SlideShare uma empresa Scribd logo

CRISC sertifikacija

Transferir como PPTX, PDF
BKA (Baltijos kompiuteriu akademija)
BKA (Baltijos kompiuteriu akademija)

BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie CISM (Certified Information Security Manager) sertifikaciją. Renginys vyko balandžio 18 d., 2013.

NegóciosEconomia e finanças
1 de 20
CRISC sertifikacijos pristatymas Pasiruoškite įveikti organizacijos rizikos valdymo iššūkius ISACA® Pasitikėjimas informacinėmis sistemomis ir jų nauda www.isaca.org/crisc Viktoras Bulavas, CISA, CGEIT, CRISC Kadenciją baigęs asociacijos ISACA Lietuva pirmininkas
CRISC Target Market Designed exclusively for risk and information controls personnel who:  Identify, assess and analyze risk  Design, implement and maintain controls to mitigate risk  Respond to risk events
Why Become a CRISC? Enhanced Knowledge and Skills  To demonstrate your willingness to improve your technical knowledge and skills Career Advancement  To demonstrate to management your commitment toward organizational excellence  To obtain credentials that employers seek  To enhance your professional image Worldwide Recognition  To be included with other professionals who have gained worldwide recognition
CRISC in the Workplace  Nearly 600 are employed in organizations as the CEO, CFO or equivalent executive position.  More than 400 serve as chief audit executives, audit partners or audit heads.  Over 1,200 serve as CIOs, CISOs, or chief compliance, risk or privacy officers.  More than 3,500 are employed as security directors, managers or consultants and related staff.  More than 2,200 are employed as IT directors, managers, consultants and related staff.  Nearly 4,400 serve as audit directors, managers or consultants and related staff.  Over 2,900 are employed in managerial, consulting or related positions in IT operations or compliance.
CRISCs by Job Title
Domain 1—Risk Identification, Assessment and Evaluation (31%) Identify, assess and evaluate risk to enable the execution of the enterprise risk management strategy. Domain 2—Risk Response (17%) Develop and implement risk responses to ensure that risk issues, opportunities and events are addressed in a cost-effective manner and in line with business objectives. CRISC Job Practice Areas (Effective 2010)
Domain 3—Risk Monitoring (17%) Monitor risk and communicate information to the relevant stakeholders to ensure the continued effectiveness of the enterprise‘s risk management strategy. Domain 4—IS Control Desing and Implementation (17%) Design and implement IS controls in alignment with the organisation‘s risk appetite and tolerance levels to support business objectives. Domain 5—IS Control Monitoring and Maintenance (18%) Monitor and maintain IS controls to ensure they function effectively and efficiently. CRISC Job Practice Areas (Effective 2010) (continued)
CRISC Certification Requirements • Earn a passing score on the CRISC exam • Submit verified evidence of a minimum of 3 years of risk and information systems controls experience (covering 3 of the 5 job practice domains) • Submit completed CRISC application within 5 years of passing exam and receive approval • Adhere to the ISACA Code of Professional Ethics • Comply with the CRISC Continuing Professional Education Policy
• Risk control is an emerging discipline with scarce study materials • Develops better understanding what Risk and Information System control is and what is not • Training is good start to exam preparation How course can help?
2012 Registration Fees: 14 December 2013 Early Registration – On or before 21 August 2013: • ISACA Member: US $485.00 • Non-Member: US $660.00 Final Registration – After 21 August, but on or before 25 October 2013: • ISACA Member: US $535.00 • Non-Member: US $710.00 Register Online at www.isaca.org/examreg and save $$ • Online registration via the ISACA web site is encouraged, as candidates will save US $75. Non-members can join ISACA at the same time, which maximizes their savings. Exam registration fees must be paid in full to sit for the exam. Those whose exam registration fees are not paid will not be sent an exam admission ticket and their registration will be cancelled.
Bulletin of Information (BOI) and Registration Form • There is a Bulletin of Information for each exam administration for each exam. • Can be downloaded from the ISACA web site at: www.isaca.org/criscboi Bulletin includes: – Requirements for certification – Exam description – Registration instructions – Test date procedures – Score reporting – Test center locations – Registration forms
Types of Questions on the CRISC Exam  Exam consists of 200 multiple choice questions administered over a four-hour period  Questions are designed to test practical knowledge and experience  Questions require the candidate to choose one best answer  Every question or statement has four options (answer choices)
Study Materials ISACA Members Non-Members Candidate’s Guide to the CRISC Exam……..…free to each paid registrant (also available online at www.isaca.org/criscguide) CRISC Review Manual 2013….…………….. (US) $85.00 (US) $115.00 CRISC Review Questions, Answers & ……... (US) $40.00 (US) $60.00 Explanations Manual 2013 CRISC Review Questions, Answers & ……... (US) $40.00 (US) $60.00 Explanations Manual 2013 Supplement CRISC Online Review Course (US) $185.00 (US) $225.00 For detailed descriptions visit www.isaca.org/criscbooks
A proper study plan consists of several steps: Self-appraisal Determination of the type of study program Having an adequate amount of time to prepare Maintaining momentum Readiness review Become involved in your local chapter and explore networking opportunities and study groups. How to Develop a CRISC Study Plan
How to Study for the CRISC Exam  Read the Candidate’s Guide thoroughly  Study the CRISC Review Manual  Work through the CRISC Review Questions, Answers & Explanations Manual, Supplements and/or online review course  Participate in an ISACA Chapter Review Course  Read literature in areas where you need to strengthen skills  Spend time studying the complement of your field: If controls focused, study from risk focus and vice-versa  Join or organize study groups
• Is available at www.isaca.org/criscapp • Effective with applications received 1 June 2012 and forward, an application fee of US $50 will be required to apply for certification. Contains: – Requirements for certification – Code of Professional Ethics – Instructions for completion of form. – Verification of work experience for applicant form – CRISC application form • Until an application is received and approved, candidates are not CRISC certified and cannot use the designation. Application for Certification
CRISC Continuing Professional Education (CPE) Policy Details www.isaca.org/cisacpepolicy
Once certified, the certification must be renewed annually. Maintaining the certification requires: • Earning and reporting an annual minimum of 20 hours of continuing professional education • Earning and reporting a minimum of 120 hours of continuing education for each fixed three-year period (each 3-year cycle) • Pay the annual certification maintenance fee • Respond and submit required documentation of continuing education activities if selected for an annual audit • Comply with the ISACA Code of Professional Ethics (www.isaca.org/ethics) ISACA membership provides many CPE opportunities which can assist you with meeting this requirement. For more details visit www.isaca.org/cpe. Continuing Professional Education (CPE) Requirements
Norite sužinoti daugiau? Susisiekite su mumis:  El.paštu: asociacija@isaca.lt  Internete: www.isaca.lt Ačiū už dėmesį! Daugiau informacijos apie organizuojamus ISACA sertifikacijų mokymus rasite www.bka.lt Susisiekite telefonu 8 5 2780502 arba el.paštu mokymai@bka.lt

Recomendados

CRISC Exam Questions
CRISC Exam QuestionsCRISC Exam Questions
CRISC Exam QuestionsCertifications
 
Crisc prep-guide
Crisc prep-guideCrisc prep-guide
Crisc prep-guidestatisense
 
The Importance of Risk Management
The Importance of Risk ManagementThe Importance of Risk Management
The Importance of Risk ManagementVigilant Software
 
Relating Risk to Vulnerability
Relating Risk to Vulnerability Relating Risk to Vulnerability
Relating Risk to Vulnerability Resolver Inc.
 
Improve Your Risk Assessment Process in 4 Steps
Improve Your Risk Assessment Process in 4 StepsImprove Your Risk Assessment Process in 4 Steps
Improve Your Risk Assessment Process in 4 StepsResolver Inc.
 
NAPLIA Risk Management Presentation 2014
NAPLIA Risk Management Presentation 2014 NAPLIA Risk Management Presentation 2014
NAPLIA Risk Management Presentation 2014 Alexandra (Alex) Swan
 
Achieving integrated mandatory compliance with ISO 31000
Achieving integrated mandatory compliance with ISO 31000Achieving integrated mandatory compliance with ISO 31000
Achieving integrated mandatory compliance with ISO 31000PECB
 
Building Practical Risk Application into your QMS
Building Practical Risk Application into your QMSBuilding Practical Risk Application into your QMS
Building Practical Risk Application into your QMSPECB
 

Recomendados

CRISC Exam Questions
CRISC Exam QuestionsCRISC Exam Questions
CRISC Exam QuestionsCertifications
 
Crisc prep-guide
Crisc prep-guideCrisc prep-guide
Crisc prep-guidestatisense
 
The Importance of Risk Management
The Importance of Risk ManagementThe Importance of Risk Management
The Importance of Risk ManagementVigilant Software
 
Relating Risk to Vulnerability
Relating Risk to Vulnerability Relating Risk to Vulnerability
Relating Risk to Vulnerability Resolver Inc.
 
Improve Your Risk Assessment Process in 4 Steps
Improve Your Risk Assessment Process in 4 StepsImprove Your Risk Assessment Process in 4 Steps
Improve Your Risk Assessment Process in 4 StepsResolver Inc.
 
NAPLIA Risk Management Presentation 2014
NAPLIA Risk Management Presentation 2014 NAPLIA Risk Management Presentation 2014
NAPLIA Risk Management Presentation 2014 Alexandra (Alex) Swan
 
Achieving integrated mandatory compliance with ISO 31000
Achieving integrated mandatory compliance with ISO 31000Achieving integrated mandatory compliance with ISO 31000
Achieving integrated mandatory compliance with ISO 31000PECB
 
Building Practical Risk Application into your QMS
Building Practical Risk Application into your QMSBuilding Practical Risk Application into your QMS
Building Practical Risk Application into your QMSPECB
 
Risk management
Risk managementRisk management
Risk managementBabasab Patil
 
Pragmatic CyberSecurity and Risk Reduction
Pragmatic CyberSecurity and Risk ReductionPragmatic CyberSecurity and Risk Reduction
Pragmatic CyberSecurity and Risk ReductionBruce Hafner
 
Basic risk management presentation 17th june 2015
Basic risk management presentation 17th june 2015Basic risk management presentation 17th june 2015
Basic risk management presentation 17th june 2015Association for Project Management
 
Risk Management
Risk ManagementRisk Management
Risk ManagementStefan Csosz
 
Risk and Business Continuity Management
Risk and Business Continuity Management Risk and Business Continuity Management
Risk and Business Continuity Management Continuity and Resilience
 
Risk Management Lifecycle Process PowerPoint Presentation Slides
Risk Management Lifecycle Process PowerPoint Presentation SlidesRisk Management Lifecycle Process PowerPoint Presentation Slides
Risk Management Lifecycle Process PowerPoint Presentation SlidesSlideTeam
 
Risk or Opportunity – There are 2 Sides to Every Coin
Risk or Opportunity – There are 2 Sides to Every CoinRisk or Opportunity – There are 2 Sides to Every Coin
Risk or Opportunity – There are 2 Sides to Every CoinPECB
 
2010; Risk Management Workshop Rev.1.1
2010; Risk Management Workshop Rev.1.12010; Risk Management Workshop Rev.1.1
2010; Risk Management Workshop Rev.1.1Muhammad Ector Prasetyo
 
IIA Facilitated Risk Workshop
IIA Facilitated Risk Workshop IIA Facilitated Risk Workshop
IIA Facilitated Risk Workshop Ersoy AKSOY
 
#corpriskforum2016 - Erike Young
#corpriskforum2016 - Erike Young#corpriskforum2016 - Erike Young
#corpriskforum2016 - Erike YoungAlexei Sidorenko, CRMP
 
Module 5 evaluating safety messages and training
Module 5 evaluating safety messages and trainingModule 5 evaluating safety messages and training
Module 5 evaluating safety messages and trainingThe Windsdor Consulting Group, Inc.
 
R1
R1R1
R1Mary Lewis
 
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...PECB
 
Assessment Of Risk Mitigation
Assessment Of Risk MitigationAssessment Of Risk Mitigation
Assessment Of Risk MitigationEneni Oduwole
 
Risk assessment at workplace
Risk assessment at workplaceRisk assessment at workplace
Risk assessment at workplacesajid ali
 
White paper pragmatic safety solutions
White paper pragmatic safety solutionsWhite paper pragmatic safety solutions
White paper pragmatic safety solutionsCraig Tappel
 
The Path to Self-Disruption
The Path to Self-DisruptionThe Path to Self-Disruption
The Path to Self-DisruptionHewlett Packard Enterprise Business Value Exchange
 
The Purpose of Holistic Risk Management
The Purpose of Holistic Risk ManagementThe Purpose of Holistic Risk Management
The Purpose of Holistic Risk ManagementCorporater
 
Infographic - Critical Capabilities of a Good Risk Management Solution
Infographic - Critical Capabilities of a Good Risk Management SolutionInfographic - Critical Capabilities of a Good Risk Management Solution
Infographic - Critical Capabilities of a Good Risk Management SolutionCorporater
 
Enterprise risk management presentation to APM SWWE branch
Enterprise risk management presentation to APM SWWE branchEnterprise risk management presentation to APM SWWE branch
Enterprise risk management presentation to APM SWWE branchAssociation for Project Management
 
ISACA Lietuva. Asociacija, sertifikacijos ir mokymai
ISACA Lietuva. Asociacija, sertifikacijos ir mokymaiISACA Lietuva. Asociacija, sertifikacijos ir mokymai
ISACA Lietuva. Asociacija, sertifikacijos ir mokymaiBKA (Baltijos kompiuteriu akademija)
 
ISACA certification programme 2010
ISACA certification programme 2010ISACA certification programme 2010
ISACA certification programme 2010Zdravko Stoychev, CISM, CRISC
 

Mais conteúdo relacionado

Mais procurados

Pragmatic CyberSecurity and Risk Reduction
Pragmatic CyberSecurity and Risk ReductionPragmatic CyberSecurity and Risk Reduction
Pragmatic CyberSecurity and Risk ReductionBruce Hafner
 
Risk Management Lifecycle Process PowerPoint Presentation Slides
Risk Management Lifecycle Process PowerPoint Presentation SlidesRisk Management Lifecycle Process PowerPoint Presentation Slides
Risk Management Lifecycle Process PowerPoint Presentation SlidesSlideTeam
 
Risk or Opportunity – There are 2 Sides to Every Coin
Risk or Opportunity – There are 2 Sides to Every CoinRisk or Opportunity – There are 2 Sides to Every Coin
Risk or Opportunity – There are 2 Sides to Every CoinPECB
 
IIA Facilitated Risk Workshop
IIA Facilitated Risk Workshop IIA Facilitated Risk Workshop
IIA Facilitated Risk Workshop Ersoy AKSOY
 
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...PECB
 
Assessment Of Risk Mitigation
Assessment Of Risk MitigationAssessment Of Risk Mitigation
Assessment Of Risk MitigationEneni Oduwole
 
Risk assessment at workplace
Risk assessment at workplaceRisk assessment at workplace
Risk assessment at workplacesajid ali
 
White paper pragmatic safety solutions
White paper pragmatic safety solutionsWhite paper pragmatic safety solutions
White paper pragmatic safety solutionsCraig Tappel
 
The Purpose of Holistic Risk Management
The Purpose of Holistic Risk ManagementThe Purpose of Holistic Risk Management
The Purpose of Holistic Risk ManagementCorporater
 
Infographic - Critical Capabilities of a Good Risk Management Solution
Infographic - Critical Capabilities of a Good Risk Management SolutionInfographic - Critical Capabilities of a Good Risk Management Solution
Infographic - Critical Capabilities of a Good Risk Management SolutionCorporater
 

Mais procurados (20)

Risk management
Risk managementRisk management
Risk management
 
Pragmatic CyberSecurity and Risk Reduction
Pragmatic CyberSecurity and Risk ReductionPragmatic CyberSecurity and Risk Reduction
Pragmatic CyberSecurity and Risk Reduction
 
Basic risk management presentation 17th june 2015
Basic risk management presentation 17th june 2015Basic risk management presentation 17th june 2015
Basic risk management presentation 17th june 2015
 
Risk Management
Risk ManagementRisk Management
Risk Management
 
Risk and Business Continuity Management
Risk and Business Continuity Management Risk and Business Continuity Management
Risk and Business Continuity Management
 
Risk Management Lifecycle Process PowerPoint Presentation Slides
Risk Management Lifecycle Process PowerPoint Presentation SlidesRisk Management Lifecycle Process PowerPoint Presentation Slides
Risk Management Lifecycle Process PowerPoint Presentation Slides
 
Risk or Opportunity – There are 2 Sides to Every Coin
Risk or Opportunity – There are 2 Sides to Every CoinRisk or Opportunity – There are 2 Sides to Every Coin
Risk or Opportunity – There are 2 Sides to Every Coin
 
2010; Risk Management Workshop Rev.1.1
2010; Risk Management Workshop Rev.1.12010; Risk Management Workshop Rev.1.1
2010; Risk Management Workshop Rev.1.1
 
IIA Facilitated Risk Workshop
IIA Facilitated Risk Workshop IIA Facilitated Risk Workshop
IIA Facilitated Risk Workshop
 
#corpriskforum2016 - Erike Young
#corpriskforum2016 - Erike Young#corpriskforum2016 - Erike Young
#corpriskforum2016 - Erike Young
 
Module 5 evaluating safety messages and training
Module 5 evaluating safety messages and trainingModule 5 evaluating safety messages and training
Module 5 evaluating safety messages and training
 
R1
R1R1
R1
 
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
Best Practices for Access Reviews - How to Reduce Risks and Improve Operation...
 
Assessment Of Risk Mitigation
Assessment Of Risk MitigationAssessment Of Risk Mitigation
Assessment Of Risk Mitigation
 
Risk assessment at workplace
Risk assessment at workplaceRisk assessment at workplace
Risk assessment at workplace
 
White paper pragmatic safety solutions
White paper pragmatic safety solutionsWhite paper pragmatic safety solutions
White paper pragmatic safety solutions
 
The Path to Self-Disruption
The Path to Self-DisruptionThe Path to Self-Disruption
The Path to Self-Disruption
 
The Purpose of Holistic Risk Management
The Purpose of Holistic Risk ManagementThe Purpose of Holistic Risk Management
The Purpose of Holistic Risk Management
 
Infographic - Critical Capabilities of a Good Risk Management Solution
Infographic - Critical Capabilities of a Good Risk Management SolutionInfographic - Critical Capabilities of a Good Risk Management Solution
Infographic - Critical Capabilities of a Good Risk Management Solution
 
Enterprise risk management presentation to APM SWWE branch
Enterprise risk management presentation to APM SWWE branchEnterprise risk management presentation to APM SWWE branch
Enterprise risk management presentation to APM SWWE branch
 

Semelhante a CRISC sertifikacija

Canberra Chapter Certification Information Session
Canberra Chapter Certification Information SessionCanberra Chapter Certification Information Session
Canberra Chapter Certification Information SessionDavid Berkelmans
 
538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx
538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx
538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptxssuserde23af
 
Certified Information System Auditor- CISA
Certified Information System Auditor- CISACertified Information System Auditor- CISA
Certified Information System Auditor- CISAKnowledgehut
 
Know about cisa certification
Know about cisa certificationKnow about cisa certification
Know about cisa certificationJasonRoy50
 
CRISC – Certified in Risk & Information Systems Control| Virtual and Classroom
CRISC – Certified in Risk & Information Systems Control| Virtual and ClassroomCRISC – Certified in Risk & Information Systems Control| Virtual and Classroom
CRISC – Certified in Risk & Information Systems Control| Virtual and ClassroomBharathi Grover
 
John Krysa, ICRM - #InfoGov17 - ICRM Certification Overview
John Krysa, ICRM - #InfoGov17 - ICRM Certification OverviewJohn Krysa, ICRM - #InfoGov17 - ICRM Certification Overview
John Krysa, ICRM - #InfoGov17 - ICRM Certification OverviewARMA International
 
CRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptxCRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptxSpoclearn Inc.
 
CRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptxCRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptxSpoclearn Inc.
 
Assignment A101 IAEEntrepreneurship Report Date xxxxx.docx
Assignment A101 IAEEntrepreneurship Report Date xxxxx.docxAssignment A101 IAEEntrepreneurship Report Date xxxxx.docx
Assignment A101 IAEEntrepreneurship Report Date xxxxx.docxrock73
 
CIA (Certified Internal Auditor)
CIA (Certified Internal Auditor)CIA (Certified Internal Auditor)
CIA (Certified Internal Auditor)Zabeel Institute
 
211344558 certified-six-sigma-black-belt-asq-cssbb (1)
211344558 certified-six-sigma-black-belt-asq-cssbb (1)211344558 certified-six-sigma-black-belt-asq-cssbb (1)
211344558 certified-six-sigma-black-belt-asq-cssbb (1)Saieesha Chitoori
 
512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx
512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx
512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptxkashifmajeedjanjua
 
Asis 2013 april updates
Asis 2013 april updatesAsis 2013 april updates
Asis 2013 april updatesPeggy OConnor
 

Semelhante a CRISC sertifikacija (20)

ISACA Lietuva. Asociacija, sertifikacijos ir mokymai
ISACA Lietuva. Asociacija, sertifikacijos ir mokymaiISACA Lietuva. Asociacija, sertifikacijos ir mokymai
ISACA Lietuva. Asociacija, sertifikacijos ir mokymai
 
ISACA certification programme 2010
ISACA certification programme 2010ISACA certification programme 2010
ISACA certification programme 2010
 
Canberra Chapter Certification Information Session
Canberra Chapter Certification Information SessionCanberra Chapter Certification Information Session
Canberra Chapter Certification Information Session
 
538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx
538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx
538522937-Cisa-easdasdsadsadasdBook-New-1-188.pptx
 
Certified Information System Auditor- CISA
Certified Information System Auditor- CISACertified Information System Auditor- CISA
Certified Information System Auditor- CISA
 
Know about cisa certification
Know about cisa certificationKnow about cisa certification
Know about cisa certification
 
Value of IT Certifications (BDPA Cincinnati)
Value of IT Certifications (BDPA Cincinnati)Value of IT Certifications (BDPA Cincinnati)
Value of IT Certifications (BDPA Cincinnati)
 
CRISC – Certified in Risk & Information Systems Control| Virtual and Classroom
CRISC – Certified in Risk & Information Systems Control| Virtual and ClassroomCRISC – Certified in Risk & Information Systems Control| Virtual and Classroom
CRISC – Certified in Risk & Information Systems Control| Virtual and Classroom
 
John Krysa, ICRM - #InfoGov17 - ICRM Certification Overview
John Krysa, ICRM - #InfoGov17 - ICRM Certification OverviewJohn Krysa, ICRM - #InfoGov17 - ICRM Certification Overview
John Krysa, ICRM - #InfoGov17 - ICRM Certification Overview
 
CRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptxCRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptx
 
CRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptxCRISC Certification Training Brochure.pptx
CRISC Certification Training Brochure.pptx
 
Assignment A101 IAEEntrepreneurship Report Date xxxxx.docx
Assignment A101 IAEEntrepreneurship Report Date xxxxx.docxAssignment A101 IAEEntrepreneurship Report Date xxxxx.docx
Assignment A101 IAEEntrepreneurship Report Date xxxxx.docx
 
CIA (Certified Internal Auditor)
CIA (Certified Internal Auditor)CIA (Certified Internal Auditor)
CIA (Certified Internal Auditor)
 
CISA sertifikacija
CISA sertifikacijaCISA sertifikacija
CISA sertifikacija
 
The Chartered Accountants Program explained
The Chartered Accountants Program explainedThe Chartered Accountants Program explained
The Chartered Accountants Program explained
 
211344558 certified-six-sigma-black-belt-asq-cssbb (1)
211344558 certified-six-sigma-black-belt-asq-cssbb (1)211344558 certified-six-sigma-black-belt-asq-cssbb (1)
211344558 certified-six-sigma-black-belt-asq-cssbb (1)
 
CISSP Training Program
CISSP Training ProgramCISSP Training Program
CISSP Training Program
 
512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx
512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx
512915984-CISAsadsadasdasdasdasdasdas-Domain-1-Slides.pptx
 
Cissp classroom program ievision
Cissp classroom program ievisionCissp classroom program ievision
Cissp classroom program ievision
 
Asis 2013 april updates
Asis 2013 april updatesAsis 2013 april updates
Asis 2013 april updates
 

Mais de BKA (Baltijos kompiuteriu akademija)

Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...
Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...
Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...BKA (Baltijos kompiuteriu akademija)
 
IT paslaugų valdymo pertvarka remiantis COBIT principais. A.Glemža
IT paslaugų valdymo pertvarka remiantis COBIT principais. A.GlemžaIT paslaugų valdymo pertvarka remiantis COBIT principais. A.Glemža
IT paslaugų valdymo pertvarka remiantis COBIT principais. A.GlemžaBKA (Baltijos kompiuteriu akademija)
 
IT strateginis planas ir COBIT 5 tikslų hierarchija. D. Jakimavičius
IT strateginis planas ir COBIT 5 tikslų hierarchija. D. JakimavičiusIT strateginis planas ir COBIT 5 tikslų hierarchija. D. Jakimavičius
IT strateginis planas ir COBIT 5 tikslų hierarchija. D. JakimavičiusBKA (Baltijos kompiuteriu akademija)
 

Mais de BKA (Baltijos kompiuteriu akademija) (9)

ISACA sertifikacijos - profesionalumo įrodymas, D. Jakimavičius
ISACA sertifikacijos - profesionalumo įrodymas, D. JakimavičiusISACA sertifikacijos - profesionalumo įrodymas, D. Jakimavičius
ISACA sertifikacijos - profesionalumo įrodymas, D. Jakimavičius
 
Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...
Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...
Kaip tinkamų sprendimų priėmimas šiandien, padės suvaldyti iššūkius rytoj? Ri...
 
Kibernetinė sauga. Vadovo požiūris. R.Lečickis
Kibernetinė sauga. Vadovo požiūris. R.LečickisKibernetinė sauga. Vadovo požiūris. R.Lečickis
Kibernetinė sauga. Vadovo požiūris. R.Lečickis
 
IT paslaugų valdymo pertvarka remiantis COBIT principais. A.Glemža
IT paslaugų valdymo pertvarka remiantis COBIT principais. A.GlemžaIT paslaugų valdymo pertvarka remiantis COBIT principais. A.Glemža
IT paslaugų valdymo pertvarka remiantis COBIT principais. A.Glemža
 
IT strateginis planas ir COBIT 5 tikslų hierarchija. D. Jakimavičius
IT strateginis planas ir COBIT 5 tikslų hierarchija. D. JakimavičiusIT strateginis planas ir COBIT 5 tikslų hierarchija. D. Jakimavičius
IT strateginis planas ir COBIT 5 tikslų hierarchija. D. Jakimavičius
 
ITIL. Kodėl jis reikalingas Jūsų įmonei?
ITIL. Kodėl jis reikalingas Jūsų įmonei?ITIL. Kodėl jis reikalingas Jūsų įmonei?
ITIL. Kodėl jis reikalingas Jūsų įmonei?
 
COBIT sertifikacija
COBIT sertifikacijaCOBIT sertifikacija
COBIT sertifikacija
 
CISM sertifikacija
CISM sertifikacijaCISM sertifikacija
CISM sertifikacija
 
CGEIT sertifikacija
CGEIT sertifikacijaCGEIT sertifikacija
CGEIT sertifikacija
 

Último

8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCRashishs7044
 
Innovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfInnovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfrichard876048
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607dollysharma2066
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationAnamaria Contreras
 
Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.Anamaria Contreras
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607dollysharma2066
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCRashishs7044
 
Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Seta Wicaksana
 
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / NcrCall Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncrdollysharma2066
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCRashishs7044
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportMintel Group
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Kirill Klimov
 
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...ictsugar
 
Kenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby AfricaKenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby Africaictsugar
 
Buy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy Verified Accounts
 
Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737Riya Pathan
 
IoT Insurance Observatory: summary 2024
IoT Insurance Observatory: summary 2024IoT Insurance Observatory: summary 2024
IoT Insurance Observatory: summary 2024Matteo Carbone
 

Último (20)

8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR
 
Corporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information TechnologyCorporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information Technology
 
Innovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfInnovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdf
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement Presentation
 
Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.Traction part 2 - EOS Model JAX Bridges.
Traction part 2 - EOS Model JAX Bridges.
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
 
Call Us ➥9319373153▻Call Girls In North Goa
Call Us ➥9319373153▻Call Girls In North GoaCall Us ➥9319373153▻Call Girls In North Goa
Call Us ➥9319373153▻Call Girls In North Goa
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
 
Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...
 
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / NcrCall Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample Report
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024
 
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
 
Kenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby AfricaKenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby Africa
 
Buy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail Accounts
 
Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737
 
IoT Insurance Observatory: summary 2024
IoT Insurance Observatory: summary 2024IoT Insurance Observatory: summary 2024
IoT Insurance Observatory: summary 2024
 

CRISC sertifikacija

  • 1.
  • 2. CRISC sertifikacijos pristatymas Pasiruoškite įveikti organizacijos rizikos valdymo iššūkius ISACA® Pasitikėjimas informacinėmis sistemomis ir jų nauda www.isaca.org/crisc Viktoras Bulavas, CISA, CGEIT, CRISC Kadenciją baigęs asociacijos ISACA Lietuva pirmininkas
  • 3. CRISC Target Market Designed exclusively for risk and information controls personnel who:  Identify, assess and analyze risk  Design, implement and maintain controls to mitigate risk  Respond to risk events
  • 4. Why Become a CRISC? Enhanced Knowledge and Skills  To demonstrate your willingness to improve your technical knowledge and skills Career Advancement  To demonstrate to management your commitment toward organizational excellence  To obtain credentials that employers seek  To enhance your professional image Worldwide Recognition  To be included with other professionals who have gained worldwide recognition
  • 5. CRISC in the Workplace  Nearly 600 are employed in organizations as the CEO, CFO or equivalent executive position.  More than 400 serve as chief audit executives, audit partners or audit heads.  Over 1,200 serve as CIOs, CISOs, or chief compliance, risk or privacy officers.  More than 3,500 are employed as security directors, managers or consultants and related staff.  More than 2,200 are employed as IT directors, managers, consultants and related staff.  Nearly 4,400 serve as audit directors, managers or consultants and related staff.  Over 2,900 are employed in managerial, consulting or related positions in IT operations or compliance.
  • 7. Domain 1—Risk Identification, Assessment and Evaluation (31%) Identify, assess and evaluate risk to enable the execution of the enterprise risk management strategy. Domain 2—Risk Response (17%) Develop and implement risk responses to ensure that risk issues, opportunities and events are addressed in a cost-effective manner and in line with business objectives. CRISC Job Practice Areas (Effective 2010)
  • 8. Domain 3—Risk Monitoring (17%) Monitor risk and communicate information to the relevant stakeholders to ensure the continued effectiveness of the enterprise‘s risk management strategy. Domain 4—IS Control Desing and Implementation (17%) Design and implement IS controls in alignment with the organisation‘s risk appetite and tolerance levels to support business objectives. Domain 5—IS Control Monitoring and Maintenance (18%) Monitor and maintain IS controls to ensure they function effectively and efficiently. CRISC Job Practice Areas (Effective 2010) (continued)
  • 9. CRISC Certification Requirements • Earn a passing score on the CRISC exam • Submit verified evidence of a minimum of 3 years of risk and information systems controls experience (covering 3 of the 5 job practice domains) • Submit completed CRISC application within 5 years of passing exam and receive approval • Adhere to the ISACA Code of Professional Ethics • Comply with the CRISC Continuing Professional Education Policy
  • 10. • Risk control is an emerging discipline with scarce study materials • Develops better understanding what Risk and Information System control is and what is not • Training is good start to exam preparation How course can help?
  • 11. 2012 Registration Fees: 14 December 2013 Early Registration – On or before 21 August 2013: • ISACA Member: US $485.00 • Non-Member: US $660.00 Final Registration – After 21 August, but on or before 25 October 2013: • ISACA Member: US $535.00 • Non-Member: US $710.00 Register Online at www.isaca.org/examreg and save $$ • Online registration via the ISACA web site is encouraged, as candidates will save US $75. Non-members can join ISACA at the same time, which maximizes their savings. Exam registration fees must be paid in full to sit for the exam. Those whose exam registration fees are not paid will not be sent an exam admission ticket and their registration will be cancelled.
  • 12. Bulletin of Information (BOI) and Registration Form • There is a Bulletin of Information for each exam administration for each exam. • Can be downloaded from the ISACA web site at: www.isaca.org/criscboi Bulletin includes: – Requirements for certification – Exam description – Registration instructions – Test date procedures – Score reporting – Test center locations – Registration forms
  • 13. Types of Questions on the CRISC Exam  Exam consists of 200 multiple choice questions administered over a four-hour period  Questions are designed to test practical knowledge and experience  Questions require the candidate to choose one best answer  Every question or statement has four options (answer choices)
  • 14. Study Materials ISACA Members Non-Members Candidate’s Guide to the CRISC Exam……..…free to each paid registrant (also available online at www.isaca.org/criscguide) CRISC Review Manual 2013….…………….. (US) $85.00 (US) $115.00 CRISC Review Questions, Answers & ……... (US) $40.00 (US) $60.00 Explanations Manual 2013 CRISC Review Questions, Answers & ……... (US) $40.00 (US) $60.00 Explanations Manual 2013 Supplement CRISC Online Review Course (US) $185.00 (US) $225.00 For detailed descriptions visit www.isaca.org/criscbooks
  • 15. A proper study plan consists of several steps: Self-appraisal Determination of the type of study program Having an adequate amount of time to prepare Maintaining momentum Readiness review Become involved in your local chapter and explore networking opportunities and study groups. How to Develop a CRISC Study Plan
  • 16. How to Study for the CRISC Exam  Read the Candidate’s Guide thoroughly  Study the CRISC Review Manual  Work through the CRISC Review Questions, Answers & Explanations Manual, Supplements and/or online review course  Participate in an ISACA Chapter Review Course  Read literature in areas where you need to strengthen skills  Spend time studying the complement of your field: If controls focused, study from risk focus and vice-versa  Join or organize study groups
  • 17. • Is available at www.isaca.org/criscapp • Effective with applications received 1 June 2012 and forward, an application fee of US $50 will be required to apply for certification. Contains: – Requirements for certification – Code of Professional Ethics – Instructions for completion of form. – Verification of work experience for applicant form – CRISC application form • Until an application is received and approved, candidates are not CRISC certified and cannot use the designation. Application for Certification
  • 18. CRISC Continuing Professional Education (CPE) Policy Details www.isaca.org/cisacpepolicy
  • 19. Once certified, the certification must be renewed annually. Maintaining the certification requires: • Earning and reporting an annual minimum of 20 hours of continuing professional education • Earning and reporting a minimum of 120 hours of continuing education for each fixed three-year period (each 3-year cycle) • Pay the annual certification maintenance fee • Respond and submit required documentation of continuing education activities if selected for an annual audit • Comply with the ISACA Code of Professional Ethics (www.isaca.org/ethics) ISACA membership provides many CPE opportunities which can assist you with meeting this requirement. For more details visit www.isaca.org/cpe. Continuing Professional Education (CPE) Requirements
  • 20. Norite sužinoti daugiau? Susisiekite su mumis:  El.paštu: asociacija@isaca.lt  Internete: www.isaca.lt Ačiū už dėmesį! Daugiau informacijos apie organizuojamus ISACA sertifikacijų mokymus rasite www.bka.lt Susisiekite telefonu 8 5 2780502 arba el.paštu mokymai@bka.lt

Notas do Editor

  1. BENEFITS OF BECOMING A CRISC:Being recognized as a CRISC brings with it a great number of professional and organizational benefits. Successful achievement demonstrates and attests to an individual's risk and information systems control expertise and indicates a desire to serve an organization with distinction. This expertise is extremely valuable given the changing nature of information technology and the need to employ certified professionals who are able to apply the most effective information security management practices, and who have an awareness of the unique requirements particular to information technology environments. Those who become CRISCs join other recognized professionals worldwide who have earned this highly sought after professional designation. Although certification may not be mandatory for everyone, a growing number of organizations are recommending that employees become certified. The CRISC designation assures employers that their staff is able to apply state-of-the-art risk and information systems control practices and techniques and that these skills are maintained. For these reasons, many employers require the achievement of the CRISC designation as a strong factor for employment and/or advanced promotion.
  2. Updated January 2013.Nearly 600 are employed in organizations as the CEO, CFO or equivalent executive position.More than 400 serve as chief audit executives, audit partners or audit heads.Over 1,200 serve as CIOs, CISOs, or chief compliance, risk or privacy officers. More than 3,500 are employed as security directors, managers or consultants and related staff.More than 2,200 are employed as IT directors, managers, consultants and related staff.Nearly 4,400 serve as audit directors, managers or consultants and related staff.Over 2,900 are employed in managerial, consulting or related positions in IT operations or compliance.
  3. A profile of CRISCs demonstrates the increasing managerial influence and authority achieved: Executive Level (CEO, President, Owner, General/Executive Manager, CFO, CAE) - 7% IS Security Professionals (CISO, CSO, Security Director, Security Staff) - 27% IT Professionals (CIO, CTO, IS/IT Directors, Managers, IT Staff) – 16%Compliance and Risk Professionals (Chief of Compliance, Directors, Managers, Consultants) – 20%IS/IT Audit (directors, managers, consultants) – 28% Other – 2%
  4. Rizikos kontrolė, kaip disciplina Lietuvos universitetuose neegzistuoja, literatūra pakankamai reta, todėl tai būtų geras atspirties taškas tiek rengiantis egzaminui, tiek gilinantis į rizikos ir informacijos sistemų kontrolės disciplinąKursai padeda suvokti disciplinos ribas bei pasirengti egzaminui
  5. To assist individuals with the development of a successful study plan, ISACA provides several study aids and review courses to exam candidates. (Also see www.isaca.org for more details.)Candidate's Guide to the CRISC Examinationis supplied to individuals upon receipt of the CRISC exam registration form and payment. This guide provides general information regarding the administration of the exam as well as a detailed outline of the job practice areas, task and knowledge statements covered on the exam, and a sample copy of the admission ticket and exam answer sheet.You can view a detailed description of the study material item on the ISACA web site at www.isaca.org/criscbooks.
  6. A proper study plan consists of several steps: week to prepare for the exam. The first step is a self-appraisal. The candidate should perform a general review of the CRISC content areas in the Candidate’s Guide to the CRISC Examination to determine overall familiarity with the concepts and practices covered in the exam. The candidate also should evaluate his/her own study habits and discipline. Based on this evaluation the candidate should have a general idea as to the amount of time and energy needed to adequately prepare for the exam.The second step is a determination of the type of study program to undertake. Options range from a brush-up of the material for the experienced IS risk and controls professional to a more intense self-study program for the less experienced candidate to a program of both self-study and attendance at a formal CRISC review program like this one.The third step is making sure that a candidate has the adequate amount of time to prepare. Candidates should plan to set aside an appropriate number of hours each week to prepare for the exam The fourth step is maintaining momentum. A candidate can easily lose interest in studying and encounter obstacles to study. A candidate must realize that this will normally occur and not become discouraged. The final step is performing a readiness review. The formal study program should be completed at least one week prior to the date of the exam. Become involved in your local chapter and explore networking opportunities and study groups.
  7. Candidates preparing for the exam are encouraged to:Read the Candidate’s Guide thoroughlyStudy the CRISC Review ManualWork through the CRISC Review Questions, Answers & Explanations ManualParticipate in an ISACA Chapter Review Course or ISACA online review course.Read literature in areas where you need to strengthen skillsSpend time studying the complement of your field: IT controls focused, study from risk focus and vice-versaJoin or organize study groups
  8. Once a candidate has passed the CRISC certification exam, he/she must complete the Application for Certification in Risk and Information Systems Control to become a CRISC. The purpose of the application is to verify that experience requirements have been met.The application is divided into seven parts; four pages of forms and three pages of instructions and includes:Requirements for certificationCode of Professional EthicsInstructions for completion of formVerification of work experience for applicant formCRISC application form
  9. CRISC Continuing Education Policy Details
  10. The Continuing Education Policy requires the attainment of continuing education hours over an annual and three-year reporting period. CRISCs must comply with the following requirements to retain certification:Attain and submit an annual minimum of twenty (20) continuing professional education hours Attain and submit a minimum of one-hundred and twenty (120) continuing education hours for a three-year reporting period. Both annual and three-year requirements begin 1 January of the following year after becoming certifiedSubmit annual certification maintenance fees to ISACA Headquarters in full by the due dateRespond and submit required documentation of continuing education activities if selected for an annual auditComply with ISACA Code of Professional Ethics (www.isaca.org/ethics)Specific activities are required and described in the CRISC Continuing Professional Education Policy, available online at www.isaca.org/crisccpepolicy.