ISACA

Enjoy the best in Certified Risk and Information Systems Control (CRISC) Training

This officialISACACRISCtraining provides youwith in-depth coverage on thefour CRISC domains: risk identification; IT risk assessment; risk responseand mitigation; risk and controlmonitoring and reporting. IT and enterpriserisk management is key to an organization’s operationsand strategy. If you arean InformationTechnology professional, risk and control professional, businessanalyst, projectmanager orcompliance professional, this Certified Risk and Information Systems Controltraining course willteach you to defend, protectand future-proof yourenterprise.

Certified Risk and Information Systems Control (CRISC)

In this course, you will:

Prepare for and pass the Certified Risk and Information System Controls (CRISC) exam.
Identify the universe of IT risk to contribute to the execution of the IT risk management strategy.
Analyze and evaluate risk to determine the likelihood and impact on business objectives.
Determine risk response options and evaluate their efficiency and effectiveness to manage risk.
Continuously monitor and report on IT risks and controls.

Prerequisites

To earn CRISC certification, you must pass the CRISC exam and show three years of experience in the fields of risk management and IS control, per ISACA’s requirements.

Domain 1 — IT Risk Identification

1.1:Collectand reviewinformation, including existing documentation, regarding the organization’s internaland external businessand IT
environments to identify potential or realized impacts ofIT risk to the organization’s business objectivesand operations.
1.2:Identify potentialthreatsand vulnerabilities to the organization’s people, processesand technology to enableIT risk analysis.
1.3:Develop acomprehensiveset ofIT risk scenarios based on availableinformation to determinethe potentialimpact to business
objectivesand operations.
1.4:Identify key stakeholders for IT risk scenarios to help establish accountability.
1.5:Establish an IT risk register to help ensurethat identified IT risk scenariosareaccounted forand incorporated into theenterprise-wide

Domain 2 — IT Risk Assessment

2.1:Analyzerisk scenarios based on organizationalcriteria(e.g., organizationalstructure, policies, standards, technology,architecture, controls) to determinethelikelihood and impact ofan identified risk.

2.2:Identify thecurrentstate ofexisting controlsand evaluatetheireffectiveness for IT risk mitigation.

2.3:Reviewtheresults ofrisk and controlanalysis to assessany gaps between currentand desired states oftheIT risk environment. 2.4:Ensurethat risk ownership isassigned at theappropriatelevelto establish clear lines ofaccountability.

2.5:Communicatetheresults ofrisk assessments to senior managementand appropriatestakeholders to enablerisk-based decisionmaking. 2.6:Updatetherisk register with theresults oftherisk assessment.

Domain 3 — Risk Response and Mitigation

3.1:Consult with risk owners to selectand align recommended risk responses with business objectivesand enableinformed risk decisions. 3.2:Consult with, orassist, risk owners on the development ofrisk action plans to ensurethat plans include key elements (e.g., response, cost, target date).
3.3:Consult on the design and implementation oradjustment ofmitigating controls to ensurethat therisk is managed to an acceptablelevel. 3.4:Ensurethatcontrol ownership isassigned to establish clear lines ofaccountability.
3.5:Assistcontrol owners in developing control proceduresand documentation to enableefficientand effectivecontrolexecution. 3.6:Updatetherisk register to reflectchanges in risk and management’s risk response.
3.7:Validatethat risk responses have been executed according to therisk action plans.

Domain 4 — Risk and Control Monitoring and Reporting

4.1:Defineand establish key risk indicators (KRIs)and thresholds based on available data, to enable monitoring ofchanges in risk. 4.2:Monitorand analyze key risk indicators (KRIs) to identify changes or trends in theIT risk profile.
4.3:Report on changes or trends related to theIT risk profileto assistmanagementand relevantstakeholders in decisionmaking. 4.4:Facilitatetheidentification ofmetricsand key performanceindicators (KPIs) to enablethe measurement ofcontrol performance. 4.5:Monitorand analyze key performanceindicators (KPIs) to identify changes or trends related to thecontrolenvironmentand determine theefficiency and effectiveness ofcontrols.
4.6:Reviewtheresults ofcontrolassessments to determinetheeffectiveness ofthecontrolenvironment.
4.7:Report on the performance of,changes to, or trends in the overallrisk profileand controlenvironment to relevantstakeholders to enable decisionmaking.

Toggle Filters

Want to run this course in-house?

Inquire about running this course in-house

None of these dates work for you?

Suggest another date & time

Achieve your Certified Risk and Information Systems Control (CRISC) Training & Certification Today!

Whether you are simply seeking a knowledge based IT course, or are working towards passing the exam for your next IT certification, we offer the courses you are looking for as daytime classes, evening classes, boot camps and on-demand.

We know that the instructor is the key to our students’ success and we have taken over a decade to build one of the best teams in the country. Our instructors have decades of cumulative real world experience and they bring that to every class they teach!

Get STARTED

Client Testimonials

Be wary of companies that pay external vendors to farm and post reviews, many of them are not authentic. Ours come straight from Google, you can’t alter reviews on Google Maps in any way. Don’t take our word for who we are – hear from our clients:

Francisco G.

2/15/2022

The instructor and class were very direct, simple and to the point. Very interactive as well. I’m grateful to have been apart of this class & pass it.

Francisco G.

7/07/2022

The instructor and class were very direct, simple and to the point. Very interactive as well. I’m grateful to have been apart of this class & pass it.

Sangwoo Lee

8/19/2021

Great prep for PMP exam.Dr. Salk is a great instructor. He is very engaging and presents material thoroughly.

Becca Lynn

6/06/2021

J. Chaney came to JBPHH, HI to instruct us for the SEC+ cert. We attended class Monday thru Friday, and tested. J taught us more than what was on the certification test, and he was available to answer all of our questions. I couldn't have passed the cert without his expertise.

Jake D.

7/07/2022

Awesome training, great supporting tools and aids. Kept me and my ADHD engaged while learning this great subject! This is my fourth class with Applied Technology Academy and I will continue to use them for my certification needs!

Ray G.

7/07/2021

This Security+ certification Boot Camp was PERFECT! When I took the class, I had zero background or experience in this Networking & Security+ arena. The class I took was led by J Chaney. He has expertly took me from a very nervous and clueless student to a confident student. I felt self-assured to take the certification exam. Could you have You-Tubed all the info? Yes, but that just memorization not comprehension. The instructor J made all of it digestible by his use personalization's of the content. Personalizations of the content helped bring this highly complex and technical data into bite-sized chunks, not everyone can do "it". J Chaney has the “It” effect, it is those intangibles that separate a good from great instructor. He can easily assess your level of understanding and customize "it" to you. Attention newbies: If you were worried about taking Security+, take this class with J Chaney with Applied Technology Academy.

Ashish K.

7/07/2022

I really had good training experience from ATA and our instructor J Chaney. It was very through and knowledgable.

Keisha Thomas

9/02/2022

Great Class. Lawerence Dodge was a great teacher, extremely knowledgeable and easy to understand. I would recommend anyone to take his courses. The pace was good and he was always willing to help. KUDOS

Mike M.

7/07/2021

J Chaney is highly knowledgeable and explains course material in a very comprehensive way. It is a lot of material for a one week course, but I felt that I was able to retain a good portion. Taking the Security + boot camp has me ready to tackle the test. ****Update**** I passed my test because of this boot camp on the first try. Well worth the time and money.

Brett F.

12/20/2021

Experts in the field that tailor the delivery of the overwhelming abundance of material and somehow make it digestible! Sec+ boot camp was a great investment!

Brett F.

7/07/2022

Experts in the field that tailor the delivery of the overwhelming abundance of material and somehow make it digestible! Sec+ boot camp was a great investment!

Janay L.

11/01/2020

best school out there 💗❗️

Chad B.

7/07/2020

I can't say enough good things about Applied Technology Academy. I require CompTia Security+ for my current job and this is the place that I went through to get it. Kim Locke was my initial contact that scheduled my class and J Chaney was my instructor and both are complete professionals. The quality of the class was unbelievable and totally prepared me for my S+ exam. I was very nervous about taking the exam but about half way through it I realized that J had nearly over prepared the class for success which is definitely the position that you want to be in. Overall, this is a top notch operation and I highly recommend them.

Jeremiah Hood

12/13/2021

Our organization hosted a CompTIA Security+ Boot Camp in December, conducted by ATA. We had a 100% pass rate for the certification exam. The instructor, Mr. Chaney was one of the best that I have seen in the business! The ATA Services Director, Ms. Pernaselci, and the ATA operations and support team were top notch, being adaptable to last minute changing needs. I highly recommend ATA for your organization's IT Workforce certification needs!

Jake Dean

12/18/2021

SEE ALL TESTIMONIALS

We offer more than just VCertified Risk and Information Systems Control (CRISC) Training

Our successful training results keep our corporate and military clients returning. That’s because we provide everything you need to succeed. This is true for all of our courses.

STRATEGIC PLANNING AND PROJECT MANAGEMENT

From Lean Six Sigma to PMI Project Management Professional, Agile and SCRUM , we offer the best-in-class strategic planning and project management training available. We are here to train your team!

IT AND CYBERSECURITY

As the leading Offensive Security US training provider, and a CompTIA and EC-Council award-winning training partner. We offer the best cybersecurity and vendor driven IT training and certification courses to keep your team ahead of the technology skills curve.

LEADERSHIP AND MANAGEMENT

Let us teach your team the high-level traits and micro-level tools & strategies of effective 21st-century leadership. Empower your team to play to each others’ strengths, inspire others, and build a culture that values communication, authenticity, and community.

Looking for VCertified Risk and Information Systems Control (CRISC) Training?

And no, we will not relentlessly hound you with sales calls, we promise! Please reach out to us with any questions you might have. We welcome the opportunity to talk through your individual training needs, or that of your team. We are a no pressure, service oriented company. Reach out – you’ll be glad you did!