Governance, Risk and Compliance Certification (CGRC) Certification Logo

Governance, Risk and Compliance Certification (CGRC) Certification

Governance, Risk and Compliance Certification (CGRC)—formerly known as CAP—is an ISC² certification that validates expertise in implementing and managing risk management frameworks and ensuring compliance across information systems and enterprise environments.

COURSE BROCHURE DOWNLOAD PDF

Looking for a private batch ?

REQUEST A CALLBACK

Need help finding the right training?

Your Message



What is Governance, Risk and Compliance Certification (CGRC) Certification about?

CGRC (formerly CAP) validates your expertise in implementing governance, risk management, and compliance programs using frameworks such as NIST RMF, ISO standards, and FISMA. It emphasizes the authorization, maintenance, and auditing of information systems in alignment with regulatory requirements and organizational strategy.

What are the objectives of Governance, Risk and Compliance Certification (CGRC) Certification ?

  • Establish, maintain, and manage an enterprise-wide GRC program
  • Define system scope and align governance to organizational objectives
  • Select, apply, and audit security/privacy controls via frameworks (NIST, ISO, COBIT)
  • Conduct continuous monitoring and system compliance audits

Who is Governance, Risk and Compliance Certification (CGRC) Certification for?

  • GRC managers and architects
  • Cybersecurity auditors and compliance officers
  • Risk and control analysts
  • Enterprise risk or assurance professionals
  • Cybersecurity project managers 

What are the prerequisites for Governance, Risk and Compliance Certification (CGRC) Certification?

  • Minimum 2 years of work experience in one or more CGRC domains 
  • ISC² endorsement and adherence to the Code of Ethics required