Certification Programmes

MCSI Certification

MGRC - Certified GRC Expert

Students who have successfully achieved their MGRC Certification from MCSI can apply for information security governance, risk and compliance jobs worldwide with the confidence that they have the competencies the industry is seeking.

This Certification training curriculum by MCSI teaches you how to master every domain of information security governance, risk and compliance.

Register Now
Intermediate Level MCSI Certification Intermediate
ic-certificate Certification
ic-clock 600+ hours
cpe-points 359
ic-money US$450
No Expiry, No Renewals


MCSI Certifications are world-class. The content is cutting-edge, uniquely-designed, hands-on and challenging. Our exercises teach in-demand skills that are immediately applicable in the field. MCSI's unique approach helps students around the world advance their careers.

This Certification has no expiry date. It has no renewal fees, no hidden fees, and is accessible with no time limits.

MCSI Certified GRC Expert:

  • Develop policies, procedures, standards, guides, checklists, workbooks
  • Perform information security audits
  • Manage enterprise cyber security risks
  • Meet compliance requirements for PCI DSS, ISO 27000, COBIT and GDPR


Training Modules

  • Quickstarter - 10 exercises
  • Information Security Auditing Part 1 - 9 exercises
  • Information Security Auditing Part 2 - 10 exercises
  • Risk Management - 11 exercises
  • Information Security Policies Part 1 - 10 exercises
  • Information Security Policies Part 2 - 6 exercises
  • Contracts - 4 exercises
  • External Communication - 6 exercises
  • Templates - 11 exercises
  • Gap Assessment Workbooks - 5 exercises
  • IT Security Guides and Procedures Part 1 - 6 exercises
  • IT Security Guides and Procedures Part 2 - 5 exercises
  • IT Security Standards Part 1 - 7 exercises
  • IT Security Standards Part 2 - 6 exercises
  • Information Security Policies Part 3 - 5 exercises
  • Information Security Policies Part 4 - 5 exercises
  • Information Security Auditing Part 3 - 5 exercises
  • Information Security Auditing Part 4 - 8 exercises


  • Plan the IT audit of payroll processes - 3 exercises
  • Plan a regulatory readiness audit - 3 exercises
  • Perform an Information Security Audit - 6 exercises
  • Reporting major weaknesses - 4 exercises

Sample Exercises

Below are three (3) exercises from the 100+ exercises available in MGRC - Certified GRC Practitioner:

Write An Work From Home Policy (Novice)


Write A Security Advisory On Managing Social Media And Social Networking Apps (Advanced Beginner)


Write An Access Control Standard (Competent)


Enrolment and Fees


US$450 (+ GST if you're based in Australia).

Practical exercises must be completed online using MCSI's Online Learning Platform.

How to enrol

  1. Login/Register for MCSI's Online Learning Platform
  2. Select `Shop` from the left-side menu
  3. Find the MGRC - Certified GRC Expert, select `Buy` and proceed through the checkout process. You can purchase using a Credit Card or PayPal
  4. Once you have enrolled in the MGRC - Certified GRC Expert, the curriculum unlocks immediately
  5. In the left-side menu of the platform, select `Training & Education` then `MCSI Curriculums`, and you will see the MGRC - Certified GRC Expert listed
Register Now

Terms and Conditions

  • No discounts
  • No refunds
  • No transfers
  • No renewal fees
  • No hidden fees
  • No time limits

Cooling-Off Policy

Receive a full refund if you change your mind about a purchase within 24 hours. No questions asked.

Read the full details here.

Student Testimonials

Here's what students say about the MCSI Method™ and our Online Learning Platform:

Student Testimonials


Training Laptop Requirement

This course can be completed on a standard training laptop. Below are some specifications that guarantee you can complete this course with your machine:

  • 64-bit Intel i5/i7 2.0+ GHz processor or equivalent
  • 8GB of RAM
  • Ability to run at least (1) virtual machine using Virtual Box, or an equivalent virtualization software
  • Windows 10 or later, macOS 10 or later, or Linux
  • Local administrator privileges
Do you support older operating systems?

Yes. Many of the exercises can be completed on older OS versions. Several of our students are successfully using older equipment to learn cyber security.

Proficiency in the English language

Ability to comfortably read and understand IT documentation written in English. Ideally, an IELTS score of 6.5 with no band less than 6 (or equivalent).

Note: You can register for this course without having undertaken an English test.

No prior security training is required to attend this learning programme.

Frequently Asked Questions

What is the MCSI Method™?

Common Questions

  • Are solutions included in certifications and bundles?
    • No. Our method of teaching cyber security consists of challenging you with real-world problem statements that you're expected to research and solve by doing your own research. This is how you'll be expected to work in the field. When you fail an exercise, we provide you with constructive feedback to improve and try again.
  • Do the videos provides the answers to exercises?
    • No. The videos teach concepts, mindset, methodologies, procedures and professional skills such as report writing, interviewing and preparing proposals.
  • Do bundles, training content, or certificates ever expire? Am I expected to buy again in the future?
    • Once purchased, bundles and certificates are unlocked forever. They are no recurring or ongoing fees.
  • Do I need to buy the training and the certification separately?
    • No. The price provided covers both. You only pay once.
  • Do you offer any special offers and discounts?
    • No.
  • If I can't solve the exercise where do I go for help?
  • Who reviews and marks exercises?
    • Trained cyber security instructors that work for Mossé Cyber Security Institute.
  • We can't pay via credit card. Can you raise an invoice for international wire payment instead?
    • Yes. Send us the list of bundles and certifications you want to purchase at [email protected]
  • Can I access a trial/demo the certification programmes prior to enrolling?
    • We provide a free curriculum with 82 practical exercises you can try.
    • The Free Curriculum teaches Security Tools, Penetration Testing, Red Teaming, Threat Hunting, Cyber Defence, GRC and Windows Internals.
    • Try the Free Curriculum
  • What is an `Unofficial Curriculum`?
    • An `Unofficial Curriculum` contains MCSI's practical exercises aligned to a non-MCSI Industry Certification syllabus.
    • We offer unofficial curriculums for the OSCP, ISACA CISA, ISACA CISM, ISACA CRISC, CCT ICE, CCSAS, CCT ACE.
  • Do you provide Continuing Professional Education (CPE) credits?
    • Yes. Every single exercise offers CPE credits. The number of credits earned depends on the difficulty of the exercise completed. Below are the CPE Credits achieve for an exercise in each difficulty:
    • Novice exercises = 1 CPE credits
    • Advanced Beginner exercises = 2 CPE credits
    • Competent exercises = 5 CPE credits
    • Proficient exercises= 8 CPE credits
    • Beyond Proficient exercises = 16 CPE credits
  • Are MCSI courses/certifications recognized and have value outside of Australia?
    • Yes. MCSI certifications have value worldwide and are recognized by employers looking for individuals with practical cyber security skills.
    • MCSI's training is 100% practical with real cybersecurity problems designed to teach immediately applicable skills in the field. To solve our practical exercises, students must do their own research and develop their own solutions.
    • While completing exercises, students also develop their own comprehensive cybersecurity portfolio of skills. Individuals use this portfolio to demonstrate their cybersecurity competencies to solve real industry problems to future employers or hiring managers.
  • Do I need to complete an exam to receive MCSI Certification?
    • No. MCSI Certifications are completed by solving practical cybersecurity exercises.

Career Outcomes

This certification successfully prepares you for the following roles:

  • Cybersecurity Consultant (GRC)
  • Information Security Manager
  • Security Advisor (GRC/Cyber)
Certification Detail

Training Curriculum and Certifications

Students unlock Certificates of Completion for every exercise they complete. Industry Certifications are unlocked upon achieving Skills Proficiency Milestones.




Obtain CPE points by solving exercises


Achieve multiple certifications


Receive help from instructors online

MCSI's MGRC certification covers all six levels of the Australian Signals Directorate's Cyber Skills Framework. You will achieve a certificate upon reaching each level. You will earn an industry certification at Level 5. Click here to learn more.

ASD Skills Proficiency Level Curriculum Completion Requirement Scenarios Completion Requirement
MCSI GRC Learner Level 1 0% 0%
MCSI Novice GRC Practitioner Level 2 15% 0%
MCSI GRC Practitioner Level 3 30% 25%
MCSI Senior GRC Practitioner Level 4 50% 50%
MCSI Certified Principal GRC Practitioner Level 5 75% 100%
MCSI Certified Expert GRC Practitioner Level 6 85% 100%

As an MCSI Certified GRC Expert you will be fully capable of performing the following:

  • Apply fundamental Governance, Risk and Compliance techniques in the enterprise:
    • Feasibility studies
    • Gap assessments
    • Risk assessments
    • Information security reviews
    • Write policies and procedures
    • Develop cyber security baselines
  • Manage information security risks:
    • Identify areas of concern with applications, utilities, networks and operating systems
    • Develop risk management processes
    • Identify, rate and document risk scenarios
    • Develop and maintain risk registers
  • Perform information security audits:
    • Write an audit charter
    • Develop an engagement letter
    • Create audit checklists
    • Audit databases, networks, applications and operating systems
  • Develop policies, procedures, and other GRC documents:
    • The full gamut of information security policies
    • Clauses for contracts and third-party SLAs
    • Incident management templates
    • Gap assessment workbooks
    • Operating system baselines
    • Database security baselines
    • IT security standards

Why MCSI’s GRC Expert Curriculum is World Class

why MCSI certifications

Comprehensive, Effective, Exceeds Standards

Holders of the MGRC Certification have completed 100 practical online exercises demonstrating that they have the skills and knowledge required to work in any information security governance, risk and compliance role. Students take an average of 6 months to complete these exercises.

why MCSI certifications

Lifetime of Education

MCSI's certification takes students from the most fundamental learner level, all the way to becoming principal practitioners. Students that obtain our certificates develop comprehensive skills that can be independently assessed and audited by prospective employers.

why MCSI certifications

Practical, Field-Based

We exclusively take a hands-on approach to teaching information security governance, risk and compliance. Our students can write policies, procedures, guides, contract clauses, develop risk registers, perform audits and assist enterprises meet their compliance and regulatory requirements.

MCSI students have submitted over 13,000 practical online exercises since December 2018.

Information Security Professionals made a median salary of $103,590 in 2020. Cybersecurity roles are regularly ranked #1 jobs in the United States.

Invest $450, and in 5 weeks, you will be ready to apply for jobs with a salary of $75,000 to $150,000 per year.
Why spend between $10,000 to $45,000 on tuition to only get theoretical courses and wait for 2 to 4 years for piece of paper?
Act Now! - You are in control! - Sign-Up Now!


We'll respond within 24 hours

Visit our Frequently Asked Questions (FAQ) page for answers to the most common questions we receive.

Ready to learn hands-on cyber security skills online?

Register Now