there is no

disGuisinG it...
Free with registration:
l The Candidates Guide to the CRISC Exam and Certificationprovides a detailed
outline of the subject areas covered on the examination.
Study materials from ISACA:
l CRISC Review Manual 2011
l CRISC Review Questions, Answers & Explanations Manual 2011
l The CRISC exam primarily aligns with the terminology and
concepts described in The Risk IT Framework, The Risk IT
Practitioner Guide, and COBIT 4.1 Self Assessment.
l Local Chapter Review Course (check your local ISACA chapter for availability)
l Onsite Group Training Courses (for groups of 10 or morewe come to you)
l Exam preparation communities opening soon at: www.isaca.org
Well also help you satisfy your Continuing
Professional Education (CPE) requirements.
l Earn up to 70 free CPE per year with ISACA professional membership.
l Earn additional CPE credit from ISACA events, meetings and volunteering.
CRISC:
Sponsored by ISACA
l A non-profit, worldwide leader in IT governance,
control, security and assurance for more than 40 years.
l Dedicated to industry-accepted practices and high professional
standards, ISACA is the only professional association dedicated to
this growing and dynamic segment of the IT community.
l With over 190 chapters established in over 75 countries, ISACA
provides its international membership with education, resource sharing,
advocacy, networking and a host of other benefits on a local level.
Consider an ISACA membership and enjoy a substantial savings
on the exam and study materials, as well as a wide range of
membership benefits. Go online to save today!
www.isaca.org/membership
Well give you a hand.
ISACAs

Certified in Risk and Information

(CRISC

) is the Most
Globally RecoGnized desiGnation
for experienced risk and control professionals
l
Introduced in 2010, over 15,000 professionals have already
earned the CRISC, pronounced see-risk, designation.
l
Based on independent market research and input from thousands
of subject matter experts from around the world as well as
ISACAs intellectual property, including RISK IT and COBIT 4.1.
l
Fast becoming recommended by companies and governmental
agencies for top-level systems/security employees.
CRISC Profile
The CRISC certification was specifically developed to
recognize a wide range of IT and business professionals
who are engaged at an operational level to mitigate risk
that include:
IT Professionals
Risk Professionals
Control Professionals
Business Analysts
Project Managers
Compliance Professionals
IS/IT Consultants
www.isaca.org/criscinfo
CRISC proves youve got what it takes!
Certification requirements combine the achievement of passing a difficult exam,
with credit for applied industry work experience and continuing education efforts.
About the CRISC exam
l The exam consists of 200 multiple choice questions and is offered in the
English language at hundreds of locations worldwide.
l The content of the exam covers five content areas or domains, which are
based on an extensive job practice analysis conducted by industry leaders
and subject matter experts from around the world, and reflect the most
current practices.
l The five domains contain tasks and knowledge statements which depict
the tasks performed in the field and the knowledge required to perform
these tasks.
l Exam candidates will be tested based on their practical knowledge
associated with performing these tasks.
CRISC exam consists of five domains based on
Professional Job Requirements
Requirements for earning the CRISC Certification*
l At least three years of cumulative work experience in the fields of risk
management and IS control along with performing the tasks of a CRISC
professional across at least three domains.
l Experience must be gained within the 10-year period preceding the
application date or within five years from the date of passing the exam.
l Please refer to a CRISC application and www.isaca.org/criscinfo for
more details.
*Yearly CPE quotas and maintenance fees apply to maintain certification.
...for the employer, CRISC ensures:
l The employee has the knowledge and experience necessary
to adequately control, monitor and assess an enterprises
IT and business systems.
l The employee maintains ongoing professional development
necessary for successful on-the-job performance.
l The enterprises IT and business systems operate with greater
efficiencies and optimum effectiveness resulting in great trust in,
and value from, information systems.
...for the professional, CRISC provides:
l A global and prestigious, lifelong symbol of knowledge and expertise.
l Competitive advantage that will distinguish you from your peers.
l Higher earnings and greater career growth.
l The benefits of becoming part of an elite peer network.
l The ability to leverage the tools and resources of a global community
of industry experts.
There is no MISTAKING it...
"Enterprises around the world are continuing to become more
risk-aware, and the CRISC designation will provide assurance to
employers that professionals who earn and maintain a CRISC
certification are experienced in identifying and evaluating the risks
unique to their specific organization. It also helps risk and control
professionals demonstrate that they have proven experience and
abilities in designing, implementing and maintaining risk-based,
efficient and effective information systems controls."
Urs Fischer, chair of ISACA's CRISC Task Force
There is no DISPUTING it...
Pass exam
Meet work
experience
requirements
Complete
application
Get
certified!
There is no
STOPPING it...
l In a SearchSecurity.com article, (David) Foote
(co-founder, CEO and chief research officer of Foote
Partners) recommends the new CRISC certification.
Given where we see the market going [integrating more
with business] that one probably will be very influential. We dont know
of any other certification on the market quite like it.
l The State of West Virginia Office of Information Security and Controls is
using the five CRISC domains and task statements to develop a checklist
for use in risk assessments for HIPAA compliance.
For more recognitions, visit www.isaca.org/recognitions.
There is only ACHIEVING IT!
Register for the CRISC exam now at:
www.isaca.org/criscexam.
For more information contact the ISACA
certification department at: 1.847.253.1545
or email: [email protected].
www.isaca.org/criscinfo
IS Control Monitoring and
Maintenance 18%
Information Systems
Control Design and
Implementation 17%
Risk Monitoring 17%
Risk Response 17%
Risk Identification, Assessment
and Evaluation 31%