Crisc Certified in Risk and Information Systems Control All-In-One Exam Guide, Second Edition

A fully updated self-study guide for the industry-standard information technology risk certification, CRISC

Written by information security risk experts, this complete self-study system is designed to help you prepare for--and pass--ISACA's CRISC certification exam. CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide, Second Edition features learning objectives, explanations, exam tips, and hundreds of practice questions. Beyond exam prep, this practical guide serves as an ideal on-the-job reference for risk management and IT security professionals.

Covers all exam topics, including:

• IT and cybersecurity governance
• Enterprise risk management and risk treatment
• IT risk assessments and risk analysis
• Controls and control frameworks
• Third-party risk management
• Risk metrics, KRIs, KCIs, and KPIs
• Enterprise architecture
• IT operations management
• Business impact analysis
• Business continuity and disaster recovery planning
• Data privacy

Online content includes:

• 300 practice exam questions
• Test engine that provides full-length practice exams and customizable quizzes by exam topic

Author: Peter Gregory, Dawn Dunkerley, Bobby Rogers
Publisher: McGraw-Hill Companies
Published: 04/28/2022
Pages: 272
Binding Type: Hardcover
Weight: 1.46lbs
Size: 9.35h x 7.57w x 0.79d
ISBN: 9781260473339

About the Author
Rogers, Bobby: - Bobby E. Rogers is an Information Security Engineer working for a major hospital in the southeastern United States. His previous experience includes working as a contractor for Department of Defense agencies, helping to secure, certify, and accredit their information systems. His duties include information system security engineering, risk management, and certification and accreditation efforts. He retired after 21 years in the United States Air Force, serving as a network security engineer and instructor, and has secured networks all over the world. Bobby has a Master's degree in Information Assurance (IA), and is pursuing a doctoral degree in IA from Capitol College, Maryland. His many certifications include CompTIA's A+, CompTIA Network+, CompTIA Security+, and CompTIA Mobility+ certifications, as well as the CISSP-ISSEP, CEH, and MCSE: Security.Dunkerley, Dawn: - Dawn Dunkerley (Meridianville, AL), CISSP, ISSAP, ISSEP, ISSMP, CSSLP, PMP, received a Ph.D. in Information Systems from Nova Southeastern University in 2011 with a doctoral focus of information security success within organizations. Her research interests include cyberwarfare, cybersecurity, and the success and measurement of organizational cybersecurity initiatives. She holds the 2011 ISC2 Government Information Security Leadership Award (Crystal).Gregory, Peter: - Peter H. Gregory, CISM, CISA, CRISC, CISSP, CIPM, DRCE, CCSK, is a career information technologist and senior director of cyber GRC in a telecommunications company. He is the author of more than forty books, including CISM Certified Information Security Manager All-In-One Exam Guide and CISA Certified Information Systems Auditor All-In-One Exam Guide.

Bobby E. Rogers, CISSP-ISSEP, CRISC, CEH, CompTIA CySA, is a cybersecurity professional with over 30 years in the information technology and cybersecurity fields. He currently works with a major engineering company in Huntsville, Alabama, helping to secure networks and manage cyber risk for its customers. He is the author of CRISC Certified in Risk and Information Systems Control All-In-One Exam Guide and CompTIA Mobility+ All-In-One Exam Guide.

Dawn Dunkerley, CISSP, ISSAP, ISSEP, ISSMP, CSSLP, PMP, received a Ph.D. in Information Systems from Nova Southeastern University in 2011 with a doctoral focus of information security success within organizations. She holds the 2011 ISC2 Government Information Security Leadership Award (Crystal). She is the author of numerous books including CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide.