Take Your Career To The Next Level — With CRISC

A guide to attaining CRISC certification and demonstratingyour expertise in identifying, evaluating and effectively managing enterprise IT risk.

GET THE FACTS! Register, prepare for and maintain your CRISC certification and lead the charge in enterprise risk management.

CONTENTS [Click for instant access]

Created for IT Risk Practitioners by IT Risk Practitioners

Your Guide to CRISC Certification

CRISC Facts

CRISC Planning Guide | 3

30,000+PROFESSIONALS

certified since 2010;92%+ RENEWED

from the previous year.1

CRISC Certification isACCREDITED BY THE

AMERICAN NATIONAL STANDARDS INSTITUTE

(ANSI) under ISO/IEC17024:2012.

CRISC is amongthe highest-paying

IT certifications, with anaverage salary 2 of

US$141,172 (NA); $113,995 (WORLDWIDE)

At least3 YEARS

of relevant professional work experience is required

in IT risk and information systems control, across at

least 2 CRISC domains.

There are150 QUESTIONSon the CRISC exam,

which must be completed in4 HOURS

The CRISC exam is now offered online with remote proctoring and in person at 1,300+ LOCATIONS

WORLDWIDE,and is available in3 LANGUAGES

1. In the most recent measurement period.2. Per Global Knowledge 2020 IT Skills and Salary Report.

CRISC Planning Guide | 4

Proactive, agile approach to IT Risk Management based on best practices.

Proven ability to enhance business resilience and stakeholder value.

Common perspective and language about IT risk throughout the enterprise.

Increasedmarketabilityand incomepotential.

Global recognition and increased credibility with stakeholders, clients and regulators.

Proven commitment to stay up to date with IT risk management best practices and emerging trends.

Benefits of Being CRISC Certified

CRISC ACCOLADES: CRISC ranks 4th among the top 15 highest-paying certifications globally for 2020 per the 2020 IT Skills and Salary Survey conducted by Global Knowledge. CIO.com lists CRISC among the 15 most valuable certifications in 2020. CRISC is a 2020 and 2021 SC Awards finalist in the Best Professional Certification Program category.

CRISC Planning Guide | 5

RESOURCES TO HELP YOU PREPARE FOR THE CRISC EXAM Move your career forward with the globally recognized CRISC certification.Be ready for CRISC exam success with the latest test prep solutions from ISACA.

CRISC Exam Study Materials—Available in print or ebook, offering the ability to create flash cards, highlight and make notes and study offline as needed.

Online Learning—ISACA offers an online database of questions, answers and explanations, a self-paced online review course and virtual instructor-led learning.

In-Person Review Courses—Offered by ISACA accredited training partners and chapters in numerous countries.

Exam Preparation Community—A place for CRISC exam registrants to collaborate and study with other registrants.

View the full exam content outline here.

Your Roadmap to Becoming CRISC Certified Starts HereEXAM CONTENT OUTLINE TESTED FOR AND VALIDATED BY CRISC CERTIFICATION

DOMAIN 1

DOMAIN 2

DOMAIN 3

DOMAIN 4

Information Technology and Security

Governance

IT Risk Assessment

Risk Response and Reporting

CDPSE Planning Guide | 6

SHARPEN YOUR INSIGHTS WITH CRISC EXAM REVIEW MATERIALS

To help optimize your preparation for the CRISC certification exam, ISACA offers several study solutions which can be accessed here. In English, these include:

CRISC Review Manual, 7th EditionThis manual offers an easy-to-navigate format. Each of the book’s chapters has been divided into two sections for focused study. Section one of each chapter contains: Definitions and objectives for the four areas; Task and knowledge statements; Self-assessment questions, answers, and explanations; Suggested resources for further study.Section two of each chapter consists of reference material and content that support the knowledge statements. The material enhances CRISC candidates’ knowledge and understanding when preparing for the CRISC certification exam.

CRISC Review Questions, Answers and Explanations, 6th EditionThis updated edition has been expanded and updated to include even more practice questions. This study aid is designed to familiarize candidates with the question types and topics featured in the CRISC exam with the use of 600 questions. Many questions have been revised or completely rewritten to be more representative of the current CRISC exam question format, and/or to provide further clarity or explanation of the correct answer. These questions are not actual exam items but are intended to provide CRISC candidates with an understanding of the type and structure of questions and content that have previously appeared on the exam.

CRISC Online Review CoursePrepare to obtain the Certified in Risk and Information Systems Control® (CRISC) certification and be recognized among the world’s most-qualified risk professionals. The CRISC Online Review Course provides online, on-demand instruction and is ideal for preparing you for the CRISC certification exam. The course covers all four of the CRISC domains, and each section corresponds directly to the CRISC job practice. It uses proven instructional design techniques, incorporating video, interactive eLearning modules, downloadable, interactive workbooks, downloadable job aids, case study activities and pre- and post-course assessments.

Virtual or in-Person CRISC Exam Review CoursesProvides individual and team training. These courses are offered by ISACA global, chapters and accredited training partners across the globe. Courses may include instructor-led breakdowns of the exam’s five domains, discussion activities and a mock exam.

CRISC Planning Guide | 7

Passing the Exam is the First Step The hard part is over. You passed the CRISC certification exam, now you just need to apply for certification with the required experience to complete the process. Maintain your hard-earned CRISC certification and be a part of the vibrant ISACA professional community by:

• Participating in continuing professional education (CPE) programs.

• Adhering to a professional code of ethics.

• Taking advantage of member savings on CPEs and certification renewals by joining ISACA.

Put your digital badge to use! • Display your abilities securely online

• Share your real-time, verifiable achievement with peers and prospective employers

• Reflect the effort and process to earn your CRISC

• Export for display on other platforms and social media

ISACA’s digital badges are managed by Credly, an enterprise-class badging platform, providing security and protection to your credentials.

CRISC Planning Guide | 8

Maintain Your CRISC CertificationContinuing professional education (CPE) is crucial in order to remain current in your skills and expertise and to get ahead in your career. The principal aspect of maintaining your CRISC involves compliance with the CRISC CPE Policy by earning a minimum of 20 CPEs annually and a total of 120 CPEs over a 3-year period. Note: payment of annual maintenance fee ($45 for members, $85 for non-members) is required to maintain your certification status.

Useful ideas for earning CPEsISACA offers opportunities to earn CPE through a variety of programs and events, including:

Webinars and Virtual Conferences

Earn up to 40 free CPEs per yearGet details

Training CoursesEarn up to 32 CPEs per course

See the Training Week schedule

Serving as an ISACAVolunteer

Earn up to 20 free CPEs per yearMore information

ConferencesEarn up to 21 CPEs per event

Learn more

Journal QuizzesEarn one CPE for each of

six journals per yearQuizzes can be found here

Lab PackagesEarn performance-based CPEs

Find Labs

Online TrainingEarn up to 14 CPEs per course

Find course descriptions

Cybersecurity Nexus™ (CSX) Training Platform

Find courses, labs and credentialsFind Labs

Additional activities that can earn you CPEs include:

• Teaching/lecturing/presenting • Publication of articles, monographs and books • Vendor sales/marketing presentations • Exam question development and review • Passing related professional examinations • Working on ISACA Boards/ Committees • Contributions to IS audit and control profession • And more

CRISC Planning Guide | 9

CRISC Certification at a Glance

Not a member of ISACA?

Just A.S.K. how you can save on CRISC exam registration, study materials and maintenance—including free CPE hours!

An ISACA membership may even pay for itself, find out more!

Take the first step towards obtaining your CRISC certification!

Register today at www.isaca.org/CRISC

12

78

65

34

Explore ISACA exam prep solutions

Register and pay for CRISC certification exam

Schedule your remotely* proctored exam date

Take and pass the exam, then apply for your certification

Claim and display your digital badge

Members take advantage of free CPE

Track and report CPEs

Renew your certification

*Exams can be taken in person where testing locations are open.

CRISC Planning Guide | 10

Show the World What You Have AccomplishedGet recognized with the CRISC certification.

About ISACA

The ISACA community is guided by our Purpose and Promise, which defines the essence of who we are and what we do. Our Purpose is the reason we exist—to help business technology professionals and their enterprises around the world realize the positive potential of technology. Our Promise is how we, as an organization and as individuals, deliver on our Purpose: inspiring confidence that enables innovation through technology. Our work, and the work of the professional community we support, has never been more important.

ISACA has served our professional community for more than 50 years. The association was incorporated as the EDP Auditors Association in 1969 by a small group of individuals who recognized a need for a centralized source of information and guidance in the new field of electronic data processing audit. Today, ISACA serves 145,000 professionals in 180 countries, who span several roles in assurance, governance, risk and information security.

I S ACA G LO BA L1700 E. Golf Road | Suite 400Schaumburg, IL 60173 | USA

www.isaca.org

© 2021 ISACA. All Rights Reserved.