CRISC - Certified in Risk and Information Systems Control®

Introduced in 2010, the CRISC certification is a globally recognized standard of achievement for IT risk professionals— including risk and compliance professionals, business analysts and project managers— More than 20,000 professionals have earned the CRISC designation since inception. CRISC retention is more than 96 percent. Clearly, holders of a CRISC certification highly value the designation.

The CRISC certification is sought by those professionals who identify and manage risks through the development, implementation and maintenance of appropriate information systems (IS) controls. CRISCs are recognized internationally as professionals with knowledge and experience in the job practices of risk identification, risk assessment, risk response and mitigation, and risk and control monitoring and reporting.

Globally accepted management-focused certification for professionals with three or more years of experience. This credential demonstrates expertise in identifying and managing enterprise IT risk and implementing and maintaining information systems controls. There are 150 Questions on the exam which must be completed in 4 hours. It is available online via remote proctoring and at in-person testing centers where available

IT risk management professionals with at least 3 years of relevant professional work experience in IT risk and information systems control including:

• Security Directors/Managers/Consultants

• Compliance/Risk/Privacy Directors and Managers

• IT Audit Directors/Managers/Consultants

• Compliance/Risk/Control Staff