CRISC Certified in Risk and Information Systems Control Study Guide
1st Edition
Published on 30. April 2026
Book
Paperback/Softback
352 pages
978-1-394-37366-6 (ISBN)
Description
A comprehensive and up-to-date prep guide for the CRISC exam and the perfect desk reference for professionals in the field
In CRISC Certified in Risk and Information Systems Control Study Guide, veteran author, cybersecurity, and privacy expert Peter H. Gregory delivers thorough and accurate coverage of how to prepare for the CRISC certification exam. He's also written a practical, on-the-job reference for current and aspiring practitioners in information security, privacy, information technology, and audit.
This book shows you how to succeed on the challenging CRISC certification test. It mirrors the structure of the CRISC Job Practice guidance published by ISACA and provides detailed coverage of the entire CRISC certification process, including ongoing, post-exam certification requirements.
Gregory draws on his extensive experience as an industry practitioner and technology educator to walk you through the ins and outs of the four key domains covered by the CRISC Exam: Governance, Risk Assessment, Risk Response and Reporting, and Technology and Security. You'll also get:
Comprehensive, domain-specific coverage of the CRISC exam objectives
Complete, up-to-date, and accurate guidance for all professionals responsible for setting and managing risk controls
Access to a superior set of online study tools, including hundreds of practice questions, flashcards, and a glossary of key terms
Perfect for anyone preparing for the CRISC exam, CRISC Certified in Risk and Information Systems Control Study Guide is a must-have resource for practicing and aspiring information security, technology, business, and privacy leaders with a stake in managing, monitoring, mitigating, and governing risk.
In CRISC Certified in Risk and Information Systems Control Study Guide, veteran author, cybersecurity, and privacy expert Peter H. Gregory delivers thorough and accurate coverage of how to prepare for the CRISC certification exam. He's also written a practical, on-the-job reference for current and aspiring practitioners in information security, privacy, information technology, and audit.
This book shows you how to succeed on the challenging CRISC certification test. It mirrors the structure of the CRISC Job Practice guidance published by ISACA and provides detailed coverage of the entire CRISC certification process, including ongoing, post-exam certification requirements.
Gregory draws on his extensive experience as an industry practitioner and technology educator to walk you through the ins and outs of the four key domains covered by the CRISC Exam: Governance, Risk Assessment, Risk Response and Reporting, and Technology and Security. You'll also get:
Comprehensive, domain-specific coverage of the CRISC exam objectives
Complete, up-to-date, and accurate guidance for all professionals responsible for setting and managing risk controls
Access to a superior set of online study tools, including hundreds of practice questions, flashcards, and a glossary of key terms
Perfect for anyone preparing for the CRISC exam, CRISC Certified in Risk and Information Systems Control Study Guide is a must-have resource for practicing and aspiring information security, technology, business, and privacy leaders with a stake in managing, monitoring, mitigating, and governing risk.
More details
Series
Language
English
Place of publication
New York
United States
Publishing group
John Wiley & Sons Inc
Target group
Professional and scholarly
Product notice
Paperback (trade)
Unsewn / adhesive bound
Dimensions
Height: 233 mm
Width: 190 mm
Thickness: 18 mm
Weight
744 gr
ISBN-13
978-1-394-37366-6 (9781394373666)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Peter H. Gregory
CRISC Certified in Risk and Information Systems Control Study Guide
E-Book
04/2026
1st Edition
Wiley-Scrivener
€48.99
Available for download
Peter H. Gregory
CRISC Certified in Risk and Information Systems Control Study Guide
E-Book
04/2026
1st Edition
Wiley-Scrivener
€48.99
Available for download
Person
ABOUT THE AUTHOR
Peter H. Gregory, CRISC, CISM, CISA, CDPSE, CISSP, CCSK, CIPM, is an experienced technology, cybersecurity, and privacy leader. He's the author of more than 50 cybersecurity and technology books, including CISM All-In-One Exam Guide, CISA Study Guide, and The Art of Writing Technical Books. He is an advisor and adjunct faculty emeritus at the University of Washington's cybersecurity certificate program, an advisory board member at Akylade, a member of InfraGard, a member of the Informa TechTarget security editorial advisory board, and a former member of the Forbes Technology Council and the FBI Citizens Academy Alumni Association.
Peter H. Gregory, CRISC, CISM, CISA, CDPSE, CISSP, CCSK, CIPM, is an experienced technology, cybersecurity, and privacy leader. He's the author of more than 50 cybersecurity and technology books, including CISM All-In-One Exam Guide, CISA Study Guide, and The Art of Writing Technical Books. He is an advisor and adjunct faculty emeritus at the University of Washington's cybersecurity certificate program, an advisory board member at Akylade, a member of InfraGard, a member of the Informa TechTarget security editorial advisory board, and a former member of the Forbes Technology Council and the FBI Citizens Academy Alumni Association.
Content
Contents at a Glance
Introduction xxiii
Assessment Test xliii
Answers to Assessment Questions xlvii
Chapter 1 Governance 1
Chapter 2 Risk Assessment 29
Chapter 3 Risk Response and Reporting 97
Chapter 4 Information Technology 163
Chapter 5 Information Security 223
Appendix Implementing and Managing a Risk Management Program 271
Index 295
Introduction xxiii
Assessment Test xliii
Answers to Assessment Questions xlvii
Chapter 1 Governance 1
Chapter 2 Risk Assessment 29
Chapter 3 Risk Response and Reporting 97
Chapter 4 Information Technology 163
Chapter 5 Information Security 223
Appendix Implementing and Managing a Risk Management Program 271
Index 295