The CGRC course comprises coverage of the following domains and topics:Information Security Risk Management ProgramScope of the Information SystemSelection and Approval of Security and Privacy ControlsImplementation of Security and Privacy ControlsAssessment/Audit of Security and Privacy ControlsAuthorisation/Approval of Information SystemContinuous Monitoring

By completing this course, the following Learning Outcomes (LO) will be achieved:LO1: Uncover possible areas of non-compliance by applying the NIST Risk Management Framework.LO2: Evaluate and report data on compliance according to NIST Risk Management Framework and relevant internal governance requirements.LO3: Propose and obtain signoffs for recommendations addressing areas of non-compliance with NIST Risk Management Framework and relevant internal governance requirements.

Course ID:

TGS-2024049476

Course duration:

5 days, 9am – 6pm

We offer flexible learning options (online, instructor-led, hybrid) to fit your learning style

Certifications

Meet your Trainers

Lionel Seaw

Principal Consultant Sapience Consulting

Lionel Seaw

Principal Consultant Sapience Consulting

Certified in Governance, Risk and Compliance (CGRC)

Q: Additional Information

Certificate of Attendance from Sapience Consulting:Upon meeting at least 75% attendance and passing the assessment(s), participants will receive a Certificate of Attendance from Sapience Consulting.The following information are relevant for candidates who are seeking SSG-funding support for the course:AssessmentsCandidates must pass all prescribed tests/assessments and attain 100% competency to be eligible for funding support.○ Mode of Assessment: Written Assessment, Case Study Assessment.Statement of Attainment (SOA) from SkillsFuture Singapore: After passing the assessment(s), you’ll receive a SkillsFuture Singapore Statement of Attainment (SOA) certifying that you have achieved the following Competency Standard(s):○ ICT-RIM-4004-1.1 – Risk Compliance and Governance-4.Instructions to access and download your certificate can be found HERE.

About The Course

The CGRC Exam Preparation course is an intensive programme to prepare individuals who are planning to sit the Certified in Governance, Risk and Compliance (CGRC) exam.

Based on official materials from ISC2 and delivered by ISC2 Official Training Partner, the course focuses on the GRC domains covered in the Common Body of Knowledge and includes class lectures, group discussions/activities, exam practice and answer debriefs. The course is intended for individuals with familiarity with and experience in the field of security assessment and risk management.

Certified in Governance, Risk and Compliance (CGRC™) cybersecurity professionals have the knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within the organisation while helping the organisation achieve objectives, address uncertainty and act with integrity. CGRC professionals align IT goals with organisational objectives as they manage cyber risks and achieve regulatory needs. They utilise frameworks to integrate security and privacy with the organisation’s overall objectives, allowing stakeholders to make informed decisions regarding data security and privacy risks.

The broad spectrum of topics included in the CGRC Common Body of Knowledge (CBK®) ensures its relevancy across all disciplines in the field of information security.

What Will I Learn?

The CGRC course comprises coverage of the following domains and topics:
- Information Security Risk Management Program
- Scope of the Information System
- Selection and Approval of Security and Privacy Controls
- Implementation of Security and Privacy Controls
- Assessment/Audit of Security and Privacy Controls
- Authorisation/Approval of Information System
- Continuous Monitoring

How Will I Benefit?

By completing this course, the following Learning Outcomes (LO) will be achieved:

LO1: Uncover possible areas of non-compliance by applying the NIST Risk Management Framework.
LO2: Evaluate and report data on compliance according to NIST Risk Management Framework and relevant internal governance requirements.
LO3: Propose and obtain signoffs for recommendations addressing areas of non-compliance with NIST Risk Management Framework and relevant internal governance requirements.

Am I Right For This Course?

The CGRC course is ideal for experienced IT professionals with a focus on governance, risk and compliance including the following roles:

Information security professionals
Information assurance practitioners
Governance practitioners
Risk Analysts
Risk Managers
Compliance Managers

Candidates are recommended to have a minimum of two years cumulative, full-time experience in information systems security-related work performed in pursuit of information system authorisation, or work that requires security risk management knowledge and involves direct application of that knowledge.

Recommended Learner Profile:

Language and literacy proficiency level : Minimum 3 GCE ‘O’ Levels Passes including English or WPL Level 5
Required years of experience in relevant domain : Minimum of 1 year of working experience.

Certification Examination

Delegates who successfully completed the course and pass the in-house assessment will be allowed to apply for the formal CGRC exam and accreditation from ISC2.

About the examination:

Multiple Choice
3 hours
125 questions
Maximum Possible Score of 1000 points
700 points required to pass
Pearson VUE Testing Center (only)

Additional Information

Certificate of Attendance from Sapience Consulting:
Upon meeting at least 75% attendance and passing the assessment(s), participants will receive a Certificate of Attendance from Sapience Consulting.

The following information are relevant for candidates who are seeking SSG-funding support for the course:

Assessments
Candidates must pass all prescribed tests/assessments and attain 100% competency to be eligible for funding support.
○ Mode of Assessment: Written Assessment, Case Study Assessment.
Statement of Attainment (SOA) from SkillsFuture Singapore:
After passing the assessment(s), you’ll receive a SkillsFuture Singapore Statement of Attainment (SOA) certifying that you have achieved the following Competency Standard(s):
○ ICT-RIM-4004-1.1 – Risk Compliance and Governance-4.

Instructions to access and download your certificate can be found HERE.

Funding Available

SSG Funding

Please visit our SkillsFuture Singapore (SSG) Funding page for full details.

Terms and conditions apply.

PSEA Funding

Please visit our IBF STS programme page for full details. PSEA page for more info.

Terms and conditions apply.

SkillsFuture Credit

Please visit our SkillsFuture Credit page for full details.

Terms and conditions apply.

Supported by UTAP

NTUC members can use the Union Training Assistance Programme (UTAP) to partially cover the cost of their training.
Visit our UTAP page for more info.

Terms and conditions apply.

Schedule

01/19/2026 01/23/2026

Certified in Governance, Risk and Compliance (CGRC)

Governance and Service Management Principals: ISC2

Duration: 5 Physical Enquiry

Find Out More

Lionel Seaw