Certified in Risk and Information Systems Control english virtual



Kursarrangør: Glasspaper AS
Sted: Nettkurs / Nettstudie
Hele landet
Type:Nettkurs og nettstudie
Studie / yrkesutdanning
Undervisningstid: kl 10:30 - 18:30
Varighet: 4 days
Pris: 35.000
Neste kurs: 24.08.2026 | Vis alle kursdatoer

We provide virtual course about Certified in Risk and Information Systems Control (CRISC) in english. This 4-day official ISACA course equips learners with the knowledge and practical skills needed to prepare for and pass the CRISC exam.

Course description:
CRISC is the only globally recognised certification focused on IT and enterprise risk management, enabling professionals to bridge the gap between risk, business goals, and technology. Participants will explore the four CRISC domains: governance, risk assessment, risk response and reporting, and technology and security. Through real-world scenarios and exam-focused exercises, learners will gain the ability to identify, assess, and manage IT risks while supporting enterprise objectives.

Key takeaways:
By the end of this course, learners will be able to:
• Explain the governance structures, frameworks, and cultural factors that shape IT risk management
• Identify, evaluate, and prioritise IT risks using established assessment methodologies
• Develop and implement risk response strategies aligned with enterprise objectives
• Design, monitor, and assess IT controls for effectiveness and maturity
• Report relevant risk and control information to stakeholders to support decision making
• Recognise the impact of emerging technologies, regulations, and security practices on enterprise risk
• Apply exam strategies and practice techniques to prepare for the CRISC exam

Course outline:
Introduction to the CRISC exam:
• About the CRISC certification
• Exam structure, scoring, and preparation strategies

Domain 1 - Governance:
• Strategy, goals, and objectives
• Organisational structure, culture, ethics, and accountability
• Risk appetite, tolerance, and enterprise risk frameworks
• Policies, standards, legal and regulatory requirements
• Maintaining risk registers and profiles
• Stakeholder communication and reporting

Domain 2 - Risk assessment:
• Risk event identification and threat modelling
• Vulnerability management and scenario development
• Business impact analysis and residual risk evaluation
• Risk analysis methodologies and risk register updates
• Promoting a risk-aware culture through awareness and training

Domain 3 - Risk response and reporting:
• Risk response options and treatment planning
• Control design, selection, and implementation
• Issue, finding, and exception management
• Vendor and supply chain risk management
• Monitoring and analysing KPIs, KRIs, and KCIs
• Reporting emerging risks to stakeholders

Domain 4 - Technology and security:
• Technology roadmaps and enterprise architecture
• IT operations, lifecycle management, and disaster recovery
• Security frameworks, standards, and awareness training
• Data lifecycle management, privacy, and protection
• Emerging technologies and their risk implications

Exam readiness:
• Mock exam review
• Time management and test-taking strategies

Target audience:
This course is designed for IT risk and compliance professionals seeking CRISC certification

Prerequisites:
Learners should have:
• At least three years of professional experience in IT risk management or control, covering a minimum of two CRISC domains (including governance or risk assessment).
• Familiarity with risk frameworks, organisational governance, and control processes

Language:
• English course material, english speaking instructor

Certification:
This course and materials will help prepare you to take the (ISC)2 CC certification exam. The CC exam voucher is included in this CC training.