Browse Definitions :
Definition

Certified in the Governance of Enterprise IT (CGEIT)

Contributor(s): Corinne Bernstein

Certified in the Governance of Enterprise IT (CGEIT) is a vendor-neutral certification for experienced tech professionals looking to expand their knowledge and skills in enterprise information technology (IT) governance. The CGEIT credential is designed to provide certification for those who direct, manage or otherwise support the governance of IT in large organizations. ISACA, an international non-profit organization previously known as the Information Systems Audit and Control Association, developed and runs CGEIT, which is accredited by the American National Standards Institute (ANSI).

Information technology governance in large organizations continues to grow in importance due to an ever-increasing reliance on IT to deliver services, along with the rising need to comply with complex laws and regulations concerning financial accountability, data security and protection, and privacy. As a result, the need arises for governance credentials, such as Certified in the Governance of Enterprise IT (CGEIT), as well as others such as ITIL Expert, run by Axelos, Certified in IT Governance, Risk Management, and Compliance (CRISC)  from ISACA and PMI Risk Management Professional from the Project Management Institute.

Since the introduction of CGEIT in 2007, more than 7,000 individuals have achieved the certification, with a large percentage holding senior positions as IT directors, audit directors, CIOs, CISOs and CEOs. According to ISACA, “CGEITs who successfully comply with the continuing professional education policy will be better equipped to support the Board of Directors and executive management.”

Having CGEIT credentials can give IT pros a leg up at their current firms as well as during recruiting and hiring. Additionally, CGEIT is among the highest-paying IT certifications, with an average salary of US $121,363, according to the 2018 IT Skills and Salary Report conducted by Global Knowledge.

CGEIT Qualifications: Education and Experience

To receive the certification, candidates must pass a four-hour exam, which includes 150 questions and covers five areas: Framework for the Governance of Enterprise IT, Strategic Management, Benefits Realization, Risk Optimization and Resource Optimization. CGEIT-certified professionals also must have at least five years of cumulative work experience in IT enterprise governance, including at least one year defining, implementing and managing a governance framework. (Individuals may take the CGEIT exam before meeting the experience requirements, which must be met before the CGEIT designation is awarded.)

Additionally, CGEIT holders are expected to comply with the ISACA Code of Professional Ethics as well as the CGEIT Continuing Education Policy, attaining an annual minimum of 20 continuing professional education (CPE) hours in related coursework to reach a minimum of 120 CPE hours for a three-year reporting period.

This was last updated in June 2018

Continue Reading About Certified in the Governance of Enterprise IT (CGEIT)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

  • Whistleblower Protection Act

    The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from ...

SearchSecurity

  • RSA algorithm (Rivest-Shamir-Adleman)

    The RSA algorithm is the basis of a cryptosystem -- a suite of cryptographic algorithms that are used for specific security ...

  • remote access

    Remote access is the ability to access a computer or a network remotely through a network connection.

  • IP Spoofing

    IP spoofing is the crafting of Internet Protocol (IP) packets with a source IP address that has been modified to impersonate ...

SearchHealthIT

SearchDisasterRecovery

  • network disaster recovery plan

    A network disaster recovery plan is a set of procedures designed to prepare an organization to respond to an interruption of ...

  • virtual disaster recovery

    Virtual disaster recovery is a type of DR that typically involves replication and allows a user to fail over to virtualized ...

  • tabletop exercise (TTX)

    A tabletop exercise (TTX) is a disaster preparedness activity that takes participants through the process of dealing with a ...

SearchStorage

  • enterprise storage

    Enterprise storage is a centralized repository for business information that provides common data management, protection and data...

  • disk array

    A disk array, also called a storage array, is a data storage system used for block-based storage, file-based storage or object ...

  • optical storage

    Optical storage is any storage type in which data is written and read with a laser. Typically, data is written to optical media, ...

Close