TDI

Facebook Instagram Twitter Snapchat Tiktok
Facebook Instagram

Certified in Risk and Information Systems Control (CRISC)

Duration

5 Days

Start Date

1-Jun-2026

End Date

5-Jun-2026

Venue

CAIRO – EGYPT

price

1475 KD

20% discount for group above 5 attendees

Course Overview

This ISACA-accredited CRISC preparation course equips professionals with advanced skills in IT risk identification, assessment, and response. Covering all four CRISC domains, the program provides practical frameworks for aligning IT risk management with enterprise objectives while maintaining optimal information systems controls. Participants will gain hands-on experience with risk scenario analysis and control implementation strategies.

Course Objectives

Upon completion, participants will be able to:
✔ Implement enterprise IT risk identification and assessment processes
✔ Design and monitor effective information systems controls
✔ Align risk response with organizational risk appetite and tolerance
✔ Evaluate control effectiveness using industry frameworks (COBIT, NIST, ISO)
✔ Communicate risk to stakeholders and support risk-aware decision making
✔ Prepare for the ISACA CRISC certification exam

Who Should Attend

This course is designed for:
◼ IT Risk Professionals
◼ Information Systems Control Officers
◼ Security and Compliance Managers
◼ Business Analysts involved in risk decisions
◼ IT Auditors expanding into risk management
◼ CISOs and Risk Committee Members

Course Content Breakdown

Day 1: IT Risk Identification

  • Enterprise risk management concepts
    • Risk universe and scenario development
    • Threat modeling methodologies
    • Workshop: Building a risk register

Day 2: IT Risk Assessment

  • Qualitative vs. quantitative risk analysis
    • Risk appetite and tolerance frameworks
    • Emerging risk identification (cloud, AI, IoT)
    • Case study: Financial impact calculation

Day 3: Risk Response and Mitigation

  • Risk treatment options (avoid, transfer, mitigate, accept)
    • Control design and implementation strategies
    • Third-party risk management
    • Lab: Developing risk response plans

Day 4: Information Systems Control

  • Control types (preventive, detective, corrective)
    • Control monitoring and effectiveness testing
    • Continuous control improvement cycles
    • Hands-on: Control gap assessment

Day 5: Risk Monitoring and Reporting

  • Key risk indicators (KRIs) development
    • Risk reporting for different stakeholders
    • Integrating risk into business processes
    • Capstone: Enterprise risk dashboard creation

 

Reset filter
Reset filter
Reset filter
Reset filter