Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term CGRC

Training Camp • Cybersecurity Glossary

What is CGRC?

CGRC (Certified in Governance, Risk and Compliance) is an ISC2 cert for professionals authorizing systems using NIST RMF and risk frameworks.

Glossary > Governance, Risk & Compliance > CGRC

Understanding CGRC

CGRC (Certified in Governance, Risk and Compliance) is an ISC2 certification, formerly known as the CAP (Certified Authorization Professional). It is designed for security and IT professionals who authorize and maintain information systems using risk management frameworks such as NIST RMF. The exam validates knowledge across security and privacy governance, risk management, system categorization, control selection and implementation, assessment, authorization, and continuous monitoring.

Learn More About CGRC:

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →