Risk Response and Reporting Effectively

WEBVTT Well, hi, everybody. My name is Anthony Sequera. I am one of the instructors here at ACI Learning, and I am thrilled to be hosting this event with none other than Chris Ward. Chris, how are you today? I'm doing really good, Anthony. Good to be in the studio with you yet once again. Yes, it's awesome. Chris and I have been teaching together for decades, not necessarily this material, though, so I am very, very excited. I'm going to play the role of student advocate here as we look at a certification in risk and information systems control, and thankfully, we have abbreviated that C-RISC for you. So Chris, first of all, before we jump in, can you give us a little bit of your background with this subject matter? I assume this is an exam that you're intimately familiar with, and I know when it comes to the subject matter, you've been dealing with this for years now. Yeah, and it's one of those things where a lot of people deal with risk, right? They just don't know about it. And so in this case, and in this portion of our C-RISC studies, we're going to be looking primarily about risk response and risk monitoring. And so we're going to talk a little bit about that. And just remember what we've already covered. If you've watched other things on risk or any of the other ACI learning shows, is that risk is something that as a IT person, you are going to deal with on a day-to-day basis. How do we respond to that? We're going to be talking about things like the four different types of responses. We're going to be talking about why controls are designed, how they're designed. We're also going to be taking a look at the arena of risk monitoring and reporting. OK, so risks have occurred. Who needs to know about it? What have we learned from it? How do we make it better the next time? These are all things that we're going to be covering in this show-- well, not this particular show, but many shows, Anthony, and looking forward to it. Yeah, I love it. And Chris, I guess we are going to be doing more than just completely ignoring and avoiding risk. And that's always good. We know that's one way to deal with it, one way that's tempting to deal with it. But I'm super excited for Chris to lay out for us a well-thought-through plan in how we are going to deal with and, as Chris indicated, particularly respond to risk inside of our organization. Well, Chris, before we get started, is there anything else you wanted to mention? Maybe any kind of study tips as we go forward or anything like that? Yeah, definitely. Yeah, so one of the things that we always recommend-- and Anthony does this in his courses, I do it in all my courses-- is remember, at the very beginning here, we have a download button, which does have a copy of the course notes that you can take a look at, as well as a PDF of the slides. So if you are the kind of person where you like your tactile, you like writing down notes, hey, best thing to do is maybe print one of those out or bring up that PDF, make your notes, and any time that we talk about something that's super exam-centric, both Anthony and I will point these things out to you. We want to make sure that you write that down. Make sure you're paying attention for that so that way we can help you when you do take the exam. I love it. Well, we have a lot of great content in store for you, so why don't we go ahead and get started? We hope you'll be joining us in the very next episode.