CGRC Quick Glance
GOVERNANCE RISK AND COMPLIANCE
Shows advanced technical skills and knowledge to protect, authorize and maintain information systems within various risk management frameworks.
WHAT TO EXPECT ON THE CGRC EXAM
Domain 1: Information Security Risk Management Program
Domain 2: Scope of the Information System
Domain 3: Selection and Approval of Security and Privacy Controls
Domain 4: Implementation of Security and Privacy Controls
Domain 5: Assessment/Audit of Security and Privacy Controls
Domain 6: Authorization/Approval of Information System
Domain 7: Continuous Monitoring
CGRC Exam Outline
Required Work Experience
ISO/IEC Standard 17024
Approved by Department of Defense
Your Pathway to Certification
Get Started. Become an ISC2 Candidate.
Begin your journey to certification as an ISC2 Candidate. You’ll save 20% on Official ISC2 online training and career-building support.