of Controls, Root Cause Analysis
  • Risk Ownership & Accountability
  • Changes in Risk Environment & Emerging Threats 
  • Predicting Risk
  • Risk Appetite Bands
Domain 3 - Risk Response & Mitigations
  • Risk Response Analysis Techniques and Risk Response Options
  • Cost benefit analysis and return on investment
  • Developing a Risk Action Plan
  • Business Process Review Tools and Techniques 
  • Control Activities, Objectives, Practices and Metrics
  • Systems Control Design and Implementation
Domain 4- Risk and Control Monitoring and Reporting
  • Risk and Control Monitoring and Reporting
  • Key Risk Indicators and Key Performance Indicators 
  • Data Collection and Extraction Tools and Techniques 
  • Vulnerability Assessment and Penetration Testing 
  • Third Party Assurance 
  • Results of Control Assessments 

All trademarks, service marks, trade names, product names, service names and logos appearing on the site, or on printed or digital material are the property of their respective owners, including in Cyber Management Alliance Ltd. Any rights not expressly granted herein are reserved.

Certified in Risk and Information Systems Control (CRISC) Certification Course

Find out more about our one day public courses or internal workshops, please complete the form below. 

  • callOr call us on:
  • +44 (0) 203 189 1422