A person holding CRISC (Certified in Risk and Information Systems Control) certification granted by ISACA (Information Systems Audit and Control Association) gains expertise in identifying and managing enterprise IT risk and providing information systems controls. https://www.infosectrain.com/courses/crisc-certification-training/