Spoclearn offered a 4-day intensive CRIS Certification in the United States from ISACA is designed by global-level SMEs. It is an interactive instructor-led course, and we’re offering four different learning modes, including online, onsite (group training), classroom (external venue or on-premise), and 1 to 1 private sessions. CRISC certification will boost your career in enterprise IS/IT risk management. CRISC course will guide you through corporate IT governance, IT risk assessment, Risk response & reporting, and IT security.
For More Information
"Name- Spoclearn Inc.
Address- 3500 South DuPont Highway Suite DK 101, Dover, DE 19901
Phone Number- 9082937144
Email- info@spoclearn.com
2. Why take up
CRISC CERTIFICATION
TRAINING?
The Certified in Risk and Information Systems Control (CRISC) training course provides participants with
an in-depth awareness of diverse business risks, as well as the practical knowledge and skills necessary
to implement effective IS controls within a company.
CRISC is the most updated and holistic test available for evaluating IT professionals and other industry
and financial sector employees. The CRISC online course prepares IT professionals for the specific
difficulties presented by information systems. CRISC (Certified in Risk and Information Systems Control)
is an IT certification for enterprise risk management. The average salary of a CRISC certified professional
is in the range of USD 90,000 to USD 192,000 per annum in the US.
3. Who can take up
CRISC TRAINING?
Job roles that can find PMP training beneficial are:
IT Professionals
Project Managers
Business Analysts
CEOs
CFOs
Chief Audit Executives
CIOs/CISOs
Audit Partners
Security Managers
Risk Officers
Compliance Professionals
Consultants
• Anybody who wants to gain knowledge of CRISC to achieve risk
management proficiency
• Professionals who are looking sit for the CRISC certification exam
4. Why Take up CRISC
TRAINING FROM
SPOCLEARN?
4-day interactive instructor-led CRISC Training
z
100% Money-Back Guarantee
z
Expert CRISC trainers across the globe
z
Accredited CRISC course material prepared by SMEs
z
Case Studies with real-world examples
z
After training coaching for real-world application
z
Course Completion Certificate provided after the training
z
5. CRISC CERTIFICATION
ELIGIBILITY CRITERIA
• There are no prerequisites required to take up the CRISC training. Anybody who wants to understand
about risk management and information security best practices can be part of this CRISC training.
• However, if you are looking to earn the CRISC credential from ISACA, then you have to:
• Pass the CRISC Exam within the last 5 years.
• Have the relevant full-time work experience in the CRISC exam content outline.
6. CRISC CERTIFICATION
EXAM FORMAT
Exam Type
Multiple Choice
No. of Questions
150 questions
Passing Score
450 out of 800
Exam duration
240 minutes
(Four hours)
(Above 57%)
Type: Closed Book Exam
Language: English 01 02
03 04
7. Certified in Risk and Information
Systems Control (CRISC)
Training Agenda
8. GOVERNANCE (26%)
1
A—ORGANIZATIONAL GOVERNANCE
v Organizational Strategy, Goals, and Objectives
v Organizational Structure, Roles and Responsibilities
v Organizational Culture
v Policies and Standards
v Business Processes
v Organizational Assets
B—RISK GOVERNANCE
v Enterprise Risk Management and Risk Management Framework
v Three Lines of Defense
v Risk Profile
v Risk Appetite and Risk Tolerance
v Legal, Regulatory and Contractual Requirements
v Professional Ethics of Risk Management
9. IT RISK ASSESSMENT (20%)
2
A—IT RISK IDENTIFICATION
v Risk Events (e.g., contributing conditions, loss result)
v Threat Modelling and Threat Landscape
v Vulnerability and Control Deficiency Analysis (e.g., root cause analysis)
v Risk Scenario Development
B—IT RISK ANALYSIS AND EVALUATION
v Risk Assessment Concepts, Standards and Frameworks
v Risk Register
v Risk Analysis Methodologies
v Business Impact Analysis
v Inherent and Residual Risk
10. RISK RESPONSE AND MITIGATION (32%)
3
A—RISK RESPONSE
v Risk Treatment / Risk Response Options
v Risk and Control Ownership
v Third-Party Risk Management
v Issue, Finding and Exception Management
v Management of Emerging Risk
B—CONTROL DESIGN AND IMPLEMENTATION
v Control Types, Standards and Frameworks
v Control Design, Selection and Analysis
v Control Implementation
v Control Testing and Effectiveness Evaluation
C—RISK MONITORING AND REPORTING
v Risk Treatment Plans
v Data Collection, Aggregation, Analysis and Validation
v Risk and Control Monitoring Techniques
v Risk and Control Reporting Techniques (heatmap,
scorecards, dashboards)
v Key Performance Indicators
v Key Risk Indicators (KRIs)
v Key Control Indicators (KCIs)
11. INFORMATION TECHNOLOGY AND SECURITY (22%)
4
A—INFORMATION TECHNOLOGY PRINCIPLES
v Enterprise Architecture
v IT Operations Management (e.g., change management, IT assets, problems, incidents)
v Project Management
v Disaster Recovery Management (DRM)
v Data Lifecycle Management
v System Development Life Cycle (SDLC)
v Emerging Technologies
B—INFORMATION SECURITY PRINCIPLES
v Information Security Concepts, Frameworks and Standards
v Information Security Awareness Training
v Business Continuity Management
v Data Privacy and Data Protection Principles
12. LEARNING ROADMAP FOR YOU
Understand the learning
objectives that fits your
learning need
Contact our coach and
consultants and
understand in depth
Block your seat
Relate to how it
can help you
Talk to the trainer for
more clarity
Continuously learn and
apply the learning
1 3 5
2 4 6
13. Connect with us now!
Talk to our consultant
USA: +1 (832) 924 0564
IND: +91 83417-05065
UK: +44 807 164 0572
You can also email us at
info@spoclearn.com
support@spoclearn.com