CRISC: Certified in Risk and Information Systems Control

Students will master the four CRISC domains:

• Governance
• IT Risk Assessment
• Risk Response and Reporting
• Information Technology and Security

IT risk management professionals with at least 3 years of relevant professional work experience in IT risk and information systems control.

The CRISC certification is designed for:

• IT Managers
• IT Risk Analysts
• IT Consultants
• IT Risk/Security Advisory Managers
• IT Compliance Managers
• IT Risk Assessment Specialists

Module 1: Governance

• Risk Assessment Concepts, Standards and Frameworks
• Organizational Strategy, Goals and Objectives
• Organizational Structure, Roles and Responsibilities
• Organizational Culture and Assets
• Policies, Standards and Business Processes
• Enterprise Risk Management, Risk Management Frameworks and Three Lines of Defense
• Risk Profile, Risk Appetite and Risk Tolerance
• Navigating Professional Ethics of Risk Management and Requirements in Laws, Regulations and Controls

Module 2: IT Risk Assessment

• Risk Events, Threat Modeling and Threat Landscape
• Vulnerability and Control Deficiency Analysis
• Risk Scenario Development
• Risk Register
• Risk Analysis Methodologies
• Business Impact Analysis
• Inherent, Residual and Current Risk

Module 3: Risk Response and Reporting

• Risk Treatment/Risk Response Options
• Risk and Control Ownership
• Managing Risk from Processes, Third Parties and Emerging Sources
• Control Types, Standards and Frameworks
• Control Design, Selection and Analysis
• Control Implementation, Testing and Effectiveness
• Risk Treatment Plans
• Data Collection, Aggregation, Analysis and Validation
• Risk and Control Monitoring and Reporting Techniques
• Performance, Risk and Control Metrics

Module 4: Information Technology and Security

• Enterprise Architecture
• IT Operations Management
• Project Management
• Disaster Recovery Management
• Data Life Cycle Management
• System Development Life Cycle
• Emerging Technologies
• Information Security Concepts, Frameworks, Standards and Awareness Training
• Business Continuity Management
• Data Privacy and Protection Principles

CSX-P: Certified Cybersecurity Practitioner

The CSX-P: Certified Cybersecurity Practitioner was named 2016 Top Professional Certification program by the SC Magazine Awards and remains the first and only comprehensive performance certification testing one’s ability to perform globally validated cybersecurity skills spanning five security functions – Identify, Protect, Detect, Respond, and Recover.

CISM: Certified Information Security Manager

Designed for IT professionals with technical expertise and experience in IS/IT security and control looking to transition from team player to manager. CISM can add credibility and confidence to interactions with internal and external stakeholders, peers, and regulators.

CISA: Certified Information Systems Auditor

In this course, you’ll cover all five domains of the Certified Information Systems Auditor (CISA) exam and gain the knowledge and technical concepts required to obtain CISA certification. 

CGEIT: Certified in the Governance of Enterprise IT

The Certified in the Governance of Enterprise IT® (CGEIT®) program supports increasing business demands and recognizes the wide range of professionals whose knowledge and application of IT governance principles are key to managing the forces of transition.

CDPSE: Certified Data Privacy Solutions Engineer

The CDPSE: Certified Data Privacy Solutions Engineer course is an intensive, four-day examination preparation program to prepare individuals who are planning to sit for the Certified Data Privacy Solutions Engineer (CDPSE) exam.