IT & Cyber Compliance – End User Course

Course Overview:

The IT Compliance Management product provides a common framework to manage and monitor compliance with a range of IT regulations and standards. The App scales across the enterprise, streamlining and automating IT compliance workflows, while consolidating compliance and control data in a central repository.

This course enables participants to understand, own and manage the application independently after the training.

Level

Intermediate

Content

5 Hours

Practice

5 Hours

Q&A with MSU

2 Hours

Pre-Requisites

Familiarity with IT & Cyber Compliance Concepts

Learning Objectives:

The training is focused on making trainees understand the features, process, workflows, and functionalities of the Compliance Management Product. At the end of the training and practice, trainees will have knowledge on how perform basic setup of the ITC product which includes knowledge on:

· Product Functionality & Use Case - Workflow Usage

o Understand how to navigate the IT Compliance app

o Create compliance content

o Create, approve and manage compliance plans

o Execute compliance assessments

o Create, approve and manage surveys & certifications

o Respond to surveys & certifications

o Log, approve, manage, monitor and close issues

o Evidence Management

· Product/Use Case Setup, User Management & Basic Administration

o Upload compliance content

o Build & configure Survey/Scorecard/Certification Questionnaires

o Subscribe to external feeds

o Create custom channels

Practice & Facetime with Instructor:

Once you start the course, please reach out to MSU at [email protected] to get a practice instance allocated. Upon completion of course content and sufficient practice, reach out to your MSU instructor for your 2 hr Q&A session to clarify and address any open questions.

Certification Issued:

Participants will be issued a Course Completion Certificate on successful completion of the entire course.

Course Overview: The IT Compliance Management product provides a common framework to manage and monitor compliance with a range of IT regulations and standards. The App scales across the enterprise, streamlining and automating IT compliance work...

Course content

Lesson Overview & Navigation

IT-Compliance Management (IT-CM) product ensures appropriate actions are taken to execute governance objectives based on stated risk tolerance for the business. An effective IT Compliance process c...
- Overview (8 Minutes)
- Navigation (26 Minutes)
Lesson GRC Libraries

GRC Foundation is a comprehensive set of interlinked libraries that form the underlying GRC framework for all GRC-related activities across the enterprise. It is an add-on component to the base Met...
- Create and Manage GRC Libraries (40 Minutes)
Lesson Compliance Testing

Testing or Compliance Testing determines the extent to which the staff follow prescribed policies and procedures in actual practice. It compares procedures as executed against required or expected ...
- Test Plans (29 Minutes)
- Test Tasks (3 Minutes)
- Test Execution (19 Minutes)
Lesson Surveys & Certifications

Surveys allows organizations to set up questionnaires for surveys, scorecards, and certifications which are sent to respondents to collect information and make decisions.
- Survey Plans (33 Minutes)
- Survey Response (12 Minutes)
Lesson Issues & Actions

The Issues module allows companies to establish and follow consistent procedures for issue reporting, task management, and status reporting. It supports the identification and evaluation of issues...
- Creating & Approving Issues (22 Minutes)
- Managing Issues / Action Plans (15 Minutes)
- Respond to Actions / Monitor Issues (13 Minutes)
- Issue Closure (7 Minutes)
Lesson Product Setup

MetricStream components can be tailored to specific requirements of an organization in different ways. This unit covers the most common requirements and functions performed by an 'Apps Administrato...
- Data Upload (28 Minutes)
- Survey Questionnaires (30 Minutes)
- Feeds, Channels & Alerts (14 Minutes)
Lesson ITC: Use Cases
- Continuous Control Test vs Test on Assets
- PCI Compliance
- HIPAA Compliance
- ISO 27001 - Usecase
- ITC - Control Assessment
Lesson ITC: Product Enhancements

IT & Cyber Compliance Product Enhancements.
- Evidence Management
- Evidence Request Creation in Jira
Lesson IT - Compliance Practice & Sample Use Cases (5 Hours)

Please reach out to your trainer for credentials to the practice instance before starting this unit.
- Compliance Testing
- Surveys & Certifications
- Issues & Actions