Cyber Security Category Banner Image

IT Risk Fundamentals

  • Length 2 days
  • Inclusions Exam voucher
Course overview
View dates &
book now
Course locations >>

Why study this course

Every enterprise experiences risk. Risk is the result of uncertainties that an enterprise is exposed to that threatens its ability to achieve its business goals and objectives.

ISACA’s IT Risk Fundamentals Certificate ensures that employees within your organisation have the foundational knowledge and understanding of both risk* and I&T related risk** to ensure any threats to achieving business goals and objectives are mitigated through risk management, risk identification, risk assessment and analysis, and risk response.

The certificate provides valuable foundational knowledge on terminology, concepts, and processes that will empower professionals within your organisation to better communicate with risk or IT Risk professionals or provide a foundation for those who are interested in working as a risk or IT Risk professional.

Certificate candidates will explore basic terminology, concepts, general practices, and explanations of risk and I&T-related risk.

*Risk is the combination of the likelihood of an event and its impact. Risk is most often associated with uncertainties and deviations from expected results that can have an adverse impact to an enterprise and threaten its ability to meet its business objectives.

**I&T-related risk is a part of overall business risk and is associated with the use, ownership, operation, involvement, influence, and adoption of I&T within an enterprise. Most enterprises are highly dependent on their IT systems. The more an enterprise relies on its IT systems, the more serious the potential consequences of an I&T-related failure. An IT system failure can have a great impact on the business supported by the IT system.

Request Course Information


What you’ll learn

After completing this course, participants will have the knowledge to:

  • Explain the basic terms and concepts of Risk Management as it applies to I&T risk

  • Describe the purpose, objectives, and importance of risk governance and risk management

  • Summarise the risk management process and workflow

  • Describe the relationship between assets, risk factors, threats, and vulnerabilities

  • Describe the use and benefits of risk scenarios

  • Explain the process and methods used to complete risk identification

  • Describe elements and steps necessary to complete risk assessment and analysis

  • Detail the risk response process and options available

  • Outline the importance of an ongoing risk monitoring process and a proactive and continuous approach to risk management


ISACA Accredited Elite Partner Logo

ISACA at Lumify Work

ISACA provides practical guidance, benchmarks and other effective tools for all enterprises that use information systems. Through its comprehensive guidance and services, ISACA defines the roles of information systems governance, security, audit and assurance professionals worldwide.

Lumify Work is an Accredited Elite Partner of ISACA.


Who is the course for?

This certificate is helpful for professionals who are seeking to start a career in risk or I&T-related risk. The credential is ideal for professionals who wish to learn about risk and information and technology (I&T)-related risk, who currently interact with risk professionals, or are new to risk and interested in working as a risk or IT Risk profession.


Course subjects

Domain 1: Risk Introduction and Overview

  • Risk Terminology Review

  • Business Risk

  • I&T Related Risk

  • Controls

Domain 2: Risk Governance and Management

  • Risk Governance

  • Risk Management

  • Positioning Risk

  • Risk Stakeholders, Roles, and Structures

  • Risk Communication, Policy, Scope, and Workflow

Domain 3: Risk Identification

  • Asset Identification

  • Threats

  • Vulnerabilities

  • I&T-related Risk Areas

  • Risk Scenarios

Domain 4: Risk Assessment and Analysis

  • Risk Assessment Process

  • Risk Scenario Evaluation

  • Risk Analysis Process, Approaches, and Methods

  • Risk Ranking, Prioritisation, and Aggregation

  • Risk Documentation

  • Sample Risk Register

  • Control Assessment

Domain 5: Risk Response

  • Risk Response Process and Strategies

  • Control Design and Implementation

  • Incident Management

  • Business Continuity and Disaster Recovery

  • Residual Risk

  • Process Development and Improvement

  • Risk Response Selection, Prioritisation, and Communication

Domain 6: Risk Monitoring, Reporting, and Communication

  • Risk Monitoring Process

  • Key Risk Indicators

  • Key Performance Indicators

  • Risk and Control Monitoring and Testing

  • Risk Reporting and Communication


Prerequisites

There are no prerequisites for taking this course or the exam.


Industry Association Recognition

This course is eligible for Continuing Professional Education (CPE) hours/points to assist in maintaining your ISACA certification.

  • Contact hours: 14 hours

  • Continuing Professional Education: 14 CPEs

If you wish to claim CPEs, Lumify Work can verify your attendance. Please complete this ISACA form and email us at [email protected].


Terms & Conditions

The supply of this course by Lumify Work is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.


Request Course Information

Awaiting course schedule

If you would like to receive a notification when this course becomes available, enter your details below.

Personalise your schedule with Lumify USchedule

Interested in a course that we have not yet scheduled? Get in touch, and ask for your preferred date and time. We can work together to make it happen.



Loading