CRISC Certification Training

Certified in Risk and Information Systems Control program indicates an individual's expertise in professional-level to identify and manage enterprise IT risk by implementing and maintaining information systems controls. CRISC certified professionals establish a common language to facilitate communication and understanding between the stakeholders and IT groups by managing IT risk.

4.5 (321) 432 Learner

Course Features
  • Accredited Training Partner
  • Lifetime Training Access
  • Study Guides
  • Access to I labs
  • Exam Voucher Included
  • 24/7 Support


Wissenhive's official ISACA CRISC certification course program allows pupils to understand information technology risks: how to defend, protect, and future-proof any enterprise with in-depth coverage on the 4 CRISC domains: Governance, IT Risk Assessment, Risk response & reporting, and Information Technology and Security.

What you will learn

  • IT Risk Identification
  • IT Risk Assessment
  • Risk Response and Mitigation
  • Risk and Control Monitoring and Reporting


International industry expertise at your disposal as you deep-dive into the research topic and sector of your choice.

Career Options

You can find CRISC job opportunities in roles such as security risk strategist, IT security analyst, information security analyst, IT audit risk supervisor, and technology risk analyst.

Job Roles

Annual Salary

Top Recruiters

Annual Salary

Annual Salary

Top Recruiters

Top Recruiters

Annual Salary

Annual Salary

Top Recruiters

Top Recruiters

Annual Salary

Annual Salary

Top Recruiters

Top Recruiters

Annual Salary

Annual Salary

Top Recruiters

Top Recruiters

Annual Salary

Annual Salary

Top Recruiters

Top Recruiters

Course Content

Governance (12 Lectures)

Organizational Culture

Organizational Goals, Strategy, and Objectives

Organizational Roles, Structure, and Responsibilities

Policies and Standards

Organizational Assets

Business Processes

Risk Management Framework and Enterprise Risk Management

Risk Profile

Three Lines of Defense

Regulatory, Legal, and Contractual Requirements

Risk Tolerance and Risk Appetite

Professional Ethics of Risk Management

IT Risk Assessment (9 Lectures)

Risk Events (such as loss result and contributing conditions)

Threat Landscape and Threat Modelling

Control Deficiency Analysis and Vulnerability (root cause analysis)

Risk Assessment Standards, Concepts, and Frameworks

Risk Analysis Methodologies

Risk Scenario Development

Risk Register

Business Impact Analysis

Inherent and Residual Risk

Risk Response and Reporting (16 Lectures)

Risk Treatment / Risk Response Options

Third-Party Risk Management

Risk and Control Ownership

Management of Emerging Risk

Issue and Exception Management

Control Implementation

Control Selection, Design, and Analysis

Control Standards, Types, and Frameworks

Control Testing and Effectiveness Evaluation

Risk Treatment Plans

Data Aggregation, Collection, Analysis, and Validation

Risk and Control Reporting Techniques (scorecards, heatmap, dashboards)

Risk and Control Monitoring Techniques

Key Risk Indicators (KRIs)

Key Performance Indicators

Key Control Indicators (KCIs)

Information Technology and Security (11 Lectures)

IT Operations Management

Enterprise Architecture

Emerging Technologies

Disaster Recovery Management (DRM)

Project Management

Business Continuity Management

System Development Life Cycle (SDLC)

Data Lifecycle Management

Information Security Frameworks, Concepts, and Standards

Information Security Awareness Training

Data Privacy and Data Protection Principle

Course Details

Wissenhive’s CRISC Certification Course will allow individuals to enhance their skills and gain advanced knowledge understanding enterprise risk, planning, executing, scrutinizing, and retaining information systems controls while focusing on risk: identification, evaluation, assessment, response, and monitoring.

Who should take this course?

The CRISC Certification Course is ideal for IT professionals who are already working or want to make a career as a senior or professional in 

  • IT Risk Analysts
  • IT Network Professionals
  • IT Project Managers
  • ERM Professionals
  • IT Auditors
  • ISMS Auditors
  • Compliance Professional
  • Sr. Compliance Analyst
  • Security Consultant
  • IT Risk Management
  • IT Specialist
  • Security Engineer Architect


CRISC requirements include a minimum of three years of work experience in information security program management in two or more of the CRISC job domains, including either Domain 1 or 2. This experience must be obtained in the 10 years preceding the application or within five years of passing the exam.

Enquire Now

Training Options


Exam & Certification

Exam Information

Duration: 4 hours

Number of Questions: 150

Question format: Passing grade

Languages available: Multiple Choice 450 out of 800 English, French, German, Hebrew, Italian, Japanese, Korean, Spanish, Turkish, Chinese

CRISC Certification Training

Frequently Asked Questions

The CRISC examination is a four-hour (240 minutes) exam consisting of 150 multiple choice questions.

  • Pass the CRISC Exam within the last 5 years.
  • Work experience must be gained within the 10-year period preceding the application date for certification or within five years from the date of initially passing the exam.
  • A minimum of three years of cumulative work experience as a CRISC professional across at least two of the four CRISC domains is compulsory.
  • Of these two (2) required domains, one (1) must be in either Domain 1 or 2.
  • Submit the CRISC Certification Application including Application Processing Fee.

  • Pass the CRISC examination
  • Submit an application for CRISC certification
  • Adherence to the Code of Professional Ethics
  • Adherence to the Continuing Professional Education Program
  • Compliance with the Information Systems Auditing Standards

Upgrade Your Skills with Our Advanced Courses

Speak with

Our Advisor

Mail Us

Contact Us

Drop a query