Blog

Help Shape the CGRC Exam – Formerly Known As CAP

Jan 09, 2023

As practitioners know all too well, it is paramount to remain up to date with the changing landscape of cybersecurity. We regularly conduct Job Task Analysis (JTA) studies to review exam content and outlines to ensure the accuracy, relevance and excellence of all (ISC)² exams.  

CAP-Exam_Cover-3D The Certified in Governance, Risk and Compliance (CGRC), formerly known as the Certified Authorization Professional (CAP) exam, was last refreshed in 2021. The certification is undergoing a name change to more accurately reflect the knowledge, skills and abilities required to earn and maintain this certification. As part of our regular updates to exams, it is now time to refresh the (ISC)² CGRC exam to better align with best governance, risk and compliance professional practices.  

We will begin the CGRC revision process with a JTA Study Workshop tentatively scheduled for February 13-15, 2023. We are asking that anyone who currently holds the CGRC (aka CAP) review the CGRC Exam Outline and consider the following questions:  

  1. Do you believe that the current CGRC exam outline adequately covers the existing and emerging cybersecurity techniques and threats CGRC practitioners are facing in their jobs today? 
  2. If not, what sort of topics/content should be added to the CGRC exam outline? 
  3. What content currently on the CGRC exam outline is no longer relevant to today’s professionals? 

Please send your answers to these questions to CGRCJTA@isc2.org no later than January 30, 2023. Please include your ID # in your email. Your comments will be compiled and presented to the JTA Committee for further review.  

Be sure to submit this exercise via the CPE portal so that you can earn credit for participating in this essential activity. Thank you for your invaluable insights and help!