CGEIT - Certified in the Governance of Enterprise IT

The CGEIT qualification

The CGEIT (Certified in the Governance of Enterprise IT) qualification demonstrates that holders have the expert knowledge and experience necessary to support GEIT (governance of enterprise IT) – ensuring that an organization’s IT is governed from the top, and therefore aligned with business needs and goals.

The CGEIT certification was designed for professionals with significant management experience relating to GEIT, and is recognized worldwide as one of the information security industry’s premier qualifications.

CGEIT is divided into six job practice areas, each of which is covered in the CGEIT Review Manual and exam:

1. IT governance framework
2. Strategic alignment
3. Value delivery
4. Risk management
5. Resource management
6. Performance measurement

What are the requirements for the CGEIT qualification?

CGEIT is awarded to candidates with at least five years of relevant work experience who pass a rigorous written exam based on five job practice domains:

• Domain 1: Framework for the Governance of Enterprise IT (25% of exam)

  “Ensure the definition, establishment, and management of a framework for the governance of enterprise IT in alignment with the mission, vision and values of the enterprise.”

• Domain 2: Strategic Management (20% of exam)

  “Ensure that IT enables and supports the achievement of enterprise objectives through the integration and alignment of IT strategic plans with enterprise strategic plans.”

• Domain 3: Benefits Realization (16% of exam)

  “Ensure that IT-enabled investments are managed to deliver optimized business benefits and that benefit realization outcome and performance measures are established, evaluated and progress is reported to key stakeholders.”

• Domain 4: Risk Optimization (24% of exam)

  “Ensure that an IT risk management framework exists to identify, analyze, mitigate, manage, monitor, and communicate IT-related business risk, and that the framework for IT risk management is in alignment with the enterprise risk management (ERM) framework.”

• Domain 5: Resource Optimization (15% of exam)

  “Ensure the optimization of IT resources including information, services, infrastructure and applications, and people, to support the achievement of enterprise objectives.”

You can find more information about the five domains on the ISACA website.

---

How do you pass the CGEIT exam on the first attempt?

1. Check that you have the relevant five years of work experience to qualify
2. Register for and schedule your exam with ISACA
3. Read the official ISACA study guides and third-party textbooks
4. Plan a self-study program that covers all CGEIT knowledge domains
5. Attend an exam preparation training course a few days before you sit the exam

---

How to register for and schedule the CGEIT exam

The CGEIT exam is offered via a computer-based testing session, available during three testing windows per year. You must first register online with ISACA and pay for the exam in advance.

ISACA’s 2019 exam registration fees are:

• $575 for ISACA members
• $760 for non-members

You will then receive email instructions on scheduling an exam appointment at a local PSI exam center.

---

Maintaining your CGEIT

The CGEIT CPE (continuing professional education) policy ensures that all CGEITs maintain an adequate level of knowledge and proficiency by attaining and reporting 20 CPE hours a year.

In addition, a minimum of 120 contact hours are required during a fixed three-year period. Failing to comply with these requirements will result in your CGEIT designation being revoked.

See the Maintain Your CGEIT page on the ISACA website for further details.