Brainmatics

CRISC (Certified in Risk and Information Systems Control) Exam Preparation

DESCRIPTION

Training CRISC (Certified in Risk and Information Systems Control) Exam Preparation dirancang untuk seorang IT professional yang memiliki pengalaman dengan risk identification, assessment, and evaluation, risk response, risk monitoring, IS control design and implementation, and IS control monitoring and maintenance.

Selain tujuan untuk sertifikasi, training ini juga bermanfaat untuk mendapatkan pengetahuan dalam membantu perusahaan mencapai tujuan bisnis dengan merancang, mengimplementasi, monitoring dan pemeliharaan berbasis resiko, efisiensi dan efektifitas kontrol sistem informasi.

CONTENT

1. Risk identification, assessment and evaluation

    1.1. Intro to Risk Management
    1.2. System Development Life Cycles
    1.3. Understanding the enterprise
    1.4. Legal, regulatory and contractual requirements
    1.5. Working with stakeholders
    1.6. Asset management
    1.7. Information threats
    1.8. Vulnerability analysis
    1.9. Understanding impacts
    1.10. Validating risk appetite and tolerance

2. Risk Response & Risk Monitoring

    2.1. Develop and implement risk responses
    2.2. Evaluating risk response options
    2.3. Validation of efficiency, effectiveness and economy
    2.4. Developing of the risk profile
    2.5. Developing of business cases
    2.6. Collect and validate data that measure key risk indicators (KRIs)
    2.7. Facilitating independent risk assessments and process reviews
    2.8. Identifying and reporting

3. Information Systems Control Design and Implementation

    3.1. Understanding of the business process objectives
    3.2. Design information systems controls
    3.3. Facilitate the identification of resource
    3.4. Ensuring implementation within time, budget and scope
    3.5. Provide progress reports
    3.6. Implementing information systems controls
    3.7. Identification of metrics and key performance indicators (KPIs)
    3.8. Assess and recommend tools

4. Control Monitoring and Maintenance

    4.1. Plan, supervise and conduct testing
    4.2. Review information systems policies, standards and procedures
    4.3. Using CMMI to evaluate the current state of information systems processes
    4.4. Correcting information systems control deficiencies and maturity gaps
    4.5. Provide information systems control status

5. Review and Practice Test

    5.1. Understanding multiple-choice exams strategies
    5.2. Time management for exam
    5.3. Practice test and reviewing answers

TARGET AUDIENCE

  1. Profesional IT
  2. Profesional Keuangan
  3. Auditor Internal/ Eksternal

 

INSTRUCTOR

Ahmad Reza Aminy. Menyelesaikan S2 Jurusan Ilmu Komputer di Universitas Indonesia pada tahun 2001. Telah tersertifikasi CISA, CISM, CRISC, CGEIT, ITILF, ISFS dan CCE. Berpengalaman kurang lebih 10 tahun sebagai Information Systems Auditor, dan IS Consultant. Memiliki keahlian dan tertarik dalam bidang IT Audit, IT Risk Management, IT Governance, IT Strategy, IT Infrastructure Library dan Risk Management.