Certified in Governance, Risk and Compliance (CGRC)

Issued by ISC2

The vendor-neutral CGRC credential confirms the advanced technical skills and knowledge to understand and apply Governance, Risk and Compliance (GRC) and can authorize and maintain information systems utilizing various risk management frameworks, and best practices, policies and procedures. CGRC validates that an authorization professional has competence to ensure that information systems have security equivalent with the level of exposure to potential risk and damage to assets or individual.

Skills

Categorization Of Information Systems
Information System Authorization
Monitor Security Controls
Risk Management Framework (RMF)
Security Control Assessment
Security Control Implementation
Selection Of Security Controls

Earning Criteria

Obtain the required experience
Achieve a passing score on the CGRC exam
Obtain an endorsement from an existing ISC2 member
Subscribe to the Code of Ethics
Complete continuing professional education requirements

Endorsements

American Council on Education

This credential has been successfully evaluated by the American Council on Education for college credit. It is recommended for a total of 3 college credits. For more information about ACE Learning Evaluations, visit www.acenet.edu.
American Council on Education

3 semester hours in computer security in the upper-division undergraduate category

Certified in Governance, Risk and Compliance (CGRC)

Skills

Earning Criteria

Endorsements

American Council on Education

American Council on Education