The Knowledge Academy Logo
The Knowledge Academy Logo
+61 1-800-150644 - Available 24/7

Send us your message.


Classroom Training

Popular Tag

At The Knowledge Academy, our classroom-based training courses allow delegates to study and learn in a friendly, engaging, and interactive environment. We ensure the very best level of teaching, with first-rate instructors, resources, and state-of-the-art facilities. We provide courses of varying durations and can arrange weekend and residential courses in order to suit your requirements.

Furthermore, our classroom courses are carried out in thousands of locations worldwide, making training easily accessible wherever you are. Our courses typically begin at 9.00 am and continue until 5.00 pm each day, with breaks and refreshments provided. , As our most popular form of training available, we pride ourselves in continuously delivering an outstanding learning experience for our delegates in the classroom.

View classroom dates
  • Direct support from our experienced trainers throughout the course
  • Training courses available in thousands of locations globally
  • Partake in engaging and valuable activities in the classroom to boost your learning potential
  • Receive an all-encompassing learning experience

Online Training

Our online-based training courses aim to provide you with a complete training experience. Due to their flexibility, these courses are greatly suited to busy working professionals, or any individual who would prefer the convenience of an online training course.

Our Computer-Based Training (CBT) courses remove the time and cost associated with travelling to course locations. You can complete your chosen course in any location, and work at your own pace, as the learning portal can be accessed 24/7. All of our online training courses have technical and administrative support and mobile access. Furthermore, each course has been carefully designed to incorporate informative, instructive, and engaging content. In this way, online learning can guarantee a valuable and enjoyable training solution.

View online prices
  • Our flexible online courses provide you with 24/7 access
  • Take your time with 90 days from first login to complete the course
  • Enjoy an engaging and interactive learning experience
  • Courses available through our easy-to-use learning portal

In-house Training

Our In-house training option allows you to select any of our courses and receive training at a venue of your choice, by any method of your choice.

IIn-house courses deliver training to multiple employees at once, thus reducing travel expenses and providing you with the ultimate convenience and value for money. In addition, this option allows you to receive a training course that has been specifically tailored to meet your business needs, ensuring first-class quality, applicability, and value.

By choosing to bring bespoke training to the office, you can improve business performance, and make your organisation more streamlined, resourceful, and profitable. With over 25 years’ of experience, we are the market-leaders of In-house training.

Book onsite
  • Reduce the costs of employees taking time away from the workplace to train
  • Streamline your business with this bespoke training solution
  • Maximise your training budget
  • Monitor your employees’ progress and ensure that they receive applicable qualifications

Virtual Training

Our Virtual training courses provide you with the option to learn using a specialised simulated virtual environment. In this environment, our expert training instructors will be able to convey information and provide you with the all the knowledge you require to earn your qualification with The Knowledge Academy. As the largest global training provider, this method of training allows us to extend our training scope to those who may not be able to attend a classroom course itself, but would like to receive direct training and support from an instructor.
Using this training delivery method, you would benefit from the convenience of remote access and the elimination of the time and cost associated with travelling to a training venue.

View virtual dates
  • Receive direct support from our experienced trainers
  • Acquire the benefits of a classroom course, without the need to travel
  • Train from the comfort of your own home using remote access
  • All virtual training courses come with technical and administrative support

CRISC Training

CRISC Training Information


The mark of excellence for a professional certification program is the value and recognition it bestows on the individual who achieves it. The Certified in Risk and Information Systems Control (CRISC) program, sponsored by ISACA, recognizes a wide range of professionals for their knowledge of enterprise risk and their ability to design, implement, monitor and maintain information systems (IS) controls to mitigate such risk. The CRISC certification is designed for IT professionals who have hands-on experience with risk identification, assessment and evaluation; risk response; risk monitoring; IS control design and implementation; and IS control monitoring and maintenance. The CRISC designation will not only certify professionals who have knowledge and experience identifying and evaluating entity-specific risk, but also aid them in helping enterprises accomplish business objectives by designing, implementing, monitoring and maintaining risk-based, efficient and effective IS controls.

The technical skills and practices that CRISC promotes and evaluates are the building blocks of success in the field. Possessing the CRISC designation demonstrates proficiency and is the basis for measurement in the profession. With a growing demand for professionals possessing risk and control skills, CRISC has positioned itself to be the preferred certification program by individuals and enterprises around the world. CRISC certification signifies commitment to serving an enterprise and the chosen profession with distinction.


There are no pre-requisites.

Who should attend?

IT professionals interested in earning Certified in Risk and Information Systems Controls (CRISC) certification. CRISC is for IT professionals, risk professionals, business analysts, project manager and/or compliance professionals, how to work towards evaluation and mitigation of risk, and who have job experience in the following areas:

  • Risk identification, assessment and evaluation
  • Risk response and monitoring
  • IS control design/monitoring and implementation/maintenance

What will you learn? 

This seminar has been designed to prepare Delegates for the CRISC examination by enabling them to supplement their existing knowledge and understanding so as to be better prepared to pass the exam, as defined by ISACA.

Course Outline

Domain 1 - Risk Identification, Assessment and Evaluation

Identify, assess and evaluate risk to enable the execution of the enterprise risk management strategy.
Domain 1—Task Statements:

  • 1.1 Collect information and review documentation to ensure that risk scenarios are identified and evaluated.
  • 1.2 Identify legal, regulatory and contractual requirements and organizational policies and standards related to information systems to determine their potential impact on the business objectives.
  • 1.3 Identify potential threats and vulnerabilities for business processes, associated data and supporting capabilities to assist in the evaluation of enterprise risk.
  • 1.4 Create and maintain a risk register to ensure that all identified risk factors are accounted for.
  • 1.5 Assemble risk scenarios to estimate the likelihood and impact of significant events to the organization.
  • 1.6 Analyze risk scenarios to determine their impact on business objectives.
  • 1.7 Develop a risk awareness program and conduct training to ensure that stakeholders understand risk and contribute to the risk management process and to promote a risk-aware culture.
  • 1.8 Correlate identified risk scenarios to relevant business processes to assist in identifying risk ownership.
  • 1.9 Validate risk appetite and tolerance with senior leadership and key stakeholders to ensure alignment

Domain 1—Knowledge Statements:

  • 1.1 Knowledge of standards, frameworks and leading practices related to risk identification, assessment and evaluation
  • 1.2 Knowledge of techniques for risk identification, classification, assessment and evaluation
  • 1.3 Knowledge of quantitative and qualitative risk evaluation methods
  • 1.4 Knowledge of business goals and objectives
  • 1.5 Knowledge of organizational structures
  • 1.6 Knowledge of risk scenarios related to business processes and initiatives
  • 1.7 Knowledge of business information criteria
  • 1.8 Knowledge of threats and vulnerabilities related to business processes and initiatives
  • 1.9 Knowledge of information systems architecture (e.g. platforms, networks, application, databases and operating systems)
  • 1.10 Knowledge of information security concepts
  • 1.11 Knowledge of threats and vulnerabilities related to third-party management
  • 1.12 Knowledge of threats and vulnerabilities related to data management
  • 1.13 Knowledge of threats and vulnerabilities related to the system development life cycle
  • 1.14 Knowledge of threats and vulnerabilities related to project and program management
  • 1.15 Knowledge of threats and vulnerabilities related to business continuity and disaster recovery management
  • 1.16 Knowledge of threats and vulnerabilities related to management of IT operations
  • 1.17 Knowledge of the elements of a risk register
  • 1.18 Knowledge of risk scenario development tools and techniques
  • 1.19 Knowledge of risk awareness training tools and techniques
  • 1.20 Knowledge of principles of risk ownership
  • 1.21 Knowledge of current and forthcoming laws, regulations and standards
  • 1.22 Knowledge of threats and vulnerabilities associated with emerging technologies

Domain 2 - Risk Response

Develop and implement risk responses to ensure that risk factors and events are addressed in a cost-effective manner and in line with business objectives.
Domain 2—Task Statements:

  • 2.1 Identify and evaluate risk response options and provide management with information to enable risk response decisions.
  • 2.2 Review risk responses with the relevant stakeholders for validation of efficiency, effectiveness and economy.
  • 2.3 Apply risk criteria to assist in the development of the risk profile for management approval.
  • 2.4 Assist in the development of risk response action plans to address risk factors identified in the organizational risk profile.
  • 2.5 Assist in the development of business cases supporting the investment plan to ensure risk responses are aligned with the identified business objectives.

Domain 2—Knowledge Statements:

  • 2.1 Knowledge of standards, frameworks and leading practices related to risk response
  • 2.2 Knowledge of risk response options
  • 2.3 Knowledge of cost-benefit analysis and return on investment (ROI)
  • 2.4 Knowledge of risk appetite and tolerance
  • 2.5 Knowledge of organizational risk management policies
  • 2.6 Knowledge of parameters for risk response selection
  • 2.7 Knowledge of project management tools and techniques
  • 2.8 Knowledge of portfolio, investment and value management
  • 2.9 Knowledge of exception management
  • 2.10 Knowledge of residual risk

Domain 3 - Risk Monitoring

Monitor risk and communicate information to the relevant stakeholders to ensure the continued effectiveness of the enterprise’s risk management strategy.
Domain 3—Task Statements:

  • 3.1 Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to relevant stakeholders.
  • 3.2 Monitor and communicate key risk indicators (KRIs) and management activities to assist relevant stakeholders in their decision-making process.
  • 3.3 Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
  • 3.4 Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.

Domain 3—Knowledge Statements:

  • 3.1 Knowledge of standards, frameworks and leading practices related to risk monitoring
  • 3.2 Knowledge of principles of risk ownership
  • 3.3 Knowledge of risk and compliance reporting requirements, tools and techniques
  • 3.4 Knowledge of key performance indicator (KPIs) and key risk indicators (KRIs)
  • 3.5 Knowledge of risk assessment methodologies
  • 3.6 Knowledge of data extraction, validation, aggregation and analysis tools and techniques
  • 3.7 Knowledge of various types of reviews of the organization’s risk monitoring process (e.g. internal and external audits, peer reviews, regulatory reviews, quality reviews)
Please arrive at the venue for 8.30am
The course starts at 9am and finishes at 5pm
There are no pre-requisites.
The Knowledge Academy provides you with materials, an experienced instructor and refreshments.
All of our instructors have over ten years of experience.
No, there are no hidden costs.
There is no exam. You will have to book the exam separately with ISACA.

Reasons to choose
CRISC Training

  • Demonstrate your knowledge and expertise in risk management
  • Increase your value within your organisation and provide a gateway to more strategic level roles
  • Gain competitiveness in the employment market
  • Training in luxury nationwide venues
  • Courses delivered by world class training instructors
  • Training course includes materials and certificate
  • Book Online or Call 01344 203999 to speak to a training advisor today

Why choose
TKA Logo

Gold Tag

Best Price in the Industry

You won’t find better value in the marketplace. If you do find a lower price, we will beat it.

Delivery Icon

Various Delivery Methods

Flexible delivery methods are available depending on your learning style.

Resource Icon

Resources Included

Resources are included for a comprehensive learning experience.

Dates & Prices

Select your course

Select your preferred delivery method

Choose a Region

Choose a Location

Choose a Month

Office Icon Attend your course from the office or home
Trainer Icon Interactive support from experienced trainers
Simple Icon Simple to setup and easy to use on any device

Complete the steps below to receive a quote or more information

How will you be funding your training?

Self funding

Company funding

Not sure

Key points about this course

Duration: 3 days*

Thames Water Logo

"Really good course and well organised. Trainer was great with a sense of humour - his experience allowed a free flowing course, structured to help you gain as much information & relevant experience whilst helping prepare you for the exam"

Joshua Davies, Thames Water

Google Logo
Samsung Logo
Shell Logo

"...the trainer for this course was excellent. I would definitely recommend (and already have) this course to others."

Diane Gray, Shell

Mercedes Logo