MT
AutoVin IncI would highly recommend using Training Camp for this type of training but be prepared to work hard and do your prep work before the training because it is a very hard exam with a very wide area of knowledge being tested.
Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
5 Days
Our Official ISC2 CGRC Certification Boot Camp is a comprehensive review of various risk management frameworks & industry best practices merged with Training Camp’s award-winning comprehensive exam preparation for Governance, Risk, and Compliance exam. (The certification formerly known as CAP)
CGRC demonstrates to employers that you have the advanced technical skills and knowledge to understand Governance, Risk and Compliance (GRC) and can authorize and maintain information systems utilizing various risk management frameworks, as well as best practices, policies and procedures.
Our CGRC Boot Camp represents the culmination of hundreds of hours of instructional design, thousands of hours of exam-focused instruction, and tens of thousands of efficiently and effectively skilled, certified students.
Our program combines ISC2 Official CGRC Courseware and our ISC2 CGRC courseware, which keeps immediate pace with advancements in exam content by incorporating feedback from our thousands of ISC2 certified alumni students. They are reviewed every 30 days to ensure all information reflects the most current updates. Relying on traditional CGRC books or externally sourced materials do not offer this advantage.
Exam: CGRC
Length of exam: 3 hours
Number of items: 125
Item format: Multiple choice
Passing grade: 700 out of 1000 points
We utilize Authorized ISC2 instructors who are Subject Matter Experts well-versed in accelerated learning and exam preparation during our CGRC boot camp. Their delivery accommodates every student’s learning needs through individualized instruction, lab partner and group exercises, independent study, self-testing, and question/answer drills.
Our accelerated ISC2 CGRC training includes next-gen educational content covered in value-added evening review sessions with updated practice exam review drills – representative of the actual exam and lab sim questions delivered during your official ISC2 CGRC certification exam.
Upon completion of the course, students are offered to attend (as many times as desired) our ongoing live, online full-day exam preparation review sessions prior to taking the examination. We are so confident in our course, we offer the industry’s best guarantee.
Our exam support team will help you get ready for your CGRC certification training. From exam registration, to understanding all the steps needed for certification, they will answer any questions you make have to make sure you are building momentum towards CGRC certification success.
It is very important to stay up to date in this industry. CEUs are required to keep your certifications current. If you want to maintain your professional certified status, we are here to help keep your certifications current.
CGRC DOMAIN 1: INFORMATION SECURITY RISK MANAGEMENT PROGRAM
-Understand the Foundation of an Organization-Wide Information Security Risk Management Program
-Understand Risk Management Program Processes
-Understand Regulatory and Legal Requirements
CGRC DOMAIN 2: CATEGORIZATION OF INFORMATION SYSTEMS (IS)
-Define the Information System (IS)
-Determine Categorization of the Information System (IS)
CGRC DOMAIN 3: SELECTION OF SECURITY CONTROLS
-Identify and Document Baseline and Inherited Controls
-Select and Tailor Security Controls
-Develop Security Control Monitoring Strategy
-Review and Approve Security Plan (SP)
CGRC DOMAIN 4: IMPLEMENTATION OF SECURITY CONTROLS
-Implement Selected Security Controls
-Document Security Control Implementation
CGRC DOMAIN 5: ASSESSMENT OF SECURITY CONTROLS
-Prepare for Security Control Assessment (SCA)
-Conduct Security Control Assessment (SCA)
-Prepare Initial Security Assessment Report (SAR)
-Review Interim Security Assessment Report (SAR) and Perform Initial Remediation Actions
-Develop Final Security Assessment Report (SAR) and Optional Addendum
CGRC DOMAIN 6: AUTHORIZATION OF INFORMATION SYSTEMS (IS)
-Develop Plan of Action and Milestones (POAM)
-Assemble Security Authorization Package
-Determine Information System (IS) Risk
-Make Security Authorization Decision
CGRC DOMAIN 7: CONTINUOUS MONITORING
-Determine Security Impact of Changes to Information Systems (IS) and Environment
-Perform Ongoing Security Control Assessments (SCA)
-Conduct Ongoing Remediation Actions (e.g., resulting from incidents, vulnerability scans, audits, vendor updates)
-Update Documentation
-Perform Periodic Security Status Reporting
-Perform Ongoing Information System (IS) Risk Acceptance
-Decommission Information System (IS)
NIST/GOVERNANCE OVERVIEW
NIST SP 800-37 rev 1/800-53 rev 4/800-53A rev 4
FIPS 199/200
CNSSI 1253
NIST SP 800-30/800-39/800-60/800-64/800-115/800-137
OMB A-123/A-130
Get skilled, get certified. We offer a wide range of solutions trusted by thousands of organizations. Fill out a contact form and one of our Enterprise Solutions experts will contact you to discuss the best training solutions for your team. You can also e-mail our team directly at: [email protected]
Get Pricing & Schedule