CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide, Second Edition
- 5h 38m
- Bobby E. Rogers, Dawn Dunkerley, Peter H. Gregory
- McGraw-Hill/Osborne
- 2022
A fully updated self-study guide for the industry-standard information technology risk certification, CRISC
Written by information security risk experts, this complete self-study system is designed to help you prepare for—and pass—ISACA’s CRISC certification exam. CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide, Second Edition features learning objectives, explanations, exam tips, and hundreds of practice questions. Beyond exam prep, this practical guide serves as an ideal on-the-job reference for risk management and IT security professionals.
Covers all exam topics, including:
- IT and cybersecurity governance
- Enterprise risk management and risk treatment
- IT risk assessments and risk analysis
- Controls and control frameworks
- Third-party risk management
- Risk metrics, KRIs, KCIs, and KPIs
- Enterprise architecture
- IT operations management
- Business impact analysis
- Business continuity and disaster recovery planning
- Data privacy
Online content includes:
- 300 practice exam questions
- Test engine that provides full-length practice exams and customizable quizzes by exam topic
About the Author
Peter H. Gregory, CISM, CISA, CRISC, CISSP, CIPM, DRCE, CCSK, is a career information technologist and senior director of cyber GRC in a telecommunications company. He is the author of more than forty books, including CISM Certified Information Security Manager All-In-One Exam Guide and CISA Certified Information Systems Auditor All-In-One Exam Guide.
Bobby E. Rogers, CISSP-ISSEP, CRISC, CEH, CompTIA CySA, is a cybersecurity professional with over 30 years in the information technology and cybersecurity fields. He currently works with a major engineering company in Huntsville, Alabama, helping to secure networks and manage cyber risk for its customers. He is the author of CRISC Certified in Risk and Information Systems Control All-In-One Exam Guide and CompTIA Mobility+ All-In-One Exam Guide.
Dawn Dunkerley, CISSP, ISSAP, ISSEP, ISSMP, CSSLP, PMP, received a Ph.D. in Information Systems from Nova Southeastern University in 2011 with a doctoral focus of information security success within organizations. She holds the 2011 ISC2 Government Information Security Leadership Award (Crystal). She is the author of numerous books including CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide.
In this Book
-
Introduction
-
Governance
-
IT Risk Assessment
-
Risk Response and Reporting
-
Information Technology and Security
-
Glossary