Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
CRISC Certification Boot Camp
Learn the principles and practices of IT governance. Build your knowledge around how IT risk relates to your organization and prepare to earn your Certified in Risk and Information Systems Control (CRISC) certification.
Infosec's CRISC Boot Camp is designed for IT professionals who are tasked with identifying, assessing and evaluating organizational risk. You'll learn about identifying and evaluating entity-specific risk, as well as how to help enterprises accomplish business objectives by designing, implementing, monitoring and maintaining risk-based, efficient and effective information systems controls. You'll leave fully prepared to earn your CRISC, one of the most in-demand certifications a risk professional can achieve.
Provider Information
InfoSec Institute
311 W. Washington
Madison, WI 53703
Course Overview
There are no prerequisites to take the exam. However, in order to apply for certification you must meet the necessary experience requirements as determined by ISACA: a minimum of three years of cumulative work experience performing the tasks of a CRISC professional across two of the four CRISC domains. Of these two required domains, one must be in either domain 1 or 2 (risk identification or assessment).
Learning Objectives
- Identify risks related to an organization's internal and external business and IT environments
- Identify potential threats and vulnerabilities to the organization's people, processes and technology
- Develop and analyze IT risk scenarios to determine potential impact
- Identify the effectiveness of existing controls
- Identify key stakeholders and assign risk ownership
- Communicate results of risk assessments
- Consult with risk owners on the design and implementation of mitigating controls
- Define and establish data-driven key risk indicators
- Monitor changes in risk indicators
- Report risk indicator changes to key stakeholders
- Analyze risk indicators to determine the effectiveness of existing controls
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Work Roles
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.