Skip to main content
Image coming soon

The KNUST-to-Compliance-Analyst Hireability Course

$199.00
Adding to cart… The item has been added

A focused course, tailored for you

The KNUST-to-Compliance-Analyst Hireability Course

A West Africa graduate's path from KNUST coursework to a portfolio that wins a remote IT audit or compliance analyst seat.

Your KNUST transcript proves you understand information systems theory. The remote compliance analyst job ad asks for portfolio artefacts your degree never produced. The course closes that one specific gap.

$199 one-time
Tailored to your situation. Access within 24 hours. 30-day money-back.

Includes a hand-built implementation playbook delivered alongside course access, generated for your specific situation.

Why this course

A KNUST graduate in Accra trying to land a remote IT audit, GRC, or compliance analyst seat is competing with applicants in Manila, Cairo, Nairobi, and Mumbai for the same shortlist. The hiring manager scans LinkedIn, then opens the cover note, then asks for a sample of work. The shortlist is decided in those three minutes. A degree, even from a strong African university, does not win that scan. Concrete artefacts the candidate built, hosted somewhere the manager can click, decide it. Most KNUST graduates have none. The course gives you four, hand-walked, ready to publish under your own LinkedIn, ready to send as cover-note attachments. Not theory. Not certification cram. Working artefacts a senior consultant would recognise.

What you walk away with

  • Publish a four-artefact compliance portfolio on a free static-site host hiring managers can open in one click.
  • Write a LinkedIn About section that names the artefacts and the methodology, replacing your current student-style headline.
  • Apply to remote compliance and IT audit roles with a cover note that points to specific work, not coursework.
  • Walk an interviewer through the choices you made in the risk register and the statement of applicability without panicking.
  • Hold credible answers to the most common interview probes on SOC 2 scoping, ISO 27001 control selection, and risk acceptance.

The 12 modules

Module 1. The remote-compliance-hire scan, decoded
Open three real job ads for entry-level IT audit, GRC analyst, and compliance analyst roles. Annotate which sentences ask for portfolio artefacts and which ask for certifications. Build your shortlist of target employers (initially aim for ten remote-friendly firms or international consultancies hiring in Africa or open to Africa-based remote applicants). The module shows you how hiring managers triage a thousand-application pile in four minutes and what gets you past that triage from an Accra postcode.
Module 2. Pick the fictional company you'll audit
You can't build a risk register against KNUST. The course gives you three pre-scoped fictional companies: a Lagos-based payment-services startup, a Nairobi-based logistics SaaS, and a Cape Town-based health-tech platform. Pick one. The module gives you the company background, the systems inventory, the customer base, and the regulatory exposure (Ghana DPA, Nigeria NDPR, Kenya DPA, South Africa POPIA, US-bound customer commitments). Every artefact you build for the rest of the course attaches to this one company.
Module 3. The risk register, built control by control
Open the downloadable risk-register template. Walk through how to identify thirty real risks for the fictional company across information security, privacy, vendor management, business continuity, and physical security. Score each risk on likelihood and impact using a defensible methodology you can explain in an interview. Assign owner, treatment, residual rating. By module-end you have a populated thirty-row risk register a senior consultant would recognise as competent first-year analyst work.
Module 4. ISO 27001 statement of applicability, from scratch
Take the ISO 27001 Annex A control set. Map each control to the fictional company you scoped in module two. Mark applicable, not applicable, partially applicable. Write the justification in two sentences for each. This is the single most common interview ask for entry-level ISO work, and most candidates cannot do it. The module shows you which controls you can defensibly mark not applicable and which you cannot. Output: a complete statement of applicability, two pages of justifications, ready to share.
Module 5. SOC 2 readiness gap log, twelve findings deep
Walk the fictional company against the SOC 2 Trust Services Criteria. Identify twelve real gaps an auditor would raise. For each, write the finding, the risk, the recommendation, and the suggested owner. The module shows you the difference between a control gap and a process gap, and why most readiness assessments confuse the two. Output: a twelve-finding readiness gap log structured the way a Big Four readiness team structures one.
Module 6. Three audit walkthroughs, written like a senior analyst
Pick three controls from your statement of applicability: access management, change management, and incident response. Walk each one. Write the walkthrough notes the way a senior associate at a consultancy would, naming the systems, the actors, the evidence reviewed, the exceptions noted. The module covers the structure of a defensible walkthrough write-up and the five sentences that get senior reviewers to sign off on a junior's work.
Module 7. African and global privacy regulation, the working overview
Cover Ghana Data Protection Act, Nigeria NDPR, Kenya DPA, South Africa POPIA, EU GDPR, UK GDPR, US sectoral. Not the textbook treatment. The working-analyst treatment: what each regulator considers a notifiable breach, what each requires for cross-border transfer, what each says about data subject rights timelines. The module ends with you writing a one-page privacy applicability statement for the fictional company that names the four regulators that apply and the operational implication of each.
Module 8. Publishing the portfolio (free, fast, professional)
Set up a free GitHub Pages or Notion site that hosts your four artefacts. The module walks the structure: landing page, your name and a one-paragraph positioning statement, four clickable artefact links, a contact button. No design experience required. Output: a live URL a hiring manager can open in one click from your LinkedIn or cover note.
Module 9. The LinkedIn rewrite that points to the portfolio
Rewrite your headline, About section, and Featured section to name the artefacts and the methodology. The module shows you the difference between a student-style LinkedIn (lists coursework, names KNUST modules) and a compliance-analyst LinkedIn (names artefacts, names regulators, names a portfolio URL). Output: a complete LinkedIn rewrite, ready to publish, with three Featured tiles linking to your portfolio.
Module 10. The cover note that gets opened
Most application cover notes are read for nine seconds. The module shows you the four-sentence structure that gets a hiring manager from sentence one to clicking your portfolio link. Different cover notes for IT audit roles, GRC analyst roles, privacy analyst roles. Output: three cover-note templates personalised to your background, ready to adapt per application.
Module 11. Interview preparation for the artefact you built
Hiring managers will probe the choices you made in the risk register and the statement of applicability. The module gives you the twenty most common interview probes and walks the defensible answer for each, anchored in the choices you made in modules three and four. By module-end you can defend your scoping methodology, your control mapping, and your residual-risk decisions without freezing.
Module 12. Application cadence and tracking to first offer
A spreadsheet that tracks applications, response rates, recruiter conversations, interview stages, and offers. The module sets the cadence: ten targeted applications per week to remote-friendly firms, fortnightly review of what's converting, quarterly refresh of the portfolio with one new artefact. The first offer typically arrives in three to six months from portfolio publication for a candidate who follows the cadence honestly. Output: the tracker, populated for week one, with your first ten target firms identified.

How this addresses your situation

Specific modules that map to what you said you are dealing with.

You are filling in a job application form and the box asks for sample work. Modules 3 to 6 produce the sample.
A recruiter messages you on LinkedIn and asks for your CV. Modules 8 and 9 mean your LinkedIn and portfolio do the selling before you reply.
You reach an interview and the panel asks how you would scope a SOC 2 readiness for a small SaaS. Modules 5 and 11 give you the defensible answer.
You get a verbal offer and need to negotiate. Module 12 has the cadence and the tracker that show you have multiple conversations live.

What you get with this course

  • Twelve text-based modules in the Art of Service learning environment with worked examples for every step.
  • Downloadable templates: risk register, statement of applicability, SOC 2 readiness gap log, audit walkthrough notes, cover note, LinkedIn rewrite worksheet, application tracker.
  • The hand-built implementation playbook tailored to your target role tier (entry-level remote IT audit, GRC analyst, or compliance analyst) and your KNUST background, delivered alongside course access.
  • Three pre-scoped fictional companies so you start producing on day one without spending a week inventing context.
  • Twenty interview probes with defensible answers anchored in the artefacts you built.

What you will have in hand by Day 1, Week 1, Month 1

Within 24 hours: account in the Art of Service learning environment provisioned, the hand-built implementation playbook delivered alongside it.

Week 1: modules 1-3 complete, fictional company picked, risk register populated.

Week 2: modules 4-6 complete, statement of applicability and SOC 2 gap log shipped, walkthroughs drafted.

Week 3: modules 7-9 complete, portfolio live, LinkedIn rewritten and published.

Week 4: modules 10-12 complete, first ten applications sent, tracker populated, interview prep underway.

Before and after

Before

Strong KNUST coursework, a generic LinkedIn that lists modules, no portfolio link in any application, and a steady drip of automated rejection emails from international employers who never engaged a recruiter.

After

A live portfolio URL hosting four professional artefacts, a rewritten LinkedIn that points to that URL, a cover note that opens with concrete work, and a tracked application cadence converting to recruiter conversations within weeks.

What happens if you do not address this

Six more months of applying with coursework alone. Recruiters in Ghana competing for the same local seats. Remote opportunities filled by candidates who did exactly the four-artefact build, often without a stronger background than yours. The hireability gap closes in four focused weeks or stays open indefinitely.

Who it is for

A KNUST student or recent graduate in Ghana (or any West African applicant in a comparable position) targeting remote compliance, IT audit, GRC analyst, or risk analyst roles with international employers. Comfortable with information systems theory. New to the artefacts the compliance industry actually produces. Willing to spend ten to fifteen hours over four weeks building a working portfolio against a fictional company.

Who this is NOT for. Not for senior compliance professionals with five-plus years in regulated industries. Not for candidates who already hold ISO 27001 Lead Implementer or CISA certification. Not for people who do not want to actually build the artefacts. The course is hands-on; the value is in what you produce, not in what you read.

How it arrives

Text-based course in the Art of Service learning environment, plus downloadable templates and worked examples for every module, plus the hand-built implementation playbook delivered alongside course access.

Time investment. Ten to fifteen hours over four weeks. The work is producing artefacts, not consuming lectures. Most of the time is spent in the templates against the fictional company you scoped in module two.

Why $199 is the right number

ISO 27001 Lead Implementer certification costs around 1,400 USD plus exam fee and produces a certificate, not a portfolio. CISA self-study takes six to twelve months and assumes prior audit experience. Free YouTube content covers theory but provides no artefacts to publish. Big Four graduate programmes hire from a narrow campus shortlist and rarely recruit from Ghana directly. This course is the bridge: it costs 199 USD, takes four weeks of focused work, and produces the exact artefacts the hiring scan is looking for.

FAQ

I'm still finishing my degree at KNUST. Should I wait until I graduate?
No. Final-year students benefit most because the portfolio gives them something to point to in graduate-programme applications and recruiter conversations during their final months. The modules fit around coursework.
Will employers in London or Toronto actually hire someone based in Accra remotely?
Increasingly yes, especially for entry-level GRC analyst, compliance operations, and SOC 2 readiness analyst roles. The portfolio is what gets you past the geography filter. Hiring managers who would have screened out a Ghana postcode often interview a candidate whose portfolio URL opens in their browser.
I don't have a CISSP or CISA. Does this course replace those?
No, and it does not need to. Entry-level compliance and IT audit roles do not require those certifications. They require demonstrated artefact-building ability. After your first compliance role, the employer typically funds the certification path.
What if my background isn't pure IT? I studied business administration with information systems.
The course works for either background. The fictional companies and the artefacts assume general business literacy and basic systems understanding, both of which a KNUST business or IT background covers.
Can I share the portfolio publicly even though the company is fictional?
Yes. The fictional companies are written specifically to allow public portfolio sharing. The portfolio landing page includes a one-line note that the artefacts were produced against a scoped fictional company for skills demonstration, which is industry-standard.

30-day money-back guarantee. If after a week of working through the materials this is not what you needed, reply to the receipt email and a full refund is processed. No questions, no forms.

Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.

!