The vendor-neutral CAP credential confirms the advanced technical skills and knowledge to understand and apply Governance, Risk and Compliance (GRC) and can authorize and maintain information systems utilizing various risk management frameworks, and best practices, policies and procedures. CAP validates that an authorization professional has the competence to ensure that information systems have security equivalent with the level of exposure to potential risk and damage to assets or individuals.