This program is to assist candidates in preparing for the Certified in Risk and Information Systems Control (CRISC) examination. Candidates for ISACA’s highly respected CRISC designation can now take the exam using computer-based testing (CBT). CBT allows for in-person testing on a computer at an approved testing center. These are scheduled through ISACA International at the time of the CRISC exam registration.
For more information about ISACA’s Certified in Risk and Information Systems Control (CRISC) certification, please visit ISACA International’s CRISC website
ISACA LA Virtual CRISC Certification Review Course
The courses will be held on four Saturdays for CRISC. These sessions are NOT designed as basic teaching sessions but rather to serve as comprehensive reviews for candidates with a proper educational background in all subject areas. Our goal is to cover all domains within the subject matter and provide clarity on more challenging concepts.
Each session will be led by an instructor and a facilitator who will address questions as they arise. The format will include a combination of lectures and discussions, with ample time allocated for participants to raise questions and engage in meaningful dialogue.
The sessions will run for up to five (5) hours each Saturday, from 8:30 AM PST to 1:30 PM PST, with scheduled breaks every hour. The length and frequency of breaks will be at the discretion of each instructor since the amount of time for each domain varies. Toward the conclusion of each session, the instructor may allocate time for a domain-specific question and answer session, utilizing a practice quiz.
October 14, October 21, October 28, and November 4, 2023 (up to 20 CPEs)
CPEs will be earned according to the ISACA Guidelines (1 CPE hour for every 50 minutes). If you happen to disconnect, the timer will resume when you reconnect.
8:30 AM – 1:30 PM PST
Virtual Sessions via Zoom
Recommended Study Materials
Please be aware that the CISA Review Manual will NOT be supplied during the review sessions and MUST be purchased directly from the ISACA Store. While the purchase is not mandatory, we strongly recommend it. Preparing for the class sessions by studying the domain material beforehand will enhance your experience. Instructors may provide supplementary materials if deemed suitable.
***A soft copy of the material will be provided before the class for you to download. If you cannot download it, please reply to the email sending you the link so we can email you the material.
Please note that while these review courses are designed to support participants in their exam preparation, successful completion of the course does not guarantee a passing result in the examination.
Meet Our Instructors
Domain 1 – John Kronick
Domain 2 – John Kronick
Domain 3 – John Kronick
Domain 4– John Kronick
Questions, Answers, and Explanations Databases – John Kronick
Domain 1 – Thomas Phelps IV, CISA – Thomas Phelps IV is the VP of Corporate Strategy & CIO for Laserfiche, a global provider of intelligent content management and process automation software. Thomas joined Laserfiche in 2014 and leads IT, industry marketing, analyst relations and major strategic initiatives. He was part of the executive team that launched Laserfiche Cloud in 2015. Prior to Laserfiche, Thomas was the national entertainment and media champion for cybersecurity at PwC. He led the initiative to innovate content security practices used worldwide in the motion picture industry. He was the Advisory Services leader for two major accounts, and provided Fortune 500 clients with consulting services on IT audit, IT transformation, security, privacy and business continuity areas.Thomas is the Chairperson of Long Beach AcceleratorTM, a non-profit whose mission is to accelerate early stage startups with seed funding, mentorship and exit strategy. He serves on the board of directors for Innovate@UCLA, Southern California, SIM and Advancing Women in Technology. Thomas is a Past-President of ISACA Los Angeles, and on the 50thAnniversary Governance Panel. He is a founding member and Past-President of Ascend Los Angeles, a Pan-Asian leadership development organization. Thomas has co-authored and contributed to five books. In 2019, Thomas became an adjunct professor teaching IT Auditing and Analytics in the USC Masters in Accounting program.
Domain 2 and Domain 3 – John Kronick, CISA, CRISC, CISM – John Kronick, an accomplished security innovator and security architecture thought leader, serves as Regional Director of Risk Management & Compliance at NCC Group, one of the world’s largest and prominent Cyber Security specialist companies, and a trusted technology partner for thousands of businesses and government entities around the globe. John has over 25 years of professional experience in providing strategic and tactical privacy, security, risk management, transformation and forensics assurance services to healthcare, governmental and commercial entities. He served in prior CISO roles at Prime Healthcare, Gartner Group, CitiBank, Purdue Pharma and Estee Lauder.
John has significant expertise in public / private law enforcement liaison activities, “Big 4” public auditing (Deloitte), SOX, PCI, security compliance management and global security operations and transformation.Prior to joining NCC Group, John was a CISO at Prime Healthcare, building innovative security measures to address IOT and telehealth security concerns. He also served as a Senior Manager at Accenture, responsible for delivery of risk and security services to many large commercial healthcare, retail, banking and government clients.
Domain 4 – Mikhael Felker, CISSP, CGEIT, CIPP, CISA, CISM, CRISC, ITIL, PMP. Mikhael is Director of Information Security & Risk Management for Farmers Insurance. In the past decade, he has taken on various information roles including engineering, teaching, writing, research, and management. His sector experience includes insurance, defense, healthcare, nonprofit/education and technology/Internet, seeing first-hand the variance in information security culture and program maturity. Felker received his M.S. in information security policy and management from Carnegie Mellon University and B.S. in computer science from UCLA. He has over 50+ publications and has been a speaker for RSAC, CSA, ISSA, ISACA, ISC2 and OWASP events.
Calendar of Topics
Domain 1: IT Risk Identification & CRISC Overview
Domain 2: IT Risk Assessment & PPT Review Questions
Domain 3: Risk Response and Mitigation
Domain 4: Risk and Control Monitoring and Reporting
Questions, Answers, and Explanations Databases
Domain Four: (4 Hours)
Risk and Control Monitoring and Reporting
Review / Questions (2 Hours) Mikhael Felker
Practice Questions: All Domains
Early Bird (pay by 10/02/23):
ISACA Members $225
Full-Time Students & Faculty $30
Regular Rate (after 10/02/23):
ISACA Members $275
Full-Time Students & Faculty $50
Payment Method: Credit Card
* The domains covered on each Saturday are subject to change based on instructor availability.