OpenCourser brand icon
Sign in
We may earn an affiliate commission when you visit our partners.
Pluralsight logo

Information Security Risk Management Program for CGRC

Kevin Henry

This course will teach you the principles and standards of information security and risk management needed for the Certified in Governance, Risk, and Compliance Examination.

Read more

This course will teach you the principles and standards of information security and risk management needed for the Certified in Governance, Risk, and Compliance Examination.

Many information systems projects deliver systems that fail to meet adequate security requirements. This poses a risk, not just to the system but often to the entire organization. In this course, Information Security Risk Management Program for CGRC, you’ll learn to understand information security principles and the skills of risk management. First, you’ll explore risk management frameworks and concepts. Next, you’ll discover information security principles and controls. Finally, you’ll learn how to address legal and regulatory compliance requirements. When you’re finished with this course, you’ll have the skills and knowledge of information security risk management needed for the Certified in Governance, Risk, and Compliance Examination.

This course is no longer available. Find something similar by browsing:
Information Security Principles Risk Management Risk-based Control Selection Legal and Regulatory Compliance Governance, Risk, and Compliance Certified in Governance, Risk, and Compliance Examination

What's inside

Syllabus

Course Overview
Information Security Risk Management Foundations
Risk-based Control Selection
Legal and Regulatory Requirements
Read more

Traffic lights

Read about what's good
what should give you pause
and possible dealbreakers
Conveys fundamental information security management principles and standards
Explores risk management frameworks and theories that can be used in different settings
Covers legal and regulatory requirements associated with information security
Provides insights into governance, risk, and compliance management
Focuses on preparing learners for the Certified in Governance, Risk, and Compliance Examination

Save this course

Create your own learning path. Save this course to your list so you can find it easily later.
Save

Reviews summary

Cgrc exam preparation and risk management

According to learners, this course is a highly effective and well-structured resource primarily for individuals preparing for the CGRC examination. Students frequently commend the instructor's ability to simplify complex information security principles and risk management frameworks, making topics like legal and regulatory compliance easily digestible. While many appreciated the practical scenarios and case studies for real-world context, some expressed a desire for more interactive elements or greater technical depth, particularly intermediate learners. Overall, it provides a solid foundational understanding for CGRC candidates.
Offers practical scenarios, but some desire more.
"I particularly found the practical scenarios and case studies invaluable, as they provided real-world context to the theoretical concepts."
"My main suggestion would be to incorporate more interactive elements or a capstone project to make the learning more engaging."
"There wasn't enough emphasis on real-world application for my taste, and I found myself needing to consult external resources frequently."
Complex topics explained clearly with logical flow.
"The instructor's ability to simplify complex information security principles and risk management frameworks is truly commendable."
"The clarity of the content and the way risk-based control selection was explained made this complex topic much easier to grasp."
"It's well-organized, and the material is presented in a way that is easy to digest."
Excellent preparation for the CGRC certification.
"This course is exceptionally well-structured and aligns perfectly with the Certified in Governance, Risk, and Compliance (CGRC) examination objectives."
"Absolutely fantastic for CGRC preparation! The clarity of the content... made this complex topic much easier to grasp."
"This course exceeded my expectations for CGRC exam prep... A must-take for certification."
Pacing can be fast, some seek more interaction.
"The pace was also quite fast in some modules."
"I would have preferred a slower pace to fully absorb the information."
"The content... often felt like a lecture reading rather than an interactive learning experience."
Ideal for newcomers; less so for advanced learners.
"I was hoping for more in-depth technical details and advanced strategies... for intermediate learners, it might leave you wanting more."
"It's probably great for beginners or those entirely new to risk management, but for intermediate learners, it might leave you wanting more."
"I wouldn't call it comprehensive for intermediate to advanced learners... better suited for those new to the field."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Information Security Risk Management Program for CGRC with these activities:
Seek a mentor in the field of information security
Finding a mentor can provide you with valuable guidance, support, and insights from an experienced professional.
Show steps
  • Identify potential mentors through professional networks or online platforms
  • Reach out to your connections and inquire about mentorship opportunities
Organize and review your course materials regularly
Staying organized and actively reviewing materials will help you retain information better and prepare for assessments.
Show steps
  • Create a filing system for your notes, assignments, and other course materials
  • Review your materials regularly, even outside of scheduled study sessions
  • Summarize key concepts and make connections between different topics
Attend industry conferences or meetups focused on information security
Attending industry events will allow you to connect with professionals, learn about the latest trends, and gain insights from experts.
Show steps
  • Research and identify relevant industry events
  • Register for the events and actively participate in sessions and discussions
  • Network with attendees and exchange ideas
Three other activities
Expand to see all activities and additional details
Show all six activities
Practice risk assessment and mitigation techniques
Performing exercises and drills will help you develop proficiency in these techniques, improving your practical knowledge.
Browse courses on Risk Assessment
Show steps
  • Complete practice problems and case studies
  • Simulate risk assessment and mitigation scenarios
Volunteer at a local non-profit or educational institution focused on cybersecurity
Volunteering will provide you with practical experience and allow you to apply your knowledge in a real-world setting.
Show steps
  • Research and identify relevant volunteer opportunities
  • Contact the organization and inquire about volunteer positions
  • Participate in volunteer activities and contribute to the organization's mission
Create a presentation or infographic on information security best practices
Creating a presentation or infographic will force you to synthesize and communicate complex information, reinforcing your understanding.
Browse courses on Security Best Practices
Show steps
  • Research and gather information on best practices
  • Develop an outline and structure for your presentation or infographic
  • Create engaging visuals and content
  • Practice delivering your presentation or showcasing your infographic

Career center

Learners who complete Information Security Risk Management Program for CGRC will develop knowledge and skills that may be useful to these careers:
Information Security Analyst
Information Security Analysts plan and carry out security measures to protect computer systems and networks. They review new technologies and design new security solutions. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Information Security Analysts develop and implement effective security measures.
See salaries and explore the career path for Information Security Analyst
Information Security Manager
Information Security Managers lead and manage the development and implementation of an organization's information security program. They work with other departments to ensure that information security risks are managed effectively. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Information Security Managers develop and implement effective security programs.
See salaries and explore the career path for Information Security Manager
Risk Manager
Risk Managers identify, assess, and mitigate risks to an organization. They work with other departments to develop and implement risk management plans. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of risk management. This knowledge can help Risk Managers develop and implement effective risk management plans.
See salaries and explore the career path for Risk Manager
Compliance Manager
Compliance Managers ensure that organizations comply with all applicable laws and regulations. They work with other departments to develop and implement compliance programs. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Compliance Managers develop and implement effective compliance programs.
See salaries and explore the career path for Compliance Manager
Information Security Auditor
Information Security Auditors assess the security of computer systems and networks. They review security policies and procedures and make recommendations for improvements. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Information Security Auditors develop and implement effective security assessments.
See salaries and explore the career path for Information Security Auditor
Security Consultant
Security Consultants help organizations develop and implement security programs. They work with organizations to identify and mitigate security risks. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Security Consultants develop and implement effective security programs.
See salaries and explore the career path for Security Consultant
Chief Information Security Officer
Chief Information Security Officers (CISOs) are responsible for the overall security of an organization's information systems. They work with other departments to develop and implement security policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help CISOs develop and implement effective security programs.
See salaries and explore the career path for Chief Information Security Officer
Information Security Engineer
Information Security Engineers design and implement security solutions for computer systems and networks. They work with other departments to develop and implement security policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Information Security Engineers develop and implement effective security solutions.
See salaries and explore the career path for Information Security Engineer
Privacy Officer
Privacy Officers are responsible for protecting the privacy of an organization's data. They work with other departments to develop and implement privacy policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Privacy Officers develop and implement effective privacy programs.
See salaries and explore the career path for Privacy Officer
IT Auditor
IT Auditors assess the security and compliance of an organization's IT systems. They work with other departments to develop and implement IT audit plans. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help IT Auditors develop and implement effective IT audit plans.
See salaries and explore the career path for IT Auditor
Data Protection Officer
Data Protection Officers are responsible for protecting the privacy of an organization's data. They work with other departments to develop and implement data protection policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Data Protection Officers develop and implement effective data protection programs.
See salaries and explore the career path for Data Protection Officer
Cloud Security Architect
Cloud Security Architects design and implement security solutions for cloud computing environments. They work with other departments to develop and implement cloud security policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Cloud Security Architects develop and implement effective security solutions for cloud computing environments.
See salaries and explore the career path for Cloud Security Architect
Network Security Engineer
Network Security Engineers design and implement security solutions for computer networks. They work with other departments to develop and implement network security policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Network Security Engineers develop and implement effective security solutions for computer networks.
See salaries and explore the career path for Network Security Engineer
Cybersecurity Analyst
Cybersecurity Analysts investigate and respond to cybersecurity incidents. They work with other departments to develop and implement cybersecurity policies and procedures. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Cybersecurity Analysts develop and implement effective cybersecurity policies and procedures.
See salaries and explore the career path for Cybersecurity Analyst
Information Governance Specialist
Information Governance Specialists develop and implement policies and procedures for the management of information. They work with other departments to ensure that information is managed in a secure and compliant manner. Information Security Risk Management Program for CGRC may be useful in this role as it provides a comprehensive overview of the principles and standards of information security and risk management. This knowledge can help Information Governance Specialists develop and implement effective information governance policies and procedures.
See salaries and explore the career path for Information Governance Specialist

Reading list

We've selected 12 books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in Information Security Risk Management Program for CGRC.
Cover image
We Have Root
Save
Provides a comprehensive overview of security risk management for organizations. It valuable resource for security professionals and business leaders who need to understand and manage security risks to their organizations.
We Have Root
Paperback
Check
We Have Root
Kindle Edition
Check
Cover image
Information Security
Save
Provides a step-by-step guide to conducting information security risk assessments. It valuable resource for professionals who need to assess and mitigate risks to their organizations.
Information Security: Principles and Practices...
Kindle Edition
$$$
Information Security: Principles and Practices...
Misc. Supplies
Check Price
Cover image
Intrusion Detection
Save
This guide provides a comprehensive overview of computer security incident handling. It covers the fundamentals of incident handling, including incident response, recovery, and reporting. The book also includes practical guidance on how to implement an incident handling program.
Intrusion Detection
Paperback
$$
Cover image
ISO 27001/ISO 27002 - A guide to information...
Save
This textbook provides a comprehensive overview of risk management and control. It covers the fundamentals of risk management, including risk identification, assessment, and mitigation. The book also includes practical guidance on how to implement a risk management program.
ISO 27001/ISO 27002: A guide to information...
Kindle Edition
$$
Cover image
Information Security Management Handbook
Save
This handbook provides a comprehensive overview of information security management. It covers the fundamentals of information security management, including risk management, compliance, and governance. The book also includes practical guidance on how to implement an information security management program.
Information Security Management Handbook, Volume 6
Kindle Edition
$$
Information Security Management Handbook
Kindle Edition
$$$$
Information Security Management Handbook, Volume 3...
Hardcover
$$$$
Information Security Management Handbook, Fifth...
Hardcover
$$$
Information Security Management Handbook, Fourth...
Hardcover
$$
Handbook of Information Security Management 1999
Hardcover
$$
Information Security Management Handbook, Volume 2
Hardcover
$$$
Information Security Management Handbook, Volume 2
Hardcover
$$$$
Information Security Management Handbook, Volume 5
Kindle Edition
$$$
Information Security Management Handbook on CD-ROM,...
CD-ROM
Check Price
Cover image
Information Security Management Handbook
Save
Provides a comprehensive overview of information security management. It valuable resource for professionals who need to understand and manage information security risks to their organizations.
Information Security Management Handbook
Kindle Edition
$$$$
Information Security Management Handbook, Fifth...
Hardcover
$$$
Information Security Management Handbook, Sixth...
Paperback
$$$
Information Security Management Handbook, Volume 3...
Hardcover
$$$$
Information Security Management Handbook, Fourth...
Hardcover
$$
Information Security Management Handbook, Volume 5
Kindle Edition
$$$
Information Security Management Handbook, Volume 2
Hardcover
$$$
Handbook of Information Security Management 1999
Hardcover
$$
Information Security Management Handbook, Volume 2
Hardcover
$$$$
Information Security Management Handbook, Volume 4
Kindle Edition
$$$
Cover image
The Security Risk Assessment Handbook
Save
Provides a comprehensive guide to performing security risk assessments. It valuable resource for professionals who need to understand and manage security risks to their organizations.
The Security Risk Assessment Handbook
Paperback
$$$
The Security Risk Assessment Handbook: A Complete...
Hardcover
$$$
The Security Risk Assessment Handbook: A Complete...
Hardcover
$$$
The Security Risk Assessment Handbook: A Complete...
Kindle Edition
$$$
Cover image
Hacking: The Art of Exploitation, 2nd Edition
Save
This textbook provides a comprehensive overview of hacking. It covers the fundamentals of hacking, including penetration testing, vulnerability assessment, and exploit development. The book also includes practical guidance on how to conduct a hacking investigation.
Hacking: The Art of Exploitation, 2nd Edition
Paperback
$$
Hacking: The Art of Exploitation, 2nd Edition
Kindle Edition
$$
ISO 27001
Save
Provides a concise overview of the ISO 27001:2013 information security management standard. It is useful for organizations that are looking to implement or improve their information security management systems.
ISO 27001
Paperback
Check
ISO 27001
Kindle Edition
Check
Cover image
An In-Depth Guide to Mobile Device Forensics
Save
This textbook provides a comprehensive overview of digital forensics. It covers the fundamentals of digital forensics, including evidence collection, analysis, and reporting. The book also includes practical guidance on how to conduct a digital forensic investigation.
An In-Depth Guide to Mobile Device Forensics
Paperback
Check
An In-Depth Guide to Mobile Device Forensics
Kindle Edition
Check
Cover image
Phenomena
Save
Provides a comprehensive overview of the Defense Intelligence Agency (DIA). It covers the history, structure, and mission of the DIA. The book also includes a detailed analysis of the DIA's role in the War on Terror.
Phenomena
Paperback
Check
Phenomena
Kindle Edition
Check
Cover image
A Century of Spies
Save
Provides a comprehensive overview of the history of the U.S. intelligence community. It covers the evolution of the intelligence community from its origins in the Revolutionary War to the present day. The book also includes a detailed analysis of the intelligence community's role in major historical events, such as the Cold War and the War on Terror.
A Century of Spies: Intelligence in the Twentieth...
Paperback
$$
(日本語) Spy 100 years Masashi you move top secret the 20th...
Tankobon Hardcover
$$
(日本語) Spy 100 years Masashi you move top secret the 20th...
Tankobon Hardcover
$$

Share

Help others find this course page by sharing it with your friends and followers:
Facebook
LinkedIn
Reddit
X
Link
Email

Similar courses

Similar courses are unavailable at this time. Please try again later.
Course image
Time
79 hours
Level
Introductory
Via
Pluralsight
Instructor
Kevin Henry
Language
English
Traffic lights
Read about what's good
what should give you pause
and possible dealbreakers
Conveys fundamental information security management principles and standards
Explores risk management frameworks and theories that can be used in different settings
Covers legal and regulatory requirements associated with information security
Provides insights into governance, risk, and compliance management
Focuses on preparing learners for the Certified in Governance, Risk, and Compliance Examination
Share this
Share to help others discover this course.
Facebook LinkedIn X Reddit Link Email
Begin learning today
Enroll now to gain full access to Information Security Risk Management Program for CGRC.
Enroll now
Save for later
Add this course to your list. Find it anytime.
Save
Our mission

OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.

Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.

Find this site helpful? Tell a friend about us.

Affiliate disclosure

We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.

Your purchases help us maintain our catalog and keep our servers humming without ads.

Thank you for supporting OpenCourser.

© 2016 - 2025 OpenCourser