Dates TBC	Chapter events for February and March are currently being planned - watch this space for further information.
24 Jan 2012	ISACA January eSymposium - Check out www.isaca.org for more information.

ISACA^® CRISC^TM Certification for Risk Professionals

ISACA^® is responding to market demand by introducing a new risk-related certification. The Certified in Risk and Information Systems Control^TM (CRISC) designation is for IT professionals who identify and manage risks through the development, implementation and maintenance of information systems (IS) controls. These professionals help enterprises accomplish business objectives such as effective and efficient operations, reliable financial reporting, and compliance with regulatory requirements.

ISACA established CRISC (pronounced “see risk”) to recognize IT professionals with skills and abilities related to:

• Risk identification, assessment and evaluation;
• Risk response;
• Risk monitoring;
• IS control design and implementation;
• IS control monitoring and maintenance.

CRISC complements ISACA’s three existing certifications: Certified Information Systems Auditor^® (CISA^®), established in 1978 and earned by more than 70,000 professionals since its inception; Certified Information Security Manager (CISM^®), earned by more than 12,000 professionals since it was launched in 2002; and the newer Certified in the Governance of Enterprise IT^® (CGEIT^®), earned by more than 4,000 professionals since it was developed in 2006:

• CISA is designed for IT professionals who perform independent reviews of control design and operational effectiveness; CRISC is for IT and business professionals who identify, evaluate and manage risk, and design, implement and maintain IS controls.
• CISM is for individuals who manage, design, oversee and/or assess an enterprise’s information security, including the identification and management of information security risks; CRISC is for IT professionals whose roles also encompass operational and compliance considerations.
• CGEIT is for IT and business professionals who have a significant management, advisory or assurance role relating to the governance of IT, including risk management; CRISC is for IT and business professionals who are engaged at an operational level to mitigate risk.

Additional information about the CRISC certification is available at www.isaca.org/crisc.

Appeal for Prospective CISA^® and CISM^® Exam Candidates

If you would be interested in exam preparation, available through the Scottish Chapter, please contact Steve Harrison for CISA^® preparation and Rory Alsop for CISM^® preparation. We have not yet provided CGEIT^TM exam preparation classes. If you would be interested in this, please contact Jim Brady, Chapter secretary and we will see what we can arrange.

Scottish Chapter Sponsors 15 Minute Member Presentations

The Committee has agreed to sponsor member evening presentations during the months when we have not booked an outside speaker. Presentation can be as short as 15 minutes (but longer is OK too). The committee can group these sessions together if required. The idea is that members can volunteer to share training or practical experiences which will benefit fellow members and at the same time earn CPE credits.

Please contact Charlie Meehan, our Vice President who has agreed to co-ordinate this initiative.

If there is any other facility or service that you would like the Chapter to offer please do not hesitate to contact any member of the committee and we will try our best to make it happen.

Please ensure that the email address you have supplied on the main ISACA^® website is valid. Otherwise you will miss out on mailings from both the chapter and international HQ.

You can renew your membership online by following the link at the top of the membership page. On this page you will also find links into other relevant areas of the ISACA^® international site.