Back

Certified in Risk and Information Systems Control

CRISC is the only credential focused on enterprise IT risk management. The updated CRISC exam content outline is based on the latest work practices and knowledge to keep certification holders ahead of the game in tackling real-world threats in today’s business landscape.

CRISC validates your experience in building a well-defined, agile risk-management program, based on best practices to identify, analyze, evaluate, assess, prioritize and respond to risks. This enhances benefits realization and delivers optimal value to stakeholders.

The Crisc Difference

Whether you are seeking a new career opportunity or striving to grow within your current organization, a CRISC certification proves your expertise in these work-related domains:

  • Governance
  • IT Risk Assessment
  • Risk Response and Reporting
  • Information Technology and Security

Is CRISC Right for You?

ISACA’s Certified in Risk and Information Systems Control (CRISC) certification is ideal for mid-career IT/IS audit, risk and security professionals. Register now for the updated CRISC exam―prove your skills and knowledge in using governance best practices and continuous risk monitoring and reporting. Enhance business resilience and stakeholder value and gain increased credibility with peers, stakeholders and regulators.

Build a World Class Team

ISACA’s Certified in Risk and Information Systems Control (CRISC) reflects the latest work practices and knowledge used by CRISC practitioners, changes in the business landscape and the heightened focus on corporate governance and enhanced business resilience. Employers can rest assured that armed with CRISC, their IT team is following governance best practices and taking a proactive, agile approach to ITRM that mitigates risks and threats and optimizes resources and ROI.