CRISC Syllabus: The Four Domains

CRISC Course Outline and its four main domains

CRISC certification is ideal for professional individuals to build a career in IT Risk management. The CRISC exam verifies your ability, knowledge capacity and proven skills. However, before you get to do the exam, you’ll have to complete the CRISC syllabus. CRISC course outline is divided into four major domains, these are:

  1. IT Risk Identification

    In this chapter, you identify how certain IT risks assist in executing a risk management strategy, in line with business objectives as well as the entire enterprise risk management (ERM) strategy. You will learn information collection and review and determine possible potential risks the organization can be exposed to. This domain also teaches you to identify and assess threats through risk analysis and threat assessments within an organization.

    Other integral topics you’ll cover under this section include:

    • Identifying stakeholders
    • User Accountability
    • Creating and Maintaining an IT risk register
    • Identifying risk appetite and tolerance
    • Aligning IT risk with business objectives


    This CRISC syllabus domain covers roughly 27% of the CRISC Course outline and will also provide you with the knowledge to create training and collaborative awareness programs.

  2. IT Risk Assessment

    In the IT Risk Assessment domain, it covers roughly 28% of the CRISC Syllabus and here you’ll learn how to analyse and evaluate IT risk. Moreover, doing so will enable you to determine the likelihood and impact of the risks on business objectives and make effective risk-based decisions for the benefit of the organisation.

    Analysis and evaluation of risk scenarios is a primary feature of this domain since it enables you to determine probability and damage extent a specific risk would cause. You are also assessed on your ability to identify the status quo of existing Information System controls and if they are effective in mitigating IT risk.

    You will also learn how to review the results of risk and control, assess any shortcomings presented on the existing environment. You will also learn to assign correct risk ownership for accountability and communicate these results to senior management and stakeholders. This domain also shows you how to update the risk register regularly.

  3. Risk Response and Mitigation

    Determining risk response options and evaluating their efficiency and effectiveness in risk management is learnt in this third domain which covers about 23%. You will have the ability to consult with the risk owners to introduce or formulate measures that are in alignment with the business objectives. Consulting with risk owners helps in developing effective risk action plans through making informed decisions. In addition, how to validate a risk action plan is covered in this CRISC syllabus domain as well as design and implementation, therefore adjusting mitigating measures can be made easier.

    Since accountability is key here, clear communication lines must be established between all stakeholders involved in risk ownership. You’ll also learn how to create effective and efficient control measures

  4. Risk and Control Monitoring and Reporting

    You’ll learn how to define and establish key risk indicators in order to monitor risk changes. These changes are crucial since they tend to change an organization’s IT risk profile. Reporting on these findings is essential in ensuring informed decision making by relevant stakeholders and also realising business objectives.

FAQs on CRISC Syllabus

 

Materials included in CRISC training and imparting of these four domains include:

    • Video
    • Interactive Content
    • Downloadable workbooks and job aids
    • Case study activities
    • Mock examinations for practice

Corporate Group Training
  • Customized Training
  • Onsite / Virtual
  • Instructor-led Delivery
  • For small to large groups
  • Syllabus of CRISC Training Course

    • The Certified in Risk and Information Systems Control exam
    • The concepts of enterprise risk
    • Plan, execute, scrutinize and retain information systems controls
    • Risk: identification, evaluation, assessment, response, and monitoring
    • IS control design and execution
    • IS control maintenance and monitoring

    Download detailed course syllabus

    Download (PDF)

    Select your preferred training delivery mode

    Classroom
    Live Virtual Classroom

    Group Discount : up to 15%

    Registration closes in

    HOURS

    3
    1
    :

    MINS

    2
    8
    Live Virtual Classroom
    Aug2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0467

    English

    Select No. of Learners
    Per Participant
    Live Virtual Classroom
    Aug2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0468

    English

    Select No. of Learners
    Per Participant
    Live Virtual Classroom
    Aug2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0469

    English

    Select No. of Learners
    Per Participant

    Enroll before 9th August 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Aug2020
    Mon
    Tue
    Wed
    Thu
    Fri

    09:00 - 17:00 (EST)

    # INL0470

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 9th Aug

    Enroll before 28th August 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Sep2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0471

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 28th Aug

    Enroll before 30th August 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Sep2020
    Mon
    Tue
    Wed
    Thu
    Fri

    09:00 - 17:00 (EST)

    # INL0473

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 30th Aug

    Enroll before 4th September 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Sep2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0472

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 4th Sep

    Enroll before 6th September 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Sep2020
    Mon
    Tue
    Wed
    Thu
    Fri

    09:00 - 17:00 (EST)

    # INL0474

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 6th Sep

    Enroll before 25th September 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Oct2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0475

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 25th Sep

    Enroll before 27th September 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Oct2020
    Mon
    Tue
    Wed
    Thu
    Fri

    09:00 - 17:00 (EST)

    # INL0477

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 27th Sep

    Enroll before 2nd October 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Oct2020
    Sat
    Sun
    Fri
    Sat
    Sun

    09:00 - 17:00 (EST)

    # INL0476

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 2nd Oct

    Enroll before 4th October 2020 and Save CAD 350.70000000000005

    Live Virtual Classroom
    Oct2020
    Mon
    Tue
    Wed
    Thu
    Fri

    09:00 - 17:00 (EST)

    # INL0478

    English

    Select No. of Learners
    CAD 3507Early Bird Offer
    Ends - 4th Oct

    FAQs on CRISC

    Who should take up CRISC training?

    Job roles that can benefit from CRISC Certification training include, but are not limited to:

    • IT professionals
    • Risk professionals
    • Control professionals
    • Project managers
    • Business analysts
    • Compliance professionals

    Invensis Learning’s practice tests for CRISC certification are modeled on the actual examination and draw from the syllabus. They are conceptualized by our team of subject matter experts. Practice tests give you a feel of what the CRISC certification examination will be like and the extent of knowledge that is required.

    • Type: Multiple choice examination questions
    • No. of Questions: 150 questions
    • Duration: 240 minutes duration
    • Open/Closed book: Closed book
    • Result: 450 marks (on a scale of 200-800) required to pass

    There are no prerequisite to take the exam; however, in order to apply for certification you must meet the necessary experience requirements as determined by ISACA. A minimum of at least 3 years of cumulative work experience performing the tasks of a CRISC professional across at least three 3 CRISC domains is required for certification.

    The course structure or outline of the instructor-led CRISC exam preparation training program is as follows:

    • Risk Management and Information Systems Control
    • Risk Response
    • Risk Monitoring
    • Information Systems Control Design and Implementation
    • Information Systems Control Maintenance and Monitoring

    Corporate Training Solutions


  • Experienced & Industry Specific Trainers
  • Deliver sessions across continents via Live Online
  • Training in your Language
  • Customized Trainings
  • Training partner for Fortune 1000 companies

    Request for Training

    Phone number ( required * )

    You may select multiple Courses
    Select your preferred mode of contact


    By clicking "Submit", you agree to our Terms of Conditions, Privacy Policy.

    Get the Invensis Learning Advantage

    Highly qualified and Accredited Trainers

    Training Satisfaction Guaranteed

    Accredited High-Quality Courseware

    Reinforce with Retrospective Session

    Choose from a Wide Range of Courses

    Access to all our Latest Resources

    Recommended by our Participants Globally

    Checkout what they have to say about their experience with Invensis Learning

    "The Trainer's ability to go the extra mile and answer all questions related to the functions, tools and techniques played an important role in enabling a strong understanding of the P3O model. The trainer was punctual, professional and hands-on managing the interactivity of the session. The excellent course material provided a solid understanding of the P3O concepts. The course flow was organized and easy to follow. I recommend Invensis Learning for their trainings and I will be glad to take another course from Invensis in future."

    Farid O

    Monieb T
    Farid O
    Anuki G
    USA: +1 910-726-3695
    Switzerland: +41 22 518 20 42
    Australia: +61 2 5300 2805
    Netherlands: +31 20 262 2348
    Belgium: +32 2 585 31 34
    Denmark: +45 89 88 45 44
    Poland: +48 91 883 47 51
    hong-kongHong Kong: +852 5803 9039
    united_kingdomUK : +44 20 3322 3280
    India: +91 96202-00784
    © 2020 Invensis Inc.
    Disclaimer
    • PMI®, PMP®, CAPM®, PMI-ACP®, PMBOK® and the PMI Registered Education Provider logo are registered marks of the Project Management Institute. Inc.
    • ITIL® is a registered trade mark of AXELOS Limited, used under permission of AXELOS Limited
    • PRINCE2® is a registered trademark of AXELOS Limited, used under permission of AXELOS Limited
    • PRINCE2 Agile® is a registered trademark of AXELOS Limited, used under permission of AXELOS Limited
    • AgileSHIFT® is a registered trademark of AXELOS Limited, used under permission of AXELOS Limited
    • The Swirl logoTM is a trade mark of AXELOS Limited, used under permission of AXELOS Limited. All rights reserved
    • DevOps Foundation® is registerd mark of the DevOps institute
    • COBIT® is a trademark of ISACA® registered in the United States and other countries
    • CSM, A-CSM, CSPO, A-CSPO, and CAL are registered trademarks of Scrum Alliance
    • Invensis Learning is an Accredited Training Provider of EXIN for all their certification courses and exams