ISACA Extends CRISC Grandfathering For Risk And Control Professionals

ISACA, a nonprofit association of more than 95,000 IT professionals worldwide, has extended the grandfathering program for its new Certified in Risk and Information Systems Control (CRISC) designation until 30 June 2011. The grandfathering program permits those with appropriate experience to become certified without taking an exam. Since the grandfathering program opened in April 2010, more than 9,000 IT and business professionals have applied for the certification. Nearly 200 CRISCs live and work in India.

“Managing risk is growing rapidly as a business issue. CRISC is already valued by employers because it helps them identify candidates who demonstrate an ability to effectively manage IT-related business risk,” said Urs Fischer, CISA, CRISC, chair of ISACA’s CRISC Certification Committee. “Earning CRISC or another globally recognised certification is also a great way to differentiate yourself in the market.”

The CRISC (pronounced “see-risk”) credential helps professionals gain recognition of their ability to design, implement, monitor and maintain effective risk-based information systems controls. The domain areas of practice covered by the certification include Risk identification, assessment and evaluation, Risk response, Risk monitoring, IS control design and implementation and IS control monitoring and maintenance.

“With growing compliance requirements, organisations are looking for qualified professionals in IT risk management. Employing highly qualified and experienced IT risk professionals is critical for every organisation. The CRISC certification provides assurance to employers that the candidate has the right skills and capabilities for the job,” said Sunil Bakshi, CISA, CISM, CGEIT, CRISC, member of ISACA’s CRISC Certification Committee and a Consultant, Information Security, National Stock Exchange.