Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
CertifyGRC: Achieve Mastery in ISC2 Governance, Risk & Compliance
Assess, authorize and maintain information systems. The ISC2 Certified in Governance, Risk and Compliance (CGRC) is one of the most in-demand and industry-leading cybersecurity certifications. The CGRC certification is a proven way to build your career and demonstrate your expertise within the risk management framework (RMF). This course is based on the NIST Risk Management Framework (RMF) as outlined in NIST SP800-37. Students gain the knowledge and skills needed to apply cost-effective and appropriate security controls with a risk-based approach; and prepare for the ISC2 CGRC exam. CGRC demonstrates to employers that you have the advanced technical skills and knowledge to understand Governance, Risk and Compliance (GRC) and can authorize and maintain information systems utilizing various risk management frameworks, as well as best practices, policies and procedures. During this students will learn how to maintain and authorize information systems within the NIST Risk Management Framework (RMF). Sought after by civilian, state and local governments, as well as system integrators supporting these organizations, you will leave with the knowledge and skills necessary to earn your (ISC)² CGRC certification, which verifies your ability to set up the formal processes used to assess risk and establish security requirements.
Course Overview
bachelor's degree in IT, cybersecurity, or business, along with certifications like CRISC, CISSP, or CISM. Relevant experience in risk management, policy development, and compliance with frameworks such as NIST, ISO, and COBIT is also essential. Strong analytical, communication, and problem-solving skills are critical for assessing and mitigating organizational risks.
8201 Corporate Dr., Suite 635
Landover, MD 20785
- Providers
- Courses
- Course and Provider Quantity
Learning Objectives
By attending this course, Participants will gain the expertise needed to lead GRC initiatives and support business objectives. This course provide in-depth knowledge and skills for managing governance, risk, and compliance within an organization.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Work Roles
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.