Get Certified in Risk and Information Systems Control (CRISC)
The Certified in Risk and Information Systems Control (CRISC) certification path teaches you how to design, implement, monitor and maintain risk-based, efficient and effective IS controls.
ISACA CRISC training
This learning path builds on your existing enterprise security knowledge and prepares you to earn ISACA’s highly-regarded CRISC certification. You’ll learn how to help enterprises understand their business risk and improve your skills around implementing effective information systems controls as you progress through 15 courses aligned with the four CRISC exam objectives. You’ll dive deep into the world of enterprise risk, including frameworks, strategies, assessments, analysis, mitigation and response, as well as the design, implementation and monitoring of information system controls. Upon completion, you’ll be prepared to earn your CRISC certification and validate your knowledge as an enterprise risk management professional.
Learning path components
CRISC Custom Practice Exam
CRISC Skill Assessment
Risk Identification Overview
Risk Identification Frameworks and Methods
Risk Culture and Communication
IT Risk Strategy
Impact of Compliance
IT Security Risk Concepts
Risk Assessment Overview
Risk Assessment Techniques
Risk and Control Analysis
Risk-Based Decision Making
Risk Response and Mitigation Overview
Risk Response Options
Control Design and Implementation
Risk and Control Monitoring and Reporting Overview
Key Risk Indicators and Key Performance Indicators
What you’ll learn.
The CRISC certification exam covers four primary domains:
- IT risk identification
- IT risk assessment
- Risk response and mitigation
- Risk and control monitoring and reporting
Who is this for?
To become a CRISC, you need to both pass the CRISC exam and have three years experience performing the tasks of a CRISC professional across at least two of the four domains (one of which must be either IT risk identification or IT risk assessment).
This certification path is designed for:
- Risk management professionals
- Cybersecurity managers
- Business analysts
- Project managers
- Compliance professionals
- Anyone with a desire to learn risk management and get certified!
You're in good company
Infosec Skills is a very good place for building technical acumen and engineering development knowledge. It enables us to provide training to the entire team on relevant topics.
Romy Ricafort, West Division Senior Director of Sales Engineering
Comparing Infosec to other vendors is like comparing apples to oranges. My instructor was hands-down the best I've had.
James Coyle , Senior U.S. Public Sector Channel Sales Engineer
Train on your schedule
- 600+ courses
- 100s of hands-on labs and projects
- 70+ role-based learning paths
- Skill assessments
- Custom learning paths
- Custom certification practice exams
- Cloud-hosted cyber ranges
- Infosec peer community support
Infosec Skills Teams
- All Infosec Skills content for the year
- Team boot camp discounts — online or onsite (not included with subscription)
- Team administration and reporting
- Custom team learning paths
- Transferable licenses
- Dedicated client success manager
Award-winning training that you can trust
Best Software - Highest Satisfaction
Best IT Security-related Training Program
Best Cybersecurity Education Provider & Best Security Education Platform
Most Innovative Product - Cybersecurity Training for Infosec Professionals
Global Excellence - Cyber Security Education & Training
Exceptional learning experiences powered by LX Labs cyber expertise
Infosec Skills courses and labs are powered by LX Labs — our elite team of cyber SMEs, learning specialists and community of top-ranked security instructors, published authors and sought-after industry leaders. We rigorously vet all Infosec Skills training resources to guarantee they meet certification and compliance requirements and align with recognized guidelines like the NICE Cybersecurity Workforce Framework.