ISC2 Certified Authorisation Professional® (CAP®)

This course has been replaced by ISC2 Certified in Governance, Risk and Compliance® (CGRC®). Access the course page.

On this accelerated ISC2 Certified Authorisation Professional (CAP) course, you’ll build knowledge in Governance, Risk and Compliance (GRC) and authorising and maintaining information systems utilising various risk management frameworks, as well as best practices, policies and procedures established in cyber security.

In just 3 days, you’ll learn the principles of information security, the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and System Development Life Cycle (SDLC) integration. You’ll also build knowledge in:

• Compiling required security documentation for Authorising Official (AO)
• Performing ongoing Security Control Assessments (SCA)
• Determining specific monitoring tasks and frequency based on the agency’s strategy
• Performing ongoing Information System (IS) Risk Acceptance

At the end of this course, you’ll sit the ISC2 Certified Authorisation Professional (CAP) exam exam, and achieve your certification. As an Official ISC2 Training Provider and through Firebrand’s Lecture | Lab | Review methodology, you’ll get access to official courseware, learn from certified instructors, and train in a distraction-free environment.

Audience

This course is ideal if you are in IT, information security and information assurance practitioners and work in Governance, Risk and Compliance (GRC) roles and have a need to understand, apply and/or implement a risk management program for IT systems within an organisation.

ISC2 Premier Training Partner

At Firebrand, we are proud to be an Official Training Premier Partner of ISC2 for 2025 in recognition of our commitment to delivering world-class training, certification, and professional development opportunities for Cybersecurity professionals.

• Domain 1: Information Security Risk Management Program
• Domain 2: Categorisation of Information Systems (IS)
• Domain 3: Selection of Security Controls
• Domain 4: Implementation of Security Controls
• Domain 5: Assessment of Security Controls
• Domain 6: Authorisation of Information Systems (IS)
• Domain 7: Continuous Monitoring

At the end of this accelerated course, you’ll sit the following exam at the Firebrand Training centre, covered Certification Guarantee:

ISC2 CAP exam

• Duration: 3 hours
• Format: Multiple-choice
• Passing score: 700/1000 (70%)
• Domains:
1. Information Security Risk Management Program (15%)
2. Categorisation of Information Systems (IS) (13%)
3. Selection of Security Controls (13%)
4. Implementation of Security Controls (15%)
5. Assessment of Security Controls (14%)
6. Authorisation of Information Systems (IS) (14%)
7. Continuous Monitoring (16%)

Before attending this accelerated course, you should have at least 2 years of experience in one or more of the seven domains.

Please note: If you don’t have enough experience yet, you can still pass the CAP exam and become an Associate of ISC2 while you earn the work experience needed.

Your accelerated course includes:

• Accommodation *
• Meals, unlimited snacks, beverages, tea and coffee *
• On-site exams **
• Exam vouchers **
• Practice tests **
• Certification Guarantee ***
• Courseware
• Up to 12 hours of instructor-led training each day
• 24-hour lab access
• Digital courseware **

* For residential training only. Accommodation is included from the night before the course starts. This doesn't apply to online courses.
** Some exceptions apply. Please refer to the Exam Track or speak with our experts.
*** Pass the first time or train again for free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Seven reasons why you should sit your course with Firebrand Training

• Two training options. Choose between residential classroom-based and online courses
• You'll be certified fast. With us, you’ll be trained in record time
• Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
• Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
• You’ll learn more. A day with a traditional training provider generally runs from 9am–5pm, with a nice long break for lunch. With Firebrand, you’ll get at least 12 hours/day of quality learning time with your instructor
• You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
• You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals

*For residential training only. Doesn't apply for online courses
**Some exceptions apply. Please refer to the Exam Track or speak with our experts

Are you ready for the course? 

Get access to free practice tests for your course  Free Practice Test