The vendor-neutral CGRC credential confirms the advanced technical skills and knowledge to understand and apply Governance, Risk and Compliance (GRC) and can authorize and maintain information systems utilizing various risk management frameworks, and best practices, policies and procedures. CGRC validates that an authorization professional has competence to ensure that information systems have security equivalent with the level of exposure to potential risk and damage to assets or individual.