The practitioner certification for GRC, audit evidence, and multi-framework governance.
The ELDR Certified Governance Professional (ECGP) is the Institute's foundational certification for practitioners responsible for building, governing, and defending enterprise GRC programs. Grounded in actual regulatory frameworks — ISO 27001, NIST SP 800-53, SOC 2, PCI-DSS, and GDPR — this program develops the documentation and evidence architecture skills that auditors, compliance teams, and risk officers need in regulated environments. Not theory. Applied governance.
Introduction to GRC as institutional infrastructure. Overview of ISO 27001, NIST SP 800-53, SOC 2, PCI-DSS, GDPR, and their interrelationships. The documentation mandate: why evidence-based governance matters.
Designing the policy layer: information security policies, standards, procedures, and guidelines. ISO 27001 Clause 5 requirements. Scope and Statement of Applicability. Policy governance and lifecycle management.
Translating security controls into audit-defensible prose. NIST 800-53 control narrative templates. Implementation statements, responsible parties, and evidence type documentation. SOC 2 Trust Services Criteria mapping.
ISO 27005 and NIST SP 800-30 risk assessment methodology. Risk register construction and governance. Treatment plans, residual risk documentation, and risk acceptance records.
Building the evidence layer: requirements → controls → artifacts. Evidence collection matrices, audit trail documentation, and evidence repository governance. FedRAMP, SOC 2, and ISO 27001 evidence expectations.
Control rationalization across overlapping frameworks. Unified control mapping methodologies. Compliance efficiency through structured documentation reuse.
Preparing for regulatory examinations, certification audits, and third-party assessments. Auditor communication strategies. Remediation documentation and POA&M management.
Content lifecycle management for compliance documentation. Version control, review cycles, and approval workflows. Governance platforms: ServiceNow, Archer, OneTrust integration.
End-to-end design of a GRC documentation program for a simulated enterprise. Deliver: ISMS policy suite, control narrative pack, risk register, evidence matrix, and audit readiness assessment.
All prices in USD. Institutional licensing available for 25+ seats. Contact institute@eldrinc.com
Cohort dates are confirmed directly with enrolled students. Early access registrants receive priority placement, program updates, and locked-in pricing before public enrollment opens.
The ELDR Certified Governance Professional is currently accepting early access registrations. Cohort dates will be confirmed with enrolled students and announced to the waitlist.
The GP credential is an ELDR Institute professional designation. It is grounded in the same regulatory frameworks (ISO 27001, NIST, AICPA) referenced in enterprise and government hiring requirements. Continuing education credit applications are in development.
Yes. Groups of 5 or more receive the corporate rate of $1,995/seat (5+ seats). Institutional licensing for large enterprise deployments is available — contact institute@eldrinc.com.
Full refunds are available within 14 days of enrollment confirmation. Partial refunds are available up to the end of Module 2. No refunds after Module 2 completion.