Course ID:
TGS-2024049476
Course duration:
5 days, 9am – 6pm
We offer flexible learning options (online, instructor-led, hybrid) to fit your learning style
Principal Consultant Sapience Consulting
Principal Consultant Sapience Consulting
Certified in Governance, Risk and Compliance (CGRC)
About The Course
The CGRC Exam Preparation course is an intensive programme to prepare individuals who are planning to sit the Certified in Governance, Risk and Compliance (CGRC) exam.
Based on official materials from ISC2 and delivered by ISC2 Official Training Partner, the course focuses on the GRC domains covered in the Common Body of Knowledge and includes class lectures, group discussions/activities, exam practice and answer debriefs. The course is intended for individuals with familiarity with and experience in the field of security assessment and risk management.
Certified in Governance, Risk and Compliance (CGRC™) cybersecurity professionals have the knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within the organisation while helping the organisation achieve objectives, address uncertainty and act with integrity. CGRC professionals align IT goals with organisational objectives as they manage cyber risks and achieve regulatory needs. They utilise frameworks to integrate security and privacy with the organisation’s overall objectives, allowing stakeholders to make informed decisions regarding data security and privacy risks.
The broad spectrum of topics included in the CGRC Common Body of Knowledge (CBK®) ensures its relevancy across all disciplines in the field of information security.
What Will I Learn?
The CGRC course comprises coverage of the following domains and topics:
- Information Security Risk Management Program
- Scope of the Information System
- Selection and Approval of Security and Privacy Controls
- Implementation of Security and Privacy Controls
- Assessment/Audit of Security and Privacy Controls
- Authorisation/Approval of Information System
- Continuous Monitoring
How Will I Benefit?
By completing this course, the following Learning Outcomes (LO) will be achieved:
- LO1: Uncover possible areas of non-compliance by applying the NIST Risk Management Framework.
- LO2: Evaluate and report data on compliance according to NIST Risk Management Framework and relevant internal governance requirements.
- LO3: Propose and obtain signoffs for recommendations addressing areas of non-compliance with NIST Risk Management Framework and relevant internal governance requirements.
Am I Right For This Course?
Certification Examination
Delegates who successfully completed the course and pass the in-house assessment will be allowed to apply for the formal CGRC exam and accreditation from ISC2.
About the examination:
- Multiple Choice
- 3 hours
- 125 questions
- Maximum Possible Score of 1000 points
- 700 points required to pass
- Pearson VUE Testing Center (only)
Additional Information
Certificate of Attendance from Sapience Consulting:
Upon meeting at least 75% attendance and passing the assessment(s), participants will receive a Certificate of Attendance from Sapience Consulting.
The following information are relevant for candidates who are seeking SSG-funding support for the course:
- Assessments
Candidates must pass all prescribed tests/assessments and attain 100% competency to be eligible for funding support.
○ Mode of Assessment: Written Assessment, Case Study Assessment. - Statement of Attainment (SOA) from SkillsFuture Singapore:
After passing the assessment(s), you’ll receive a SkillsFuture Singapore Statement of Attainment (SOA) certifying that you have achieved the following Competency Standard(s):
○ ICT-RIM-4004-1.1 – Risk Compliance and Governance-4.
Funding Available
Terms and conditions apply.
Please visit our IBF STS programme page for full details. PSEA page for more info.
Terms and conditions apply.
Please visit our SkillsFuture Credit page for full details.
Terms and conditions apply.
NTUC members can use the Union Training Assistance Programme (UTAP) to partially cover the cost of their training.
Visit our UTAP page for more info.
Terms and conditions apply.
Schedule
As Principal Consultant, Lionel Seaw offers extensive technical and managerial depth across government, pharmaceutical, and financial sectors. A trusted advisor, he combines real-world experience with a strategic helicopter-view to manage complex changes. Lionel is dedicated to building high-performance teams through effective methodologies and best practices, achieving mission-critical objectives with perseverance and focus.
Feisal Ismail is an experienced technology and management leader who has supported organisations across government, pharmaceutical, technology, and financial services sectors. An ITIL and DevOps Institute Ambassador, he helps organisations align digital and technology strategies with broader business objectives through pragmatic, results-oriented guidance grounded in globally recognised best practices and real-world operational constraints. Meticulously organised and highly collaborative, Feisal is recognised for delivering effective and sustainable outcomes in complex engagements.
Tan Hoon Wee is an accomplished IT professional with extensive international experience in managing shared services and complex project delivery. Expert in both Waterfall and Agile methodologies, he holds prestigious certifications including PMP, PRINCE2, and CSM. He specialises in advising on organisational change and process optimisation, leveraging exceptional communication skills to maintain outstanding client relationships.
Huang Yi-Jen is a specialist consultant in IT Governance and Management Frameworks. With a portfolio spanning Service Management, Agile, and Risk Management, she is recognised for achieving sustainable results through an organised, proactive delivery model. Yi-Jen is a natural communicator who excels at managing diverse stakeholders and solving complex challenges with an innovative, value-driven and professional mindset.
Luqman Haniff is an IT security specialist with over a decade of experience advising SMEs on infrastructure and information security management. A meticulous problem solver, Haniff utilises a balanced macro-and-micro approach to tackle organisational vulnerabilities. He specialises in creating targeted, custom solutions that bridge the gap between technical necessity and cost-effective business strategy for robust protection.
Why Us?
Participants can attend a complimentary refresher if they wish (1-year validity and subject to approval)
Should you have questions after the course, you may contact the trainer for assistance regarding course material
1 year access to our E-learning portal. Including:
– E-books available for download
– Official sample exam
– Randomised quiz formulated by Sapience Trainers based on past examinations