Overview

Official ISC2 Training Seminar for the Certified in Governance, Risk and Compliance (CGRC) provides a comprehensive review of the knowledge required for authorizing and maintaining information systems within the NIST Risk Management Framework. This training course will help students review and refresh their knowledge and identify areas they need to study for the CGRC exam.

Content aligns with and comprehensively covers the seven domains of the ISC2 CGRC Common Body of Knowledge (CBK®). Official courseware is developed by ISC2 – creator of the CGRC CBK – to ensure your training is relevant and up-to-date. Our instructors are verified security experts who hold the CGRC and have completed intensive training to teach ISC2 content.

Cybersecurity is not optional. It’s Operational. Don’t wait for a breach. Build the skills. Earn the badge. Lead the defense. Explore our Top Cybersecurity Skills for Malaysia’s Digital Future campaign.

Be the reason your organization survives the next cyberattack.

Skills Covered

  • Identify and describe the steps and tasks within the NIST Risk Management Framework (RMF).
  • Apply common elements of other risk management frameworks using the RMF as a guide.
  • Describe the roles associated with the RMF and how they are assigned to tasks within the RMF.
  • Execute tasks within the RMF process based on assignment to one or more RMF roles.
  • Explain organizational risk management and how it is supported by the RMF.

Who Should Attend

This course is for individuals planning to pursue the CGRC certification. The CGRC is ideal for IT, information security and information assurance practitioners and contractors who use the RMF in federal government, military, civilian roles, local governments and private sector organizations. Roles include:

  • ISSOs, ISSMs and other infosec/information assurance practitioners who are focused on security assessment and authorization (traditional C&A) and continuous monitoring issues.
  • Executives who must “sign off” on Authority to Operate (ATO).
  • Inspector generals (IGs) and auditors who perform independent reviews.
  • Program managers who develop or maintain IT systems.
  • IT professionals interested in improving cybersecurity and learning more about the importance of lifecycle cybersecurity risk management.

Course Curriculum

Prerequisites

To qualify for this cybersecurity certification, you must pass the exam and have at least two years of cumulative, paid work experience in one or more of the seven domains of the ISC2 CGRC Exam Outline.

Learn more about CGRC Experience Requirements.

Don’t have enough experience yet? You can still pass the CGRC exam and become an Associate of ISC2 while you earn the required work experience.

Download Syllabus

Course Modules

Expand allCollapse all

Request More Information

Training Options

Intake: 21-25 Jul 2025
Duration: 5 Days
Guaranteed: TBC
Modality: ILT
Price:

RM9,500.00Enroll Now

Exam:
Intake: 21-25 Jul 2025
Duration: 5 Days
Guaranteed: TBC
Modality: VILT
Price:

RM9,500.00Enroll Now

Exam:
Intake: 29 Sep - 3 Oct 2025
Duration: 5 Days
Guaranteed: TBC
Modality: ILT
Price:

RM9,500.00Enroll Now

Exam:
Intake: 29 Sep - 3 Oct 2025
Duration: 5 Days
Guaranteed: TBC
Modality: VILT
Price:

RM9,500.00Enroll Now

Exam:
Intake: 15-18 Dec 2025
Duration: 5 Days
Guaranteed: TBC
Modality: ILT
Price:

RM9,500.00Enroll Now

Exam:
Intake: 15-18 Dec 2025
Duration: 5 Days
Guaranteed: TBC
Modality: VILT
Price:

RM9,500.00Enroll Now

Exam:

Exam & Certification

CGRC: Certified in Governance, Risk and Compliance

Training & Certification Guide

Frequently Asked Questions