The program was created by the Information Systems Audit and Control Association (ISACA) with an aim to standardise the knowledge and processes in IT governance. It also shows recognition of professionals within the field who show a satisfactory knowledge in this specialist areas.
To be awarded the certificate, IT professionals must partake in exams that are conducted in the months of June, September and December each year. These exams consist of numerous multiple-choice questions that equate to a possible 800 points available if completed correctly. To pass the exam, participants must achieve a minimum of 450 points. Professionals who pass must log 20 hours of relevant training annually, with a minimum of 120 hours in a three-year stint, to retain the certification. IT professionals who work in Cyber Security and management roles may have this qualification to demonstrate their knowledge in this sector.