Name: CGEIT Cert Masterclass - Prepare for the Exam in 2026
Rating: 4.9 (21 reviews)

Udemy Business

Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Created byJacob Bushong

Last updated 4/2026

English

What you'll learn

Build and evaluate enterprise IT governance structures including framework selection, organizational design, and board-level oversight mechanisms
Align IT strategy with enterprise objectives and ensure governance mechanisms translate strategic direction into measurable IT outcomes
Design IT resource management programs covering human capital, sourcing strategies, architecture governance, and vendor management
Develop benefits realization processes including IT investment portfolios, business case evaluation, and value delivery monitoring
Implement IT risk governance frameworks including risk appetite definition, risk assessment methodologies, and risk response strategies
Apply COBIT 2019 governance system design principles to enterprise IT governance scenarios
Build and evaluate IT balanced scorecards, KPI frameworks, and performance measurement systems for governance reporting
Assess program and project governance structures that ensure IT initiatives deliver expected benefits on time and within constraints
Communicate IT governance status, risk posture, and benefits realization to board members, executives, and enterprise stakeholders
Prepare for all four CGEIT exam domains using structured, domain-by-domain study with practice questions and full practice exams

Course content

6 sections • 102 lectures • 11h 58m total length

Introduction7:08

What IT Governance Is and Why It Matters7:16
COBIT 2019 Governance System Components7:42
Explore COBIT 2019 governance system: six principles, seven components, and the governance–management split. Learn how the cascade of goals connects stakeholder needs to enterprise and alignment goals for end-to-end governance.
Quick Check-In1:39
COBIT 2019 Design Factors — Tailoring the Governance System7:13
Designing a Governance Framework End to End7:57
Board-Level and Management-Level Governance Structures6:34
Understand how board-level and management-level governance structures allocate authority, separate governance from management, and align IT strategy and execution through the board, strategy committee, and steering committee.
RACI Models, Accountability, and Reporting Lines7:14
Aligning IT Strategy with Enterprise Objectives7:23
Align IT strategy with enterprise objectives by deriving it from business strategy and following a continuous monitor-assess-adjust-communicate cycle, with the board guiding governance and value delivery.
IT Strategic Planning Process and Documentation7:52
Master how to craft an IT strategic plan through a cycle of environmental scanning, gap analysis, and a governance-driven roadmap that ties current and target states to business strategy.
IT Initiative Prioritization and the Value Proposition8:28
Quiz 1
Regulatory Compliance as a Governance Requirement7:19
Understand how regulatory compliance anchors IT governance, with the board owning it, integrating it into policies, risk management, and reporting, and distinguishing compliance from conformance and assurance.
Conformance, Due Diligence, and Due Care7:45
Culture as a Governance Enabler or Inhibitor7:20
Tone at the Top and Embedding Governance Values7:11
Ethics in IT Governance Decisions7:05
Codes of Ethics, Conflicts of Interest, and Accountability7:25
Quiz 2
Translating Business Goals into IT Governance Direction7:01
The Evaluate-Direct-Monitor Governance Cycle7:44
Explore the Evaluate-Direct-Monitor governance cycle (EDM) belonging to the board, including how evaluate, direct, and monitor define governance separate from management and as defined by COBIT 2019.
IT Strategic Planning Inputs, Process, and Outputs7:11
Roadmaps, Gap Analysis, and Resource Alignment7:33
Identifying and Analyzing IT Governance Stakeholders6:49
Identify and analyze IT governance stakeholders to build a comprehensive stakeholder register, guiding engagement across executive, operational, risk, and external parties. Prioritize analysis before strategy to ensure governance success.
Influence-Interest Mapping and Prioritization6:53
Engagement Strategies, Conflict Resolution, and Buy-In7:27
Quiz 3
Communicating the Value of IT Governance7:14
Governance Awareness Programs and Education7:18
Enterprise Architecture as a Governance Tool7:15
Explore how enterprise architecture serves as a governance tool, linking business processes, data, applications, and technology to guide strategic IT investments and ensure a coherent portfolio.
TOGAF and the Architecture Development Method7:15
Explore how togaf's architecture development method governs enterprise architecture through an iterative ADM cycle, covering business, data, application, and technology domains, architecture repositories, and governance contracts.
Zachman Framework, EA Comparisons, and Shared Services8:22
Policy Hierarchy — Policies, Standards, and Procedures7:10
Discover the governance documentation hierarchy—policies, standards, procedures, and guidelines—and how they connect to provide auditable, scope-defined, board-driven IT governance.
Policy Lifecycle, Enforcement, and Exception Management7:26
Quiz 4
Information Architecture and Its Role in Governance7:43
Explore how information architecture anchors governance within enterprise architecture, aligning data structures with business strategy and executive accountability through the CDO for ownership, quality, and compliance.
Designing Information Flows and Data Structures7:48
Design information flows and data structures by mapping business processes first, then apply the five data quality dimensions and value- and sensitivity-based classifications.
Governing Information from Creation to Disposal7:20
Explore the information asset life cycle from creation to disposal, detailing governance roles, classification at creation, and how ownership, custodian, and data steward enforce access controls, retention, and archival.
Retention, Archival, and Regulatory Requirements7:45
Information Owners, Stewards, and Custodians7:17
Accountability Models for Information Assets7:34
Accountability models map every information asset to an owner, steward, and custodian with escalation paths and annual reviews, overseen by boards. Formal ownership prevents orphaned data and strengthens regulatory compliance.
Building a Data Stewardship Program8:14
Classification Schemes and Business-Driven Categorization7:42
Handling Standards, Access Controls, and Protection Levels8:28
Quiz 5

Sourcing Models — Insource, Outsource, Co-source, and Cloud7:18
Quick Check-In1:27
Cloud Sourcing Governance and Data Sovereignty7:35
Governance of Sourcing Decisions and Vendor Selection7:43
Balancing Optimization and Control in Sourcing7:56
Balance cost optimization with control retention in outsourcing through governance, preserving lifecycle value and preventing control erosion with four governance controls: strategy policy, oversight capability, portfolio reviews, and escalation thresholds.
Forecasting IT Resource Requirements7:00
Budget Allocation and Total Cost of Ownership7:54
Explore how IT budget allocation drives governance and strategic priorities by weighing total cost of ownership, capex versus opex, and the run-grow-transform-compliance framework, with emphasis on post-investment reviews.
IT Procurement Governance and Acquisition Processes7:27
Contract Negotiation, SLAs, and Right-to-Audit Clauses7:20
Quiz 6
IT Resource Lifecycle — Plan, Acquire, Deploy, Retire7:01
Explore the end-to-end information technology resource lifecycle from plan to retire, focusing on governance checkpoints, total cost of ownership, and avoiding stranded investments through proactive retirement planning.
Asset Management, Portfolio Governance, and Renewal Planning7:35
IT Workforce Competency Assessment and Gap Analysis6:46
Talent Development, Succession Planning, and Knowledge Management7:46
Vendor Governance, Monitoring, and Performance Evaluation6:55
Managing Third-Party Risk and Service Delivery7:45
Quiz 7

Setting IT Performance Targets and Measurement8:00
Align information technology targets with business strategy through performance targets, baselines, and thresholds, ensuring governance accountability and escalation triggers. Compare outcomes, not just outputs, to demonstrate real business value.
KPIs, KRIs, and KGIs for IT Governance8:03
Master KPIs, KRIs, and KGIs in IT governance, learning to distinguish lagging, leading, and goal-confirming metrics, apply time orientation, thresholds, and ownership for proactive risk management.
The IT Balanced Scorecard8:54
Organizational Change Management for IT Governance7:20
Drive governance adoption by treating change management as a core work stream, aligning people, processes, readiness, and culture with IT governance, and building a cross-functional coalition to sustain change.
Leading Governance Adoption and Managing Resistance7:43
Active Governance Monitoring vs. Passive Oversight6:33
Assurance Activities and the Monitor Function7:16
Quiz 8
Governance Reporting to the Board and Stakeholders7:17
Discover how governance reporting connects IT performance, risk, and value to boards, executives, and stakeholders through audience-focused, timely, and transparent reports on risk, benefits realization, compliance posture, and resource stewardship.
Report Design, Frequency, and Escalation Protocols7:17
Quality Assurance vs. Quality Control in Governance6:48
QA Processes for IT Governance Deliverables7:43
Discover how to apply acceptance criteria, quality gates, and continuous review to governance deliverables, with fitness reviews guiding value, process effectiveness, and benefits realization.
Governance Process Design and Documentation7:24
Maturity Models — CMMI and COBIT Process Capability7:59
Explore maturity models like CMMI and COBIT process capability, rooted in ISO 33000, and learn to assess, rate, and prioritize improvements by risk and organizational level.
Continuous Improvement and Performance-Driven Change8:26
Quiz 9
Building Business Cases for IT-Enabled Investments7:16
Val IT Framework and Investment Governance7:34
Business Case as a Living Document and Decision Tool7:30
Treat the business case as a living document that guides investment decisions through stage gate reviews, benefits realization management, and the assumption log to track drift and inform governance.
IT Investment Portfolio Management6:59
Explore IT investment portfolio management as an integrated portfolio governed by run-grow-transform categories, alignment criteria, and measurable value realized through portfolio reporting.
Portfolio Balancing and Stage-Gate Investment Reviews6:56
Investment Ownership, Accountability, and Economic Lifecycle7:45
Financial Metrics — ROI, NPV, IRR, and Payback Period6:30
Compare ROI, NPV, IRR, and payback period to guide IT investment decisions and governance. Explain when to use each metric, their limits, and how they complement for board clarity.
Applied Financial Modeling — Scenarios and Sensitivity Analysis6:36
Non-Financial Metrics and Balanced Value Assessment6:48
Post-Implementation Review and Benefits Tracking6:52
The post-implementation review and benefits tracking establish governance that audits the business case against actual results, maintains a living benefits register, and closes the realization gap through timely, accountable action.
Benefits Realization Process and Ongoing Value Management7:08
Quiz 10

IT Risk Frameworks — Risk IT, COSO ERM, ISO 310007:12
Compare Risk IT, COSO ERM, and ISO 31000 frameworks to make risk management systematic and tied to business decisions, emphasizing risk appetite, tolerance, and risk treatment across the enterprise.
Quick Check-In1:19
Risk Framework Selection and Implementation7:01
Integrating Risk Frameworks into IT Governance7:27
Integrate risk frameworks into IT governance to enable informed, real-time decision making through two-way risk information flow across planning, projects, changes, and vendor management.
Integrating IT Risk into Enterprise Risk Management6:48
Integrate IT risk into enterprise risk management to deliver a single board risk picture by translating technical risk into business impact and aligning with risk appetite via COBIT and COSO.
ERM Integration Patterns and the Three Lines Model6:43
IT Risk vs. Information Risk — Two Sides of Governance6:56
Risk Policy Development and Communication7:19
Setting Risk Appetite at the Board Level6:54
Risk Tolerance, Risk Capacity, and Risk Profile7:10
Quiz 11
Risk in IT-Enabled Business Capabilities6:37
Service Delivery Risk and Process Dependencies7:05
Explore how service delivery risk and process dependencies threaten business operations, and how governance, SLAs, and dependency mapping enable proactive resilience.
Business Risks from IT — Threats and Exposures7:24
Governance treats IT risk as the same as business risk, assigns accountability to business leaders, and focuses on reducing exposures to prevent operational disruption, data compromise, and regulatory penalties.
Risk Scenarios and Risk Register Development7:06
Turn risk analysis into action by building concrete risk scenarios and maintaining a governance risk register that tracks ownership, treatment, and both inherent and residual risk.
The Risk Management Cycle — Identify, Assess, Respond, Monitor6:42
Embed risk management as a continuous governance discipline by identifying, assessing, responding, and monitoring to keep the enterprise risk posture real-time.
Risk Response Strategies and Control Effectiveness6:58
Qualitative Risk Analysis — Scales, Matrices, and Expert Judgment6:33
Explore qualitative risk analysis using likelihood and impact scales, heatmaps, and expert judgment techniques to assess risks when data is scarce, with governance-led anchoring and bias mitigation.
Quantitative Risk Analysis — ALE, Monte Carlo, and Financial Models6:39
Combining Methods and Presenting Risk to the Board7:07
Learn to combine qualitative and quantitative risk methods, use scenario analysis to bridge them, and present a board-ready risk picture with inherent and residual risk, KRIs, and governance-focused recommendations.
Quiz 12

Before the Exam2:37
Prepare for the CGEIT exam by understanding the difference between knowing material and taking the exam, using practice exams to identify knowledge gaps and focus review.
Exam 1 - Warm-Up
After Your First Practice Exam2:45
Lean into the practice to turn results into exam readiness with focused under-two-hour sessions. Review strategically: start with wrong answers, study explanations, and address gaps before a tougher second exam.
Exam 2 - Moderate Difficulty
Wrap Up2:35

Requirements

No specific prerequisites required. Some familiarity with IT governance, enterprise risk management, or IT strategy concepts is helpful but not mandatory — this course teaches everything from the ground up.

Description

This course contains the use of artificial intelligence.

This course is a complete, structured study program for the ISACA Certified in the Governance of Enterprise IT (CGEIT) exam. Built domain by domain against the official CGEIT exam blueprint, it covers every topic area you need to understand before sitting for the exam — from governance of enterprise IT and resource management through benefits realization and risk optimization. If you are an IT executive, governance professional, CIO, IT director, enterprise architect, or business leader targeting the CGEIT certification, this course gives you a study path you can follow from start to finish.

Domain 1 — Governance of Enterprise IT (40% of the exam) — is the largest domain and covers the frameworks, structures, and processes that define how an organization governs its IT function at the enterprise level. Topics include IT governance principles and frameworks (COBIT 2019, ISO 38500), governance system design and implementation, IT governance organizational structures and roles, board-level IT oversight and accountability, IT strategic planning and alignment with enterprise strategy, governance policies and decision-making mechanisms, stakeholder identification and engagement, organizational culture and its influence on governance outcomes, ethics and professional conduct in IT governance, regulatory and legal requirements for IT oversight, IT governance maturity assessment, continuous improvement of governance practices, and the relationship between IT governance and corporate governance. You will understand how IT governance translates enterprise strategy into IT direction and ensures that technology investments deliver measurable value while managing risk.

Domain 2 — IT Resources (15%) — covers the management and optimization of IT resources to support enterprise objectives. Topics include IT resource planning and allocation, human capital management for IT (skills, competencies, retention, succession planning), IT sourcing strategies (insource, outsource, co-source, cloud), vendor and service provider management, contract governance, IT architecture governance, enterprise architecture frameworks and their role in governance, technology standards and infrastructure management, IT service management alignment (ITIL), capacity and performance management, and resource optimization through shared services, consolidation, and rationalization. You will understand how to ensure that IT resources — people, processes, technology, and information — are acquired, managed, and allocated in alignment with governance objectives and enterprise priorities.

Domain 3 — Benefits Realization (26%) — covers the processes that ensure IT investments deliver the intended value to the enterprise. Topics include IT investment management, portfolio management for IT initiatives, program and project governance, benefits identification and outcome mapping, business case development and evaluation, value delivery frameworks (Val IT), benefits realization monitoring and reporting, key performance indicators and metrics for IT value, IT balanced scorecard implementation, post-implementation reviews, value management offices, stakeholder communication of IT value, total cost of ownership analysis, and the alignment of IT benefits with enterprise strategic objectives. This domain tests your ability to ensure that IT-enabled investments are managed as a portfolio, that expected benefits are clearly defined and tracked, and that realized value is reported to stakeholders in business terms.

Domain 4 — Risk Optimization (19%) — covers the governance of IT-related risk at the enterprise level. Topics include IT risk governance frameworks, risk appetite and risk tolerance definition, risk culture and awareness, IT risk identification and assessment methodologies, risk scenario development, risk analysis (qualitative and quantitative), risk response strategies (accept, mitigate, transfer, avoid), risk and control ownership, key risk indicators and thresholds, risk monitoring and escalation, risk reporting to the board and senior management, integration of IT risk with enterprise risk management, regulatory and compliance risk, third-party and supply chain risk governance, emerging technology risk, and continuous risk optimization. You will understand how to design and operate an IT risk governance program that balances risk-taking with risk protection — enabling informed decision-making at the enterprise level rather than simply minimizing risk.

This course is built differently from reading the CGEIT Review Manual cover to cover. Each lesson is a narrated video that explains how concepts connect to each other and to real IT governance work — not just what the definition is, but how an IT governance leader applies it. Every domain includes practice questions designed to mirror the style and difficulty of CGEIT exam scenarios, covering not just recall but application and analysis. The course closes with full-length practice exams with detailed answer explanations, so you can measure your readiness and focus your remaining study time where it matters most.

Major topics covered: IT governance, COBIT 2019, ISO 38500, governance frameworks, IT strategic planning, IT alignment, board-level IT oversight, stakeholder engagement, IT resource management, IT sourcing, enterprise architecture, ITIL, IT service management, benefits realization, Val IT, portfolio management, IT investment management, business case development, balanced scorecard, KPIs, value delivery, IT risk governance, risk appetite, risk tolerance, risk assessment, risk response, risk monitoring, KRIs, enterprise risk management, third-party risk, emerging technology risk, CGEIT exam prep 2026.

Who this course is for:

IT governance professionals and aspiring IT leaders who want to formalize their strategic expertise and earn the CGEIT designation.
CIOs, CTOs, and IT directors with 5+ years of experience in IT leadership roles who are ready to validate their governance knowledge with an industry-recognized certification.
Enterprise architects and IT strategists who need a deep understanding of how IT governance, benefits realization, and risk optimization work together at the enterprise level.
GRC analysts and IT auditors who work alongside governance teams and want to understand how enterprise IT governance programs are designed, measured, and reported.
Business executives and board members with IT oversight responsibilities who want to understand IT governance frameworks and their role in enterprise value delivery.
IT managers transitioning from operational roles into strategic governance positions who are building toward the CGEIT as a career credential.
Anyone studying for the CGEIT certification exam who wants a structured, instructor-led course that goes deeper than the CGEIT Review Manual alone.

What you'll learn

Explore related topics

Course content

Introduction1 lecture • 7min

Domain 1 - Governance of Enterprise IT39 lectures • 4hr 46min

Domain 2 - IT Resources15 lectures • 1hr 45min

Domain 3 - Benefits Realization25 lectures • 3hr 5min

Domain 4 - Risk Optimization19 lectures • 2hr 7min

Practice Exams3 lectures • 8min

Requirements

Description

Who this course is for: