Written by information security risk experts, this complete self-study system is designed to help you prepare for--and pass--ISACA's CRISC certification exam. CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide, Second Edition features learning objectives, explanations, exam tips, and hundreds of practice questions. Beyond exam prep, this practical guide serves as an ideal on-the-job reference for risk management and IT security professionals.

Covers all exam topics, including:

• IT and cybersecurity governance
• Enterprise risk management and risk treatment
• IT risk assessments and risk analysis
• Controls and control frameworks
• Third-party risk management
• Risk metrics, KRIs, KCIs, and KPIs
• Enterprise architecture
• IT operations management
• Business impact analysis
• Business continuity and disaster recovery planning
• Data privacy

• 300 practice exam questions
• Test engine that provides full-length practice exams and customizable quizzes by exam topic