Certified In Governance, Risk and Compliance

CY-CGRC
Open Macbook computer sitting atop wooden table

Type

Virtual

Orange and black virtual icon

Classroom ILT

Orange and black virtual icon

Skill Level

Intermediate

Available dates

June 30, 2025
July 21, 2025

Learning Path

Cybersecurity
Orange and black technology icon

Virtual

Duration

5 days
Black and orange duration icon

1 Day

Open Macbook computer sitting atop wooden table

TYPE

Virtual

Lecturer teaching class icon

Classroom ILT

Lecturer teaching class icon

LEARNING PATH

Cybersecurity
Orange and black technology icon

SKILL LEVEL

Intermediate

DURATION

5 days
Black and orange duration icon

AVAILABLE DATES

June 30, 2025
July 21, 2025

Choose date

R25 000,00

Price excluding VAT

Introduction

The Certified in Governance, Risk and Compliance (CGRC) provides a comprehensive review of the knowledge required for authorizing and maintaining information systems within the NIST Risk Management Framework. This training course will help students review and refresh their knowledge and identify areas they need to study for the CGRC exam. Content aligns with and comprehensively covers the seven domains of the ISC2 CGRC Common Body of Knowledge (CBK).

 

Official courseware is developed by ISC2 – creator of the CGRC CBK – to ensure your training is relevant and up to date. Our instructors are verified security experts who hold the CGRC and have completed intensive training to teach ISC2 content

 

Audience profile

This course is for individuals planning to pursue the CGRC certification. The CGRC is ideal for IT, information security and information assurance practitioners and contractors who use the RMF in federal government, military, civilian roles, local governments and private sector organisations. Roles include:

  • ISSOs, ISSMs and other InfoSec/information assurance practitioners who are focused on security assessment and authorization (traditional C&A) and continuous monitoring issues
  • Executives who must “sign off” on Authority to Operate (ATO)
  • Inspector generals (IGs) and auditors who perform independent reviews
  • Program managers who develop or maintain IT systems
  • IT professionals are interested in improving cybersecurity and learning more about the importance of lifecycle cybersecurity risk management

 

CGRC is also ideal for IT, information security and cybersecurity professionals responsible for governance, risk and compliance within an organisation. Roles include:

  • Authorizing Official
  • Cyber GRC Manager
  • Cybersecurity Auditor/Assessor
  • Cybersecurity Compliance Officer
  • Cybersecurity Architect
  • GRC Architect
  • GRC Information Technology Manager
  • GRC Manager
  • Cybersecurity Risk & Compliance Project Manager
  • Cybersecurity Risk & Controls Analyst
  • Cybersecurity Third Party Risk Manager
  • Enterprise Risk Manager
  • GRC Analyst
  • GRC Director
  • GRC Security Analyst
  • System Security Manager
  • System Security Officer
  • Information Assurance Manager
  • Cybersecurity Consultant

 

Pre-requisites

  • Candidates must have at least two years of cumulative, paid work experience in one or more of the seven domains of the ISC2 CGRC Common Body of Knowledge (CBK)
  • Earning a four-year college degree or regional equivalent or an additional credential from the ISC2 approved list will satisfy one year of the required experience
  • Education credit will only satisfy one year of experience
  • Part-time work and internships may also count towards your experience
  • Full-Time Experience: Your work experience is accrued monthly

 

Thus, you must have worked a minimum of 35 hours/week for four weeks to accrue one month of work experience:

  • Part-Time Experience: Your part-time experience cannot be less than 20 hours a week and no more than 34 hours a week
  • 1040 hours of part-time = 6 months of full-time experience
  • 2080 hours of part-time = 12 months of full-time experience
  • Internship: Paid or unpaid internship is acceptable. You will need documentation on company/organisation letterhead confirming your position as an intern. If you are interning at a school, the document can be on the registrar’s stationery

ISC2 Overview

In an increasingly complex cyber world, there is a growing need for information security leaders who possess the breadth and depth of expertise necessary to establish holistic security programs that assure the protection of an organisations information assets.

ISC2 is an international non-profit membership association focused on inspiring a safe and secure cyber world. Today, based in the United States, ISC2 serves its global membership from its headquarters in Alexandria, Virginia, along with a portfolio of credentials and world-class education programs in the form of vendor-neutral education products and career services.

Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, ISC2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security.

ISC2 members, candidates and associates, nearly 675,000 strong, are made up of certified cyber, information, software and infrastructure security professionals who are making a difference and helping to advance the industry. ISC2 members represent an elite, global network of dedicated cybersecurity professionals – preeminent experts in their field – who have committed themselves to the highest ethical standards and best practices. All members are certified professionals who have passed ISC2 examinations attesting to skill and knowledge in their field. Through their ISC2 certification, they have demonstrated superior competency and devoted themselves to making the cyber world a safer place for all.

Torque IT is the longest standing Official Training Partner (OTP) in South Africa and has maintained the status of one of the leading ISC2 accredited training organizations in South Africa. Torque IT remains the Only Preferred OTP in the South Africa. As a leading and established training provider of cybersecurity education and certification, Torque IT is committed to expanding our offerings and promoting cybersecurity awareness and expertise across all ISC2 Certifications and throughout South Africa and various African countries.