Certified in Risk and Information Systems Control (CRISC)

eth0

Someone have Certified in Risk and Information Systems Control (CRISC)? Any opinions, details?

Find more posts tagged with

SAVE $250 on Your Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View Boot Camps

Comments

dustervoice

what are you trying to get at? please ask your question clearly. Its like asking "Can someone that owns a red shirt give me their opinion"

636-555-3226

It's about risk management. Many people consider it harder than the CISA or CISM, some people don't. You'll need to review the Q&A database to prep for the exam while the study guide is more useful for real-life takeaways. It's very rarely asked for in job applications as it's more of a niche market (for some reason I don't understand....). That niche market also means the salaries are usually higher than other IT jobs.

eth0

you think that will not be so hard when I have none experience in "risk managment" but just in general security (forensic/cert/pentest)?

636-555-3226

From that background you probably won't go into your studies with a sufficient existing knowledgebase, but everything can be learned if you spend the time to understand the materials. do you meet the experience requirements for all of the domains?

ITSpectre

eth0 wrote: »

Someone have Certified in Risk and Information Systems Control (CRISC)? Any opinions, details?

I think we need google translate for this one....

dustervoice

ITSpectre wrote: »

I think we need google translate for this one....

I think he is trying to say someone stole his crisc. any details on where it is?

ilikeshells

Yes. IMO CRISC is the most difficult exam I've taken in years. It's not that the material is hard or that there's a lot of it, it's just that the questions were much trickier than say the CISA. That being said, being a pentester will not necessarily help you on the exam. It's specifically about identifying, assessing, mitigating, and monitoring risk. Literally, those 4 areas make up most of the exam. Read the official guide (very dry) and focus on Q&A database.

Also there's an ISACA forum here on Techexams where more would chime in.

ITSpectre

dustervoice wrote: »

what are you trying to get at? please ask your question clearly. Its like asking "Can someone that owns a red shirt give me their opinion"

LOL

I think the OP wants to know....

If anyone has the cert and what is their opinion on it.