Due to overwhelming demand, ISACA, a nonprofit association of more than 95,000 IT professionals worldwide, has extended the grandfathering program for its new Certified in Risk and Information Systems Control (CRISC) designation until 30 June 2011. The grandfathering program permits those with appropriate experience to become certified without taking an exam. Since the grandfathering program opened in April 2010, more than 9,000 IT and business professionals have applied for the certification.
“Managing risk is growing rapidly as a business issue. CRISC is already valued by employers because it helps them identify candidates who demonstrate an ability to effectively manage IT-related business risk,” said Urs Fischer, CISA, CRISC, chair of ISACA’s CRISC Certification Committee. “Earning CRISC or another globally recognized certification is also a great way to differentiate yourself in the market.”
The CRISC (pronounced “see-risk”) credential helps professionals gain recognition of their ability to design, implement, monitor and maintain effective risk-based information systems controls. The domain areas of practice covered by the certification include:
- Risk identification, assessment and evaluation
- Risk response
- Risk monitoring
- IS control design and implementation
- IS control monitoring and maintenance
The CRISC grandfathering program enables highly experienced professionals to apply for the CRISC credential without taking the CRISC exam by exhibiting eight years of related experience.
The first CRISC exam will be held on 11 June 2011.
ISACA also administers the following three certifications, which are globally recognized by many industries, government entities and professionals:
- Certified Information Systems Auditor (CISA), earned by more than 84,000 professionals since 1978
- Certified Information Security Manager (CISM), earned by more than 16,000 professionals since 2002
- Certified in the Governance of Enterprise IT (CGEIT), earned by more than 4,600 professionals since 2007.