Grc Analyst Guide - Governance Risk & Compliance

Governance | Information Security | Risk Management | Compliance | IT Audit

What you'll learn

Governance & Oversight

Information Security

Cybersecurity

Frameworks - NIST, ISO27001 & CIS

Risk Management

Third-Party Risk Management

Compliance Management

IT Audit & Assurance

Requirements

Laptop, Desktop required to view and participate in lessons

Enthusiastic about learning about learning GRC

This course does not require any prior knowledge or specific academic background

Description

Are you interested in becoming a GRC professional? GRC stands for Governance, Risk, and Compliance, and it is the integrated approach of managing these three aspects of an organization. GRC professionals are in high demand, as they can help organizations achieve their objectives, address uncertainty, and act with integrity.The GRC Analyst Guide course has been carefully designed to equip you with the skills and knowledge you need to succeed in the GRC field.What you will learn:Upon completion of this course, students will be able to:Gain an in-depth understanding of governance structures, risk assessment methodologies, and compliance frameworks.Perform qualitative & quantitative risk assessment.Ensure compliance with relevant regulations and industry standards.Identify cybersecurity controls within an organization's IT infrastructure.Prepare for certifications such as CRISC, CISA and CISM.Who is this course for:Students, IT Professionals, Starting or Changing career into ITStudents & professionals wanting to learn about GRCIT AuditorsIT Control TestersIT Security AnalystIT Compliance AnalystCyber Security AnalystInformation Security AnalystRisk AnalystIT professionalsCourse RequirementsThis course does not require any prior knowledge or specific academic background. However below are things needed for the best outcome from this course.Laptop, Desktop required to view and participate in lessonsEnthusiastic about learning Governance, Risk Management & ComplianceKnowledge of Information Security beneficial but not requiredNo prior Audit Experience requiredOther materials necessary for learning will be provided

Overview

Section 1: Introduction

Lecture 1 Introduction

Lecture 2 Understanding Governance Risk & Compliance

Lecture 3 Defining GRC

Lecture 4 GRC Critical Disciplines

Lecture 5 GRC Roles & Jobs

Lecture 6 Course Coverage

Lecture 7 GRC Implementation Drivers

Lecture 8 Importance of GRC

Lecture 9 Organizational Units

Lecture 10 GRC & Organizational Structure

Section 2: Governance & Oversight

Lecture 11 Governance & Key Stakeholders

Lecture 12 Governance & Policies

Lecture 13 Standards & Procedures

Lecture 14 Importance of Governance

Lecture 15 Assessing Governance

Section 3: Information Security

Lecture 16 What is Information Security

Lecture 17 What is Cybersecurity

Lecture 18 Information Security vs Cybersecurity

Lecture 19 Information Security Principles

Lecture 20 Quick Recap

Section 4: Cybersecurity Frameworks

Lecture 21 Cybersecurity Frameworks

Lecture 22 NIST

Lecture 23 ISO 27001

Lecture 24 CIS

Lecture 25 What is Internal Controls

Section 5: Information Security Scope & Controls

Lecture 26 Information Security Scope & Controls

Lecture 27 Identity & Access Management (IAM)

Lecture 28 Data Integrity

Lecture 29 Network Management

Lecture 30 End-Point Security

Lecture 31 Firewall & Intrusion Detection

Lecture 32 Software Development Life Cycle (SDLC)

Lecture 33 Inventory Management

Lecture 34 Change Management

Lecture 35 Patch Management

Lecture 36 Vulnerability Management

Lecture 37 Incident Management

Lecture 38 Business Continuity

Lecture 39 Policy Management

Lecture 40 Quick Recap

Section 6: Risk Management

Lecture 41 Risk Terminologies

Lecture 42 Sources of Vulnerabilities

Lecture 43 IT Risk Management Process

Lecture 44 Risk Assessment

Lecture 45 Likelihood & Impact

Lecture 46 Qualitative Risk Assessment

Lecture 47 Risk Matrix

Lecture 48 Quantitative Risk Assessment

Lecture 49 Qualitative or Quantitative

Lecture 50 Risk Response & Mitigation

Lecture 51 Risk & Control Monitoring

Lecture 52 Risk Reporting

Lecture 53 Third-Party Risk Management

Section 7: Compliance

Lecture 54 Compliance

Lecture 55 HIPAA

Lecture 56 PCI DSS

Lecture 57 Sarbanes-Oxley Act (SOX)

Lecture 58 SOX Compliance

Lecture 59 Service Organization Controls (SOC)

Lecture 60 SOC Categories & Types

Section 8: IT Audit

Lecture 61 IT Audit Introduction

Lecture 62 Types of IT Audit

Lecture 63 Internal vs External Auditor

Lecture 64 IT Audit Process

Lecture 65 Planning Phase

Lecture 66 Fieldwork Phase

Lecture 67 Reporting Phase

Lecture 68 Follow-Up Phase

Section 9: Next Steps

Lecture 69 Next Steps

Lecture 70 Congratulations

Students, Professionals, Starting or Changing career into IT,Students & professionals who want to become a GRC professional,Risk Analyst, Cyber Security Analyst, Information Security Analyst, IT Auditor, IT professionals