About
This curriculum, developed by GSSI TECH (gssitech.com), is designed to provide students with a comprehensive foundation in Risk Management & Compliance (RMC). The program is industry-agnostic and applicable across multiple sectors, including finance, healthcare, technology, and government. By the end of this course, students will gain proficiency in risk assessment, regulatory compliance, governance, auditing, and continuous monitoring, preparing them for roles in Information Security, GRC, compliance, and risk management. OBJECTIVES By completing this course, students will be able to: 🔹 Understand risk management principles applicable across industries. 🔹 Identify regulatory and compliance requirements relevant to various sectors. 🔹 Perform risk assessments and implement risk mitigation strategies. 🔹 Develop and manage compliance programs within organizations. 🔹 Prepare for industry certifications such as CGRC. Lessons by Domains 🔹 Domain 1: Information Security Risk Management Program 🔹 Domain 2: Scope of the Information System 🔹 Domain 3: Selection and Approval of Security and Privacy Controls 🔹 Domain 4: Implementation of Security and Privacy Controls 🔹 Domain 5: Assessment/Audit of Security and Privacy Controls 🔹 Domain 6: Authorization/Approval of Information System 🔹 Domain 7: Continuous Monitoring