Governance, Risk & Compliance
Digital Operational Resilience and ICT Risk
This in-depth course develops directly applicable capability in Digital Operational Resilience and ICT Risk. It connects Critical Services and ICT Dependencies, ICT Risk and Control Framework, and Resilience Testing and Incidents to the decisions, controls, and activities participants need to perform in their workplace.
Overview
Practical learning for workplace transfer.
This in-depth course develops directly applicable capability in Digital Operational Resilience and ICT Risk. It connects Critical Services and ICT Dependencies, ICT Risk and Control Framework, and Resilience Testing and Incidents to the decisions, controls, and activities participants need to perform in their workplace. The five-module curriculum progresses toward Resilience Scenario Exercise, using evidence, scenarios, and work products appropriate to the subject.
Objectives
- Analyze critical services and ict dependencies, including map business services to applications, infrastructure, data, people, and providers.
- Configure or structure ict risk and control framework, including change, access, security, capacity, availability, backup, and recovery controls.
- Evaluate resilience testing and incidents, including scenario, failover, recovery, cyber, and provider tests.
- Manage third-party and governance, including contract rights, service levels, locations, subcontractors, and exit.
- Apply resilience scenario exercise, including map a critical service dependency chain.
Target audience
- Professionals responsible for this subject area
- Managers, supervisors, and team leaders
- Analysts, specialists, engineers, or coordinators working with the relevant processes
- Project, implementation, assurance, or improvement team members
- Professionals preparing for broader responsibilities in this field
Program outline
A clear structure for the learning journey.
Program outline
Outline points are grouped in one designed block instead of being treated as separate module cards.
Module 1: Critical Services and ICT Dependencies
Map business services to applications, infrastructure, data, people, and providers
Impact tolerances and recovery objectives
Identify concentration and single points of failure
Module 2: ICT Risk and Control Framework
Change, access, security, capacity, availability, backup, and recovery controls
Risk assessment and control evidence
Legacy, cloud, and outsourced service exposure
Module 3: Resilience Testing and Incidents
Scenario, failover, recovery, cyber, and provider tests
Incident classification, escalation, communication, and learning
Track remediation and recurring weaknesses
Module 4: Third-Party and Governance
Contract rights, service levels, locations, subcontractors, and exit
Management and board reporting
Align continuity, cyber, service management, and operational risk
Module 5: Resilience Scenario Exercise
Map a critical service dependency chain
Test a severe provider disruption
Define recovery actions and governance evidence
Materials provided
- ○ Course-specific presentation slides
- ○ Guided exercises, scenarios, or configured-environment activities appropriate to the subject
- ○ Course-specific worksheets, checklists, or calculation templates
- ○ Applied workplace case materials
- ○ 4D Certificate of Completion issued by 4D Training & Consultancy
- ○ Post-course support for implementation questions
Training Options
Programs can be delivered in-house, online, or in a blended format depending on your team's schedule, location, and learning objectives. When an external certificate or exam is included, certification rules and fees remain under the relevant awarding body's policies, while 4D provides the training and preparation support.
Why choose 4D
4D Training & Consultancy adapts the program to the client’s operating environment. Delivery combines structured explanation with subject-specific analysis, exercises, and implementation decisions so participants can transfer the learning to real responsibilities without implying vendor authorization.
Related courses
Enterprise Risk Management Based on ISO 31000
This practical course develops directly applicable capability in Enterprise Risk Management Based on ISO 31000. Participants work in depth on ISO 31000 Principles and Framework, and Risk Context and Criteria, and Risk Identification, then convert the methods into tools and actions suited to their workplace.
View courseCompliance Management Systems Based on ISO 37301
This practical course develops directly applicable capability in Compliance Management Systems Based on ISO 37301. Participants work in depth on Compliance Management Context, and Compliance Obligations, and Compliance Risk Assessment, then convert the methods into tools and actions suited to their workplace.
View courseAnti-Bribery Management Systems Based on ISO 37001
This practical course develops directly applicable capability in Anti-Bribery Management Systems Based on ISO 37001. Participants work in depth on Bribery Risk and ISO 37001, and Bribery Risk Assessment, and Financial and Nonfinancial Controls, then convert the methods into tools and actions suited to their workplace.
View course