This program is designed to recognize experienced professionals who are responsible for:

• Risk identification, assessment and evaluation
• Risk response
• Risk monitoring
• IS control design and implementation
• IS control monitoring and maintenance

learn more in job practice areas

To earn the credential through the grandfathering program, an applicant must provide evidence of at least eight (8) years of IT or business experience with a minimum of six (6) years of cumulative work experience across all 5 CRISC domains and a minimum of three (3) years of cumulative work experience in CRISC risk domains 1, 2 and 3 (as defined and described by the CRISC job practice domains and task statements).

Certification under the Grandfathering program is open to highly experienced professionals from April 2010 through March 2011.

The CRISC Grandfathering Application Process

In order to be considered for CRISC certification under the grandfathering provision an applicant must:

1. Obtain an ISACA identification (ID) number (this will be needed for your application). If you do not currently have an ISACA ID number, to obtain one and to create a profile with ISACA, please go to My ISACA.
2. Remit (pay) the appropriate application fee.
3. Submit a completed CRISC application for certification under the grandfathering provision.

  Download CRISC Application under the Grandfathering Provision
  Online CRISC Application under the Grandfathering Provision Form (HTML)

CRISC Grandfathering Application Fee:

The payment of an application fee is required to be considered for CRISC certification under the grandfathering provision. Your application will not be reviewed until payment in full is received.

Payment for the fee can be made online at: www.isaca.org/criscpay. The amount of the fee is dependent on your ISACA membership status and the date of application. The application fee is as follows:

In order to take advantage of the ISACA member application fee rate you must become an ISACA member prior to submitting your application. To join as an ISACA member please go to: Membership.

The application fee above includes a non-refundable application processing fee of US $100. Applicants who withdraw their application or whose application is denied by the CRISC Certification Committee will receive a refund less the $100 processing fee.

Application Processing:

In order for your application to be processed, you MUST complete, collect and submit the application and verification of work experience forms and mail, FAX, or e-mail to:

Via mail:
CRISC Certification Grandfathering Program
ISACA
3701 Algonquin Road, Suite 1010
Rolling Meadows, IL 60008 USA

Via fax: +1.847.253.1443 or +1.847.253.1755

Via email: CRISCapplication@isaca.org

Once we have received and logged in your application, you will be sent an e-mail confirming receipt. Your application and supporting documents will be forwarded to the CRISC Certification Committee for review. When under review if your application is not complete or if any additional information is needed, you will receive an email identifying what additional information is needed to continue the review process.

For assistance with your application, please contact CRISCapplication@isaca.org or phone +1.847.660.5660.

“Enterprises around the world are continuing to become more risk-aware, and the CRISC designation will provide assurance to employers that professionals who earn and maintain a CRISC certification are experienced in identifying and evaluating the risks unique to their specific organization,” said Urs Fischer, chair of ISACA’s CRISC Task Force. “It also helps risk and control professionals demonstrate that they have proven experience and abilities in designing, implementing and maintaining risk-based, efficient and effective information systems controls.”