ISACA Introduces New IT Risk Fundamentals Certificate

Schaumburg, Ill. (Oct. 28, 2020) — Risk is inherent to the enterprise landscape, but a skilled practitioner can help identify, prepare for and mitigate risk, including risk related to information and technology (I&T). ISACA's new remote-proctored IT Risk Fundamentals Certificate helps professionals gain the requisite knowledge to be able to better communicate with enterprise risk or IT risk professionals, or to begin their own risk career journey.


Covering six risk topic areas—introduction to risk, risk governance and management, risk identification, risk assessment and analysis, risk response, and risk monitoring, reporting and communications—the IT Risk Fundamentals Certificate provides professionals with a strong foundation in both business risk and I&T risk to advance in their role or to lay the groundwork for future achievement of the Certified in Risk and Information Systems Control (CRISC) certification.


The closed-book, remotely-proctored IT Risk Fundamentals Certificate exam can be taken from anywhere, and consists of 75 multiple-choice questions related to topics including:

  • Risk terminology and types of risk
  • Risk-related business functions
  • Risk management process
  • Governance and management of risk
  • Identifying risk
  • Assessing and analyzing risk
  • Responding to risk
  • Monitoring, reporting, and communicating risk


"Risk has wide-ranging impacts across the enterprise, and even those not tasked with managing risk are finding they need an understanding of risk principles that informs important business decisions," says Nader Qaimari, ISACA Chief Product Officer. "Building foundational knowledge in risk through credentialing can be an effective way to not only add value in an existing role, but also to take that first step in starting a risk career."


Training options for the exam include the IT Risk Fundamentals Study Guide, virtual instructor-led trainings, and enterprise training options.


The certificate exam costs US$175 for ISACA members and $225 for non-members, and the IT Risk Fundamentals Study Guide costs $75 for both members and non-members. ISACA is now offering a bundle price for the study guide and exam that starts at $225 for members and $275 for non-members when using promo code ITRISK25, which expires 30 November 2020. To learn more or to register for the exam, visit The study guide can be purchased at


For additional content and resources related to risk, including blog posts, articles, podcasts, webinars, white papers, and assessments, visit



For more than 50 years, ISACA ( has advanced the best in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations. Through the CSX, COBIT and CMMI solutions, ISACA enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its 145,000 members who work in information and cybersecurity, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 223 chapters worldwide.