ISACA, a global association of 86,000 IT audit, risk, governance and security professionals, is responding to market demand by introducing a new risk-related certification. The Certified in Risk and Information Systems Control (CRISC) designation is for IT professionals who identify and manage risks through the development, implementation and maintenance of information systems (IS) controls. These professionals help enterprises accomplish business objectives such as effective and efficient operations, reliable financial reporting, and compliance with regulatory requirements.

A grandfathering program, through which experienced professionals can earn the certification without passing an exam, will open in April. The first CRISC exam will be administered in 2011.

ISACA established CRISC (pronounced “see risk”) to recognize IT professionals with skills and abilities related to:
·    Risk identification, assessment and evaluation
·    Risk response
·    Risk monitoring
·    IS control design and implementation
·    IS control monitoring and maintenance

Additional information about the CRISC certification is available at www.isaca.org/crisc.