Whether it stems from incompetence or outright criminal deviance, accounting and security can go really wrong in business. It is up to governance, risk, and compliance (GRC) to control processes for everyone’s sake. In a slideshow for CIO.com, Kim Lindros and Ed Tittel discuss their top six GRC certifications:
- CRISC (Certified in Risk and Information Systems Control)
- CGEIT (Certified in the Governance of Enterprise IT)
- PMI-RMP (Project Management Institute-Risk Management Professional)
- ITIL Expert
- CRMA (Certification in Risk Management Assurance)
- GRCP (GRC Professional)
CRISC comes from ISACA, for IT professionals looking to oversee IT and enterprise risk. It covers risk identification, risk assessment, risk response and mitigation, and risk and control monitoring and reporting. CGEIT also comes from ISACA, for IT professionals seeking a comprehensive understanding of IT governance principles and how they can be leveraged to create value.
PMI-RMP of course comes from the Project Management Institute, and it empowers project managers to better address project-based risks. Meanwhile, although “ITIL Expert” sounds like something anybody can claim to be, it is an actual title, and so is ITIL Master:
In ITIL-speak, certifications are referred to as “qualifications,” which create a classic certification ladder beginning with the basic-level ITIL Foundation and culminating with the pinnacle ITIL Master. One rung below the Master level is the popular ITIL Expert.
A professional with the ITIL Expert qualification has a deep understanding of ITIL service best practices as they apply across an IT environment, not just to one service area. In other words, the Expert is able to support an organization by bridging service lifecycle stages, seeing the big picture as a sum of the parts.
CRMA comes from the Institute of Internal Auditors (IIA), and it provides risk training in precisely the places one would expect from an organization like IIA. And lastly, GRCP comes from OCEG, a global organization that may not be as big as some others, but is well-respected for what it offers for GRC.
For pricing and additional details, you can view the slideshow here: http://www.cio.com/article/3005659/certifications/the-top-6-governance-risk-and-compliance-certifications.html