(CGRC) - Certified in Governance, Risk & Compliance Training Logo

(CGRC) - Certified in Governance, Risk & Compliance Training

Live Online & Classroom Enterprise Training

The Certified in Governance, Risk and Compliance (CGRC) — formerly known as CAP — is an advanced certification offered by (ISC)² that validates your expertise in authorizing and maintaining information systems within the Risk Management Framework (RMF).

COURSE BROCHURE DOWNLOAD PDF

Looking for a private batch ?

REQUEST A CALLBACK

Need help finding the right training?

Your Message

  • Enterprise Reporting

  • Lifetime Access

  • CloudLabs

  • 24x7 Support

  • Real-time code analysis and feedback

What is (CGRC) - Certified in Governance, Risk & Compliance Training about?

The CGRC Classroom Training is an instructor-led, in-person course designed to provide a comprehensive review of governance, risk, and compliance concepts and industry best practices. Delivered by CGRC-certified (ISC)² Authorized Instructors, this hands-on training prepares professionals for the CGRC certification exam by covering the seven domains outlined in the CGRC Common Body of Knowledge (CBK).

What are the objectives of (CGRC) - Certified in Governance, Risk & Compliance Training ?

  • Understand and apply the NIST Risk Management Framework (RMF) across the system lifecycle.
  • Implement security controls based on federal and organizational requirements.
  • Conduct continuous monitoring and assessment of security postures.
  • Develop and document a System Security Plan (SSP).
  • Understand roles and responsibilities in system authorization (AO, ISSO, SCA).
  • Maintain regulatory compliance (e.g., FISMA, FedRAMP, NIST SP 800-53).
  • Support system lifecycle decisions and risk tolerance for federal and non-federal systems.

Who is (CGRC) - Certified in Governance, Risk & Compliance Training for?

  • Information System Security Officers (ISSOs)
  • Information System Owners
  • Authorizing Officials (AOs)
  • Risk Analysts
  • Security Control Assessors (SCAs)
  • Compliance and Governance professionals
  • Federal IT security staff working under FISMA, FedRAMP, or RMF

What are the prerequisites for (CGRC) - Certified in Governance, Risk & Compliance Training?

  • 2+ years of paid full-time work experience in one or more of the seven CGRC domains
  • Experience in risk management, information systems security, or compliance in a regulatory setting is highly recommended.

Available Training Modes

Live Online Training

5 Days

Course Outline Expand All

Expand All

  • Understanding governance, risk, and compliance frameworks
  • Developing and implementing GRC programs
  • Aligning GRC strategies with organizational objectives
  • Defining system boundaries and interfaces
  • Identifying system components and data flows
  • Assessing system interdependencies
  • Evaluating and selecting appropriate controls
  • Implementing security and privacy controls
  • Documenting and approving control selections
  • Deploying selected controls within the system
  • Integrating controls into system operations
  • Ensuring control effectiveness
  • Conducting assessments and audits of controls
  • Identifying control deficiencies
  • Recommending corrective actions
  • Evaluating system compliance with applicable standards
  • Managing compliance documentation
  • Reporting compliance status to stakeholders
  • Monitoring and maintaining compliance over time
  • Updating controls and documentation as needed
  • Responding to changes in regulations and standards
DOWNLOAD COURSE BROCHURE

Who is the instructor for this training?

The trainer for this (CGRC) - Certified in Governance, Risk & Compliance Training has extensive experience in this domain, including years of experience training & mentoring professionals.

Reviews