What is CRISC Certification?
Exam Overview
CRISC certification stands for Certified in Risk and Information Systems Control. It is cybersecurity certificate maintained and offered by ISACA, same organization that offers CISM and CISA certificates. CRISC certification is one of the best risk management certificates in information security. It tests knowledge and skills of cybersecurity professionals who work in IT risk management and information systems control. Moreover, it requires three years of work experience to acquire the credential.
Exam specifically focuses on business and IT risk management in a given enterprise infrastructure and platforms. The exam further concentrates on testing professionals’ readiness to design, implement and integrate IT security controls to mitigate organizational risks.
CRISC Certification Requirements
The certification further validates aspirants’ ability on IT risk management processes and frameworks. Moreover, the core components of risk management processes include Risk Identification, Risk Assessment, Risk Response, and Risk monitoring and reporting cycles. The whole purpose of risk management is reducing risk to acceptable level in organizations. However, unless organizations periodically assess risk and reduce it to an acceptable level, it may cause detrimental effect to the very existence of an organization. The CRISC further empowers professionals to handle organizational risks in a more comprehensive and holistic manner.
CRISC exam comprises three job practices and costs you $760 to register and take the exam as of the writing of this piece. The credential is valid for five years and certified professionals should pay maintenance fee of $85 each year.
CRISC has the following four domains:
- Governance (26%)
- IT Risk Assessment (20%)
- Risk Response and Reporting (32%)
- Information Technology and Security (22%)
For complete information on the exam, candidates can visit the official Exam Candidates Guide.
It contains 150 multiple choice questions and the candidate has 240 minutes to complete it. And, it is administered at PSI Authorized test centers and remote online proctoring means. Certified professionals must collect at least 20 CPEs (Continuing Professional Education) annually and a total of 120 CPEs over a three years period. Furthermore, credential holders must adhere to a professional code of Ethics throughout the years.