How to get CRISC certified

You’ve prepared by doing the work, taken the exam and are now ready to apply for your CRISC® Certification. Let’s make sure you have everything you need:

Illustration of exam with approval mark shown on computer

STEP 1: PASS THE EXAM

Prior to submitting your application, you must meet the following requirements:

  • Pass the CRISC Exam within the last five years.
  • Have three or more years of CRISC professional work experience across at least two of the four CRISC domains
  • Unsure of requirements? VIEW MORE > 
VIEW CRISC EXAM DETAILS
Illustration of money and online form

STEP 2: PAY THE APPLICATION FEE

Pay the one-time US$50 application processing fee.

  • You must pay your application fee before submitting your application.
  • Login to your MYISACA account to access the application processing fee.
PAY APPLICATION FEE
Illustration of application form

STEP 3: FILL OUT AND SUBMIT THE APPLICATION

Candidates must apply for certification within five years of having passed the exam.

ONLINE APPLICATION

Download CRISC Application Forms (Non-English)

Application Calendar

From August 2021 & Later:

If you passed the exam from August 2021 until the present, download the application form in your preferred language.

Please select a language

Application Calendar

From 2018 to July 2021:

If you passed the exam from 2018 to July 2021, download the application form in your preferred language.

Please select a language

Members save on CPEs, renewals, and exams

JOIN

CRISC certification requirements

Demonstrate the minimum required work experience

A minimum of 3-years of professional information systems auditing, control or security work experience–as described in the CRISC job practice areas–is required for certification. Work experience for the CRISC certification must be gained within the 10-year period preceding the application date for certification. Candidates have 5-years from the passing date to apply.

GET CRISC APPLICATION FORM

Earn & report CPE hours

Attain and report a minimum of 120 Continuing Professional Development (CPE) hours during a three-year reporting period, completing a minimum of 20 CPE hours per year. If these CPEs satisfy the requirements for other ISACA certifications, they may also count toward those designations.

HOW IT WORKS
CRISC Logo

Successfully complete the CRISC examination

The CRISC exam is open to anyone who has an interest in information security. You can still take the CRISC exam even if you haven’t met the experience requirements yet, although you’ll have to meet those before getting certified. When you take the CRISC exam, we’ll send you your results, and if you passed, the details you need to apply for your CRISC certification. Candidates have five years from the passing date to apply for certification.

VIEW CRISC EXAM DETAILS

Adhere to the Code of Professional Ethics

As a member of ISACA and/or holder of the CGEIT designation, you agree to a Code of Professional Ethics to guide your professional and personal conduct.

VIEW ISACA’S CODE OF PROFESSIONAL ETHICS

Already certified and need to maintain your certification?

Manage your certification in MyISACA
LEARN HOW