Program Overview:

The Certified in Governance, Risk, and Compliance (CGRC) course, previously known as CAP (Certified Authorization Professional), is a globally recognized training program and certification offered by ISC2. This course is designed to equip professionals with the knowledge and skills required to apply risk management frameworks, ensure compliance with security and privacy standards, and manage governance effectively.

The course focuses on:

• Establishing governance, risk, and compliance (GRC) strategies.
• Implementing and managing security and privacy controls.
• Ensuring alignment with regulatory frameworks and organizational goals.

Who Should Enrol?

The course is ideal for:

• IT and Cybersecurity Professionals involved in risk management or compliance.
• Government Employees managing systems under frameworks like NIST RMF.
• Auditors, Risk Managers, and Compliance Officers in charge of organizational security programs.
• Project Managers working on secure system lifecycles.

Prerequisites:

The prerequisites to join the CGRC (Certified in Governance, Risk, and Compliance) course are generally minimal but depend on your goals and background. Below are the details based on ISC2’s official requirements and general guidance:

1. Professional Experience (Recommended for Certification):

• • ISC2 Requirement: To obtain the CGRC certification, you need at least 2 years of cumulative work experience in one or more of the seven CGRC domains.
  • If you do not meet this experience requirement, you can still take the CGRC exam and become an Associate of ISC2. Once you gain the necessary experience, you can earn the full CGRC certification.

2. Foundational Knowledge (Recommended for Courses): While not mandatory, it’s beneficial to have:

• • Basic understanding of IT systems (e.g., networks, databases, or security concepts).
  • Awareness of governance, risk, and compliance principles, such as frameworks like NIST, ISO 27001, or GDPR.
  • Knowledge of organizational processes (especially for those involved in auditing or compliance roles).

Educational Prerequisites:

• No formal degree is required to join a CGRC course. However:
• A degree or background in IT, cybersecurity, or business management can be helpful.

What If You’re a Beginner?

If you’re new to governance, risk, and compliance, it’s recommended to:

• Take an introductory course on risk management frameworks (e.g., NIST RMF).
• Gain a basic understanding of cybersecurity concepts.

Learning Objectives:

The CGRC course covers seven key domains:

1. Security and Privacy Governance, Risk Management, and Compliance Program
2. Scope of the System
3. Selection and Approval of Framework, Security, and Privacy Controls
4. Implementation of Security and Privacy Controls
5. Assessment/Audit of Security and Privacy Controls
6. System Compliance
7. Compliance Maintenance

These domains encompass the necessary skills and knowledge for effectively managing and securing information systems within various risk management frameworks.

What is included in the eLearning kit?

• Self-paced online adaptive learning journey
• Data-driven analytics dashboard for real-time feedback on learner progress
• Robust search functionality to narrow topics
• Pre- and post-course assessments
• Knowledge checks and end-of-domain quizzes
• Digital eTextbook
• Interactive content
• Domain-by-domain study sheets with key points
• Email content support
• Online interactive flash cards
• Glossary of Terms
• 24/7/365 chat technical support

Language Proficiency:

The CGRC course and exam are offered in English, so a good command of the English language is necessary for understanding the material and passing the exam.

Why GRC is important?

• Recognised globally as a benchmark for GRC expertise.
• Improves your understanding of how to balance organizational security needs with compliance obligations.
• Demonstrates your ability to apply a structured approach to managing risk.

Certification

After completing the course, you can take the CGRC certification exam to validate your expertise. If you don’t meet the work experience requirement, you’ll earn an Associate of ISC2 designation, which can later be upgraded to full certification upon gaining experience.

Exams:

Please note that an exam voucher is not included as part of the eLearning kit.

Why Choose ITPT Edinburgh?

• Accredited Training Partner: Delivering ISC2-approved content to ensure exam readiness.
• Flexible Learning: Study at your own pace, balancing work and personal commitments.
• Supportive Learning Environment: Access to industry-expert tutors and comprehensive study resources.
• Proven Success: ITPT has a strong track record of helping professionals achieve their CGRC goals.
• Authorised Testing Centre: We are an approved Pearson VUE Authorised Testing Centre, providing a secure and professional environment for conducting ISC2 certification examinations.

Enrolment and Fee Information:

• Start Date: Flexible – Enrol anytime

Course Fee:

Contact Us:

To learn more about eLearning Program or to register, contact us:

• Email: info@itpt.co.uk
• Phone: 0131 552 5558