G
Foundation · 12 Weeks · Online

ELDR Certified Governance Professional

The practitioner certification for GRC, audit evidence, and multi-framework governance.

All Certifications
Program Description

The ELDR Certified Governance Professional (ECGP) is the Institute's foundational certification for practitioners responsible for building, governing, and defending enterprise GRC programs. Grounded in actual regulatory frameworks — ISO 27001, NIST SP 800-53, SOC 2, PCI-DSS, and GDPR — this program develops the documentation and evidence architecture skills that auditors, compliance teams, and risk officers need in regulated environments. Not theory. Applied governance.

Prerequisites
  • ·Foundational understanding of enterprise IT environments
  • ·Familiarity with at least one regulatory framework (ISO 27001, NIST, SOC 2, or equivalent)
  • ·No specific certification required
Who Should Attend
  • Compliance Analysts and GRC Practitioners
  • Information Security Officers and ISMS Managers
  • Audit Support Specialists and Internal Auditors
  • Risk Management Professionals
  • Technical Writers in Compliance Environments
  • Governance Program Managers
Credential Awarded
ELDR Certified Governance Professional (ECGP)
Digital Badge · Certificate · Verifiable Credential
Learning Outcomes

What you will be able to do
after completing this program.

Curriculum

12 weeks.
Applied governance — not theory.

Module 1
3 days
GRC Fundamentals and Regulatory Landscape

Introduction to GRC as institutional infrastructure. Overview of ISO 27001, NIST SP 800-53, SOC 2, PCI-DSS, GDPR, and their interrelationships. The documentation mandate: why evidence-based governance matters.

Module 2
5 days
ISMS Policy Architecture

Designing the policy layer: information security policies, standards, procedures, and guidelines. ISO 27001 Clause 5 requirements. Scope and Statement of Applicability. Policy governance and lifecycle management.

Module 3
5 days
Control Narrative Frameworks

Translating security controls into audit-defensible prose. NIST 800-53 control narrative templates. Implementation statements, responsible parties, and evidence type documentation. SOC 2 Trust Services Criteria mapping.

Module 4
4 days
Risk Assessment and Treatment Documentation

ISO 27005 and NIST SP 800-30 risk assessment methodology. Risk register construction and governance. Treatment plans, residual risk documentation, and risk acceptance records.

Module 5
5 days
Evidence Architecture and Traceability

Building the evidence layer: requirements → controls → artifacts. Evidence collection matrices, audit trail documentation, and evidence repository governance. FedRAMP, SOC 2, and ISO 27001 evidence expectations.

Module 6
4 days
Multi-Framework Alignment

Control rationalization across overlapping frameworks. Unified control mapping methodologies. Compliance efficiency through structured documentation reuse.

Module 7
4 days
Audit Readiness and Examination Support

Preparing for regulatory examinations, certification audits, and third-party assessments. Auditor communication strategies. Remediation documentation and POA&M management.

Module 8
3 days
Documentation Governance and Lifecycle

Content lifecycle management for compliance documentation. Version control, review cycles, and approval workflows. Governance platforms: ServiceNow, Archer, OneTrust integration.

Capstone
8 days
Enterprise GRC Documentation Program Design

End-to-end design of a GRC documentation program for a simulated enterprise. Deliver: ISMS policy suite, control narrative pack, risk register, evidence matrix, and audit readiness assessment.

Delivery
Format
Online — self-paced with live weekly sessions
Duration
12 weeks · approximately 8–12 hours/week
Sessions
Weekly live cohort sessions (recorded for async access)
Assessment
Module assessments + peer-reviewed capstone project
Faculty
ELDR Institute practitioners and domain experts with active client engagement — not academic faculty without operational experience
Pricing
Individual Enrollment
Full program access · Digital credential
$2,495
Corporate (5+ Seats)
Team enrollment · Admin dashboard
$1,995/seat (5+ seats)
Government
Federal, state, and local government
$1,795
Student
Valid .edu email required
$995
ELDR Institute Member
Active Knowledge Portal subscribers
$1,495

All prices in USD. Institutional licensing available for 25+ seats. Contact institute@eldrinc.com

Enrollment

Early access
registration is open.

Cohort dates are confirmed directly with enrolled students. Early access registrants receive priority placement, program updates, and locked-in pricing before public enrollment opens.

Or email: institute@eldrinc.com · Request Corporate Training

Frequently Asked Questions
When does enrollment open?

The ELDR Certified Governance Professional is currently accepting early access registrations. Cohort dates will be confirmed with enrolled students and announced to the waitlist.

Is this certification recognized externally?

The GP credential is an ELDR Institute professional designation. It is grounded in the same regulatory frameworks (ISO 27001, NIST, AICPA) referenced in enterprise and government hiring requirements. Continuing education credit applications are in development.

Is there a group rate for corporate teams?

Yes. Groups of 5 or more receive the corporate rate of $1,995/seat (5+ seats). Institutional licensing for large enterprise deployments is available — contact institute@eldrinc.com.

Is there a refund policy?

Full refunds are available within 14 days of enrollment confirmation. Partial refunds are available up to the end of Module 2. No refunds after Module 2 completion.

Related