CRISC or CISA

magedma

I would your opinion about which Certificate more valuable , worth pursuing and more beneficial in the long time CRISC or CISA ?

E Double U

Do CISA first which should not be an issue for you with your audit experience then move on to CRISC. 

E Double U

@ b/eads

I agree with taking issue with falsifying credentials. If you make false statements on an application to obtain an ISACA or (ISC)2 credential then you can just as easily make those same adjustments on your CV/resume.

I disagree with your stance on how experience is gained. I don't think it's necessary to have had the word auditor in your title to have gained auditing experience. For example, my employer has a dedicated risk management team which I am not a member of, but my experience with my current employer alone has required me to perform tasks across all four domains for the past four years. I don't feel that I shouldn't go for CRISC just because the term risk is not in my title or dept name. It's about the function being performed and not what someone has in their email signature. 

scasc

That's a good point. I see doing certs for 2 main reasons - 1) You have the experience and you need to rubber stamp this with a renowned cert or 2) To help you try and make a move into the area when ready (e.g. CISSP associate). Both CISA and CRISC cover key GRC topics which are quite often interrelated though looking at something from a slightly different lens.

E Double U

What exactly are you trying to accomplish? Providing that information could make it easier to give you the most useful information. For example, someone that performs risk management would likely find CRISC more valuable while an auditor would find CISA more valuable. I believe you are looking for guidance and not just curious about opinions on two random certifications. Which is worth pursuing? Both - depending on why you are doing it. Both are beneficial, but the benefits taken away depend on the individual. Are you targeting a specific role? Are you only interested in the knowledge? 

magedma

Hi E Double U
Thank you
I work in IT field and as you said interested to be strong in IT and learning more knowledge 

E Double U

There are lots of ways to be strong in IT, but I it seems to me like you are focusing on ISACA for a reason. 

What do you do within IT? For how long?
What area within IT would you like to move into?
Are there growth opportunities within your current employer? If so, what type of role(s)?
Which skills/certifications are most sought after in your area?

magedma

Because ISACA certifications are the most recognised and valuable in IT industry worldwide also my role is IT auditor .
There are overlap between Risk and audit so both useful cisa crisc

beads

If your working in audit the CISA makes sense but only while your working as an auditor. CRISC to a lesser degree is a bit broader in scope if your working as a risk manager and somewhat if you are actively working with risk. Otherwise, why would you simply collect paper for the sake of collecting paper? Many people I have meet with no auditing experience but carry the CISA makes no sense. If you presented such credentials to me in an interview but falsified the experience to sit for the exam I have and will continue to dismiss those candidates immediately.

Now, E double E may have a different take but if you falsify your credentials over a piece of paper what's stopping you from falsifying your work while working for me?

- b/eads