Certification in Risk and Information Systems Control (CRISC)
Certification in Risk and Information Systems Control (CRISC)
Certification in Risk and Information Systems Control (CRISC) is a certification program offered by the Information Systems Audit and Control Association (ISACA). This certification is designed to validate the expertise of IT professionals in managing IT-related business risks and implementing and maintaining information systems controls.
To be eligible for the CRISC certification, candidates must have at least three years of experience in the fields of IT risk management and information systems control. Additionally, candidates must pass a rigorous examination that covers four domains of knowledge:
- IT risk identification, assessment, and evaluation
- IT risk response
- Risk monitoring and reporting
- IS control design and implementation
Once certified, CRISC holders must complete ongoing continuing education requirements to maintain their certification.
The CRISC certification is globally recognized and respected, and holders of this certification are in high demand by organizations looking for experienced IT professionals to lead their risk management and information systems control efforts. CRISC holders typically hold positions such as IT risk manager, IT security analyst, and IT director.
- 4% Top Paying Certification Worldwide
- 52% Experienced On-the-job Improvement