Governance, Risk, & Compliance (GRC) Training - Cohort 02

+ View more

Course overview

COURSE OVERVIEW

Become a Job-Ready Governance, Risk, and Compliance (GRC) Professional in just 16-Weeks! This course is designed to equip TPRM/GRC analysts with the ability to assess and document an organization’s compliance and risk posture through accurately reviewing and assessing its information assets. Participants will learn how to effectively identify, mitigate, and reduce risks. In addition, participants will gain the skills needed to examine & audit current policies, procedures, and standards to support more risk-aware decisions across organizations.

WHO SHOULD ATTEND?

Those seeking to start a career in Cybersecurity Third Party Risk Management/GRC Compliance.
Those who want to learn how to implement TPRM/GRC.
Those who want to possess technical competency in assessing organization security effectiveness.
Those who want to get a better understanding of TPRM/GRC best practices and tools.

LEARNING OBJECTIVES

Introduction to Cybersecurity
TPRM/GRC Introduction & Course Overview
TPRM/GRC Approach to Managing Cybersecurity
Program Governance & Planning
Laws, Regulations & Compliance Frameworks
Cybersecurity Risk Management
Information Security Governance
Compliance and Audits
TPRM/GRC Project Exercise

DELIVERY FORMATS

Classroom, Instructor-Led
Online, Instructor-Led
Self-Paced
Corporate Training

COURSE DURATIONS

16 Weeks (64 Hours)

START DATE & TIME

PREREQUISITE

All prerequisites are built into the program.

WHY TRUTEK ACADEMY?

Industry-Relevant Projects (Gain on the job experience)
Microsoft 365 suite access (Duration of the class)
Mentorship Program (Duration of the class)
On-Demand (Class Recording)
Interview Preparation
Resume Assistance
LinkedIn Profile Development
LinkedIn Networking Tips
Taught by industry experts and designed to meet the ever-evolving cybersecurity industry

KEY FEATURES OF THE CYBERSECURITY THIRD PARTY RISK MANAGEMENT/GRC COMPLIANCE TRAINING

85% hands-on projects — no exams.
Validation you are TPRM/GRC job ready.
TPRM/GRC project experience employers seek.
Students must commit to attending 95% of live sessions.
Taught by industry experts and designed to meet the ever-evolving cybersecurity industry.

JOBS AFTER THIS TPRM/GRC TRAINING

Information Security Analyst
Governance Risk Compliance Analyst
Security and Compliance Analyst
IT Risk and Governance Analyst
Information Systems Auditor
IT Compliance Analyst
IT Risk Analyst
IT Control Auditor
External/Internal Control Auditor
Audit & Compliance Analyst
Audit Support Analyst

TECHNOLOGIES THAT WE WILL EXPOSE YOU TO

RELATED CERTIFICATIONS

The course includes notes for students studying to take the Third-Party Cyber Risk Assessor (TPCRA) Certification.

What will i learn?

Manage, lead, or support periodic information risk assessments and audits to ensure that information systems are adequately protected.
Lead or support the implementation of compliance programs (ISO 27001, SOC2 Type 2, PCI-DSS, etc.).
Lead internal organizational audits to strengthen internal controls and improve business processes changes.
Track and maintain Risk Register/Action Plans for the resolution of issues identified during assessments and audit.
Develop or support the development/review of organizational policies, standards, and procedures.
Document, maintain and analyze compliance with IT controls, standards, procedures, and policies.
Coordinate with internal / external auditors, prepare control owners, review, and collect required evidence as needed to meet compliance requirements.
Develop metrics/reporting for senior management to track compliance.
Identify the importance and functions of Cybersecurity Third Party Risk Management Compliance and Governance, Risk Management, and Compliance in Cybersecurity program management.
Describe the structure and content of Cybersecurity-related strategy, plans, and planning.

Requirements

Laptop with 8gb RAM minimum (Windows PC Preferred)
Webcam (built-in is fine)
Access to MS Office 365 Suite and Adobe Acrobat Pro DC
High-speed Internet access.
Noise cancelling headset with microphone is Required.
All prerequisites are built into the program

Curriculum for this course

67 Lessons 16:44:39 Hours

Week 0 - Onboarding Tasks To Complete

8 Lessons 00:11:11 Hours

LMS Demo - Getting Started Recording Preview 00:11:11

TPRM/GRC Training Syllabus Preview .

Sign Student Training Agreement .

How to Setup Your TruTek Academy Microsoft Account .

Create your Outlook Signature .

Microsoft 365 & MS Teams Training .

Download Microsoft Teams on Mobile Phone and Laptop/Desktop .

Send Introduction Email To Classmates .

Week 1

6 Lessons 03:36:40 Hours

Introduction To Cybersecurity .

Week 1 - Introduction to Cybersecurity, Technologies, & Tools 03:36:40

Week 1 - Research Assignment .

Reading Assignment: Introduction To Cybersecurity .

Reading: Additional Reading .

Cybersecurity News: Pick Favorite & Read Latest News .

Week 2

8 Lessons 01:58:42 Hours

Lecture Slide: Introduction to GRC .

Recording: Introduction to GRC 01:58:42

Week 2 - Research Assignment .

Additional Reading 1: A Conceptual Guide to Enterprise Information Security .

Additional Reading 2: Cyber Security Acronym .

Additional Reading 3: Governance Risk and Compliance Handbook .

Additional Reading 4: Cybersecurity TERMS YOU MUST KNOW .

Additional Reading 4: Common Ports .

Week 3

10 Lessons 02:13:42 Hours

Lecture Slide: Week 3: GRC Frameworks-Standards-Law and Regulatory Compliance .

Recording: Week 3: GRC Frameworks-Standards-Law and Regulatory Compliance 02:13:42

Week 3 - Research Assignment .

Additional Reading: HIPAA-HITRUST .

Additional Reading: ISO 27001 CLAUSES - Money Heist Illustrations .

Additional Reading: ISO27001 - NIST 800-53 Mapping .

Additional Reading: ISO 27001_2013 ISMS Requirements .

Additional Reading: SOC 1 SOC 2 Report .

Additional Reading: NIST CSF .

Additional Reading: CIS Control v8 Mapping To ISO-PCI-DSS-SOC2 .

Week 4

10 Lessons 02:04:33 Hours

Lecture Slide: Auditing, Attestation, and Assurance .

Lecture Slide: Audit Process in GRC .

Recording: Audit, Attestation, and Assurance in GRC 00:29:18

Recording: Audit Process in GRC 01:35:15

Assignment 1: Jira Fundamentals (Proof of Completion Certificate Required) .

Assignment 2: Confluence Fundamentals (Proof of Completion Certificate Required) .

Week 4 - Research Assignment .

Additional Reading: ISO 27001 Annex Control & Objectives .

Additional Reading: Everything you need to know about SOC 2 .

Additional Reading: PCI DSS v4 - Requirements and Testing Procedures .

Week 5

10 Lessons 02:38:32 Hours

Lecture Slide: TPRM in GRC .

Lecture Slide: Third Party Vendor Risk Management (TPRM) .

Risk Management, Reporting, & Communication in GRC .

Recording: TPRM in GRC 01:30:51

Recording: Internal Controls in GRC 00:21:22

Recording: Risk Management, Reporting, & Communication 00:46:19

Assignment 2: Qualys PCI Compliance .

Reading Assignment: Jira User Guide .

Reading Assignment: Confluence User Guide .

Reading Assignment: Third-Party Cyber Risk Management .

Week 6: Project Demonstration

10 Lessons 03:06:13 Hours

Project Demonstration: Vulnerability Scan Review and Analysis 01:12:10

Project Demonstration: ChatGPT for GRC Demonstration 00:18:39

Recording: Vulnerability Management & Nessus Scan Analysis Demonstration 01:05:06

Recording: PCI DSS Compliance 00:16:51

Recording: Policy and Standard Demonstration 00:13:27

Lecture Slide: Vulnerability Management .

Lecture Slide: PCI DSS Compliance .

Lecture Slide: Policy & Standards Program .

Week 6 - Research Assignment .

Assignment 3: Qualys PCI Compliance (Continue) .

Week 7: Project Demonstration

4 Lessons 00:55:06 Hours

Recording: Vendor Risk Management - Project Discussion 00:30:30

Recording: Software Assessment - Project Discussion 00:05:18

Recording: Incident Management - Project Discussion 00:08:28

Recording: Ransomware Supplemental Application - Project Discussion 00:10:50