Risk Response and Reporting Effectively

4 H 8 M

Just you? Training a whole team? There's an ITProTV plan that fits.

Start Training Today
  • Responding to Risk
    • Overview
    • Mitigation, Transference, and Avoidance as Risk Responses
    • Risk Acceptance as a Response
    • Who Owns and Controls Risk?
    • Involving Third-party Risk Management
    • Issue Finding and Exceptions
    • Managing Emergent Risk
  • Designing and Implementing Controls
    • Types, Standards and Frameworks
    • Control Design, Selection and Analysis
    • Implementing Controls
    • Testing the Effectiveness of Controls
  • Monitoring and Reporting Risk
    • Risk Response Plans
    • Collecting, Aggregating, Analyzing, and Validating Data
    • Monitoring Techniques for Risk and Controls
    • Reporting Techiques for Risk and Control
    • Using Key Performance Indicators (KPIs)
    • Using Key Risk Indicators (KRIs)
    • Using Key Control Indicators (KCIs)


3 M

itprotv course thumbnailitprotv course thumbnailitprotv course thumbnail
  • Episode Description
  • Transcript

Chris and Anthony break down what this module of the CRISC certification course contains and how it helps with the overall risk management lifecycle.

WEBVTT >> Well, hi, everybody. My name is Anthony Sequera. I am one of the instructors here at ACI Learning, and I am thrilled to be hosting this event with none other than Chris Ward. Chris, how are you today? I'm doing really good, Anthony. Good to be in the studio with you yet once again. Yes, it's awesome. Chris and I have been teaching together for decades, not necessarily this material, though, so I am very, very excited. I'm going to play the role of student advocate here as we look at a certification in risk and information systems control, and thankfully, we have abbreviated that C-RISC for you. So Chris, first of all, before we jump in, can you give us a little bit of your background with this subject matter? I assume this is an exam that you're intimately familiar with, and I know when it comes to the subject matter, you've been dealing with this for years now. >> Yeah, and it's one of those things where a lot of people deal with risk, right? They just don't know about it. And so in this case, and in this portion of our C-RISC studies, we're going to be looking primarily about risk response and risk monitoring. And so we're going to talk a little bit about that. And just remember what we've already covered. If you've watched other things on risk or any of the other ACI learning shows, is that risk is something that as a IT person, you are going to deal with on a day-to-day basis. How do we respond to that? We're going to be talking about things like the four different types of responses. We're going to be talking about why controls are designed, how they're designed. We're also going to be taking a look at the arena of risk monitoring and reporting. OK, so risks have occurred. Who needs to know about it? What have we learned from it? How do we make it better the next time? These are all things that we're going to be covering in this show-- well, not this particular show, but many shows, Anthony, and looking forward to it. Yeah, I love it. And Chris, >> I guess we are going to be doing more than just completely ignoring and avoiding risk. And that's always good. We know that's one way to deal with it, one way that's tempting to deal with it. But I'm super excited for Chris to lay out for us a well-thought-through plan in how we are going to deal with and, as Chris indicated, particularly respond to risk inside of our organization. Well, Chris, before we get started, is there anything else you wanted to mention? Maybe any kind of study tips as we go forward or anything like that? Yeah, definitely. Yeah, so one of the things that we always recommend-- and Anthony does this in his courses, I do it in all my courses-- >> is remember, at the very beginning here, we have a download button, which does have a copy of the course notes that you can take a look at, as well as a PDF of the slides. So if you are the kind of person where you like your tactile, you like writing down notes, hey, best thing to do is maybe print one of those out or bring up that PDF, make your notes, and any time that we talk about something that's super exam-centric, both Anthony and I will point these things out to you. We want to make sure that you write that down. Make sure you're paying attention for that so that way we can help you when you do take the exam. >> I love it. Well, we have a lot of great content in store for you, so why don't we go ahead and get started? We hope you'll be joining us in the very next episode.