ISACA Announces New CRISC Certification



User avatar

Sr. Member
Sr. Member

Posts: 318

Joined: Sun Feb 08, 2009 3:38 pm

Location: 407

Post Tue Feb 09, 2010 11:25 am

ISACA Announces New CRISC Certification

ISACA will be offering a new risk-related certification in April 2010. The Certified in Risk and Information Systems Control™ (CRISC™) designation is designed for IT professionals who identify and manage risks through the development, implementation and maintenance of appropriate information systems (IS) controls to help enterprises accomplish business objectives, such as effective and efficient operations, reliable financial reporting, and compliance with relevant regulatory and legislative requirements.

The CRISC (pronounced see-risk) certification focuses on:

*  Risk identification, assessment and evaluation
*  Risk response
*  Risk monitoring
*  IS control design and implementation
*  IS control monitoring and maintenance

The new credential complements ISACA’s existing certifications:

*  While CISA <http://www.isaca.org/cisa>  is designed for IT professionals who perform independent reviews of control design and operational effectiveness, CRISC is for IT and business professionals who design, implement and maintain IS controls.
*  While CISM <http://www.isaca.org/cism>  is for individuals who manage, design, oversee and/or assess an enterprise’s information security, including the identification and management of information security risks, CRISC is for IT professionals whose roles also encompass operational and compliance considerations.
*  While CGEIT <http://www.isaca.org/cgeit>  is for IT and business professionals who have a significant management, advisory or assurance role relating to the governance of IT, including risk management, CRISC is for the IT and business professionals who are engaged at an operational level to mitigate risk.

A grandfathering program, through which experienced professionals can obtain the certification without taking the exam, will open in April. The first CRISC exam will be held in 2011.

Click here <http://www.isaca.org/crisc>  to learn more about this latest certification from ISACA.

è A minimum of 3 years of work experience performing the tasks described in the CRISC job practice is required for certification. There will be no substitutions or experience waivers.

è More details on the job practice areas for the above 5 domains is forthcoming in April.


User avatar

Sr. Member
Sr. Member

Posts: 393

Joined: Sun Jun 25, 2006 10:08 am

Location: Cochin - India

Post Tue Jun 01, 2010 9:01 am

Re: ISACA Announces New CRISC Certification

Anybody planning to apply for the grandfathering program? I am planning to apply - would request inputs from others who have already applied or planning to apply?
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n


User avatar


Posts: 46

Joined: Thu Apr 16, 2009 10:41 pm

Post Tue Jun 01, 2010 10:59 am

Re: ISACA Announces New CRISC Certification

not too sure, it cost like USD499 for the grand-fathering program, if you not successful in applying - USD100 for the admin charges. you get back USD399. so unless you're into doing most of the domains that are required, then do consider, otherwise, if it's not related, I'm not sure if it's worth that $$$ unless your company don't mind paying it for you.

Also membership is USD130 per year, maintenance fee is USD40, so total you have to cough up USD170 per year if you're certified.  ::)

anyway, no harm trying.
Last edited by kennut on Tue Jun 01, 2010 11:01 am, edited 1 time in total.
Done all 3 certs, now going for CISSP.....

Return to Compliance, Regulations &amp; Standards

Who is online

Users browsing this forum: No registered users and 0 guests

Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software