The IT Certification Resource Center

Featured Deal

Get CompTIA, Cisco, or Microsoft training courses free for a week.
Learn More ❯

CRISC Certification on the Rise as IT Professionals React to Radically Changing Landscape

Early-Bird Exam Deadline is 10 February 2012

ROLLING MEADOWS, Ill.--()--More than 16,000 professionals have earned the CRISC (Certified in Risk and Information Systems Control) designation since it was introduced less than two years ago, and the number continues to rise. This reflects a need among IT professionals to attain independent affirmation of their skill sets due to the radically changing IT and business landscape, says global nonprofit IT association ISACA.

“CRISC is highly desired because it is the only certification that positions IT professionals for career growth by linking IT risk management to enterprise risk management,” said Allan Boardman, CRISC, CISA, CISM, CGEIT, CA (SA), ACA, CISSP, chair of ISACA’s Credentialing Board and a risk officer at a global financial services firm.

Professionals across a wide range of job functions including IT, security, audit and compliance who have earned the CRISC designation since April 2010 include 1,200 CIOs, CISOs, and chief compliance, risk and privacy officers.

“CRISC is the result of significant market demand for a credential that recognizes experienced risk and control professionals, a demand that will accelerate as stakeholders demand better corporate governance and business performance and more secure infrastructures in 2012,” said Boardman. “The fact that even C-level professionals are pursuing CRISC certification shows that risk management is a strategic concern.”

Help Wanted: Taming IT Risk

ISACA has identified three 2012 trends that are especially critical to managing information risk: big data, consumerization of IT (bring your own device—BYOD) and the growing dominance of mobile devices. These trends require IT professionals to be partners with the business on managing risk that affects all areas of the enterprise.

Similar to the growth of joint MIS and MBA degrees, ISACA predicts that the information systems profession will see a growing evolution away from a technology-only focus to a culture of professionals who can partner with the business in using technology as an enabler.

“I strongly encourage anyone with sufficient real-world IT risk and controls experience to consider the CRISC certification. CRISC makes risk professionals more valuable to organizations that recognize IT risk as a critical component of overall risk management. Becoming certified provides an additional level of assurance that you have the necessary skills and experience, and provides a sense of belonging to a select group of professionals with common interests,” said Shawna Flanders, CRISC, CISA, CISM, ACS, CSSGB, SSBB, productivity specialist at PSCU Financial Services.

About ISACA Certifications

ISACA certifications are globally recognized as third-party validation that the certification holder has demonstrated mastery of the subject and relevant professional experience. Independent studies show that holding an ISACA certification enhances professional credibility and recognition, increases the ability to earn top salary premiums and plays a role in the hiring process. In addition to CRISC, ISACA offers the Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), and Certified in the Governance of Enterprise IT (CGEIT) certifications.

CRISC examinations—a criterion for achieving the certification—are offered 9 June and 8 December 2012 at 240 locations worldwide. Registration is open through 4 April 2012, but professionals can save $50 if they register by 10 February.

Visit for details on ISACA certifications.


With 95,000 constituents in 160 countries, ISACA is a global provider of knowledge, certifications, community, advocacy, and education on information systems assurance and security, enterprise governance and management of IT, and IT-related risk and compliance.