CGEIT Certification Application

Applicants who passed CGEIT Exam July 2020 and Later

Please use Adobe Reader when filling out this application
APPLICANT INFORMATION electronically.

FULL NAME: ISACA ID:

EMAIL: PHONE NUMBER:

STEP 1. PASS EXAM

CGEIT applicants are required to have passed the CGEIT exam in the last five years.
If you have not yet passed the CGEIT exam, you can register online at www.isaca.org/credentialing/cgeit/plan-and-register
EXAM PASS YEAR:

STEP 2. REPORT CGEIT WORK EXPERIENCE

To qualify for CGEIT, you must have 5 years of experience managing, serving in an advisory or oversight role, and/or supporting the
governance of the IT-related contribution to an enterprise. This experience must be within the past 10 years of the application
submission date.
A minimum of one year of experience relating to the definition, establishment and management of a framework for the governance
of IT is required. The type and extent of experience accepted is described in CGEIT Domain 1: Governance of Enterprise IT (page
V-2). This one year of experience related to Domain 1 can be waived for those who hold the COBIT 2019 Design and
Implementation certificate.
Additional experience directly related to any two or more of the remaining CGEIT domains is required. The type and extent of
experience accepted is described in CGEIT Domains 2 through 4:

• Domain 2: IT Resources • Domain 3: Benefits Realization • Domain 4: Risk Optimization

Section A: Governance of Enterprise IT Experience

Please list related work experience you are claiming below, beginning with your current or most recent position.
Do not leave dates blank. If you are currently employed, please write today's date for the End Date.
Total work experience must be earned in at least Domain 1 and two or more of Domains 2 through 4 to qualify for certification.
Dates of Employment Duration of Experience CGEIT Domains
(MM/YY) performing CGEIT tasks (check all that apply)
# Company Name Start Date End Date Years Months 1 2 3 4
1
2
3
4

(minimum 5 years required) EXPERIENCE TOTAL IN YEARS:

Section B: Confirm 1-Year of Experience in Domain 1 or COBIT 2019 Design & Implementation certificate

You must be able to answer YES to at least one of the two following questions:

Are your total cumulative years of experience in CGEIT Domain 1, one year or greater? Check yes or no.
YES NO

Do you hold the COBIT 2019 Design and Implementation certificate? Check yes or no.
YES NO

Page A-1
 CGEIT Certification Application
Applicants who passed CGEIT Exam July 2020 and Later
Please use Adobe Reader when filling out this application electronically.
STEP 3. VERIFY CGEIT WORK EXPERIENCE
Using the Experience Verification Form on pages V-1 and V-2 of this application, please ask an employer to verify
all experience in Step 2. If more than one verifier is needed, you may fill out an additional application form (only
pages V-1 and V-2 are needed from the additional form).

STEP 4. SUBMIT APPLICATION PAYMENT

All applicants must pay a US $50.00 Application Processing Fee before the application can be fully
processed. Submit your payment at: www.isaca.org/bookstore/certification-related-products/cgeit_app

STEP 5. REVIEW AND SIGN TERMS & CONDITIONS AGREEMENT

Continuing Professional Education (CPE) Policy
I hereby apply to ISACA for the Certified in the Governance of Enterprise IT (CGEIT) certification in accordance with and subject to the procedures and
policies of ISACA. I have read and agree to the conditions set forth in the Application for Certification and the Continuing Professional Education (CPE)
Policy in effect at the time of my application, covering the Certification process and CPE policy.

Code of Ethics
I agree: to provide proof of meeting the eligibility requirements; to permit ISACA to ask for clarification or further verification of all information submitted
pursuant to the Application, including but not limited to directly contacting any verifying professional to confirm the information submitted; to comply
with the requirements to attain and maintain the certification, including eligibility requirements carrying out the tasks of a CGEIT, compliance with
ISACA’s Code of Ethics, standards, and policies and the fulfillment of renewal requirements; to notify the ISACA certification department promptly if I
am unable to comply with the certification requirements; to carry out the tasks of a CGEIT; to make claims regarding certification only with respect to
the scope for which certification has been granted; and not use the CGEIT certificate or logos or marks in a misleading manner or contrary to ISACA
guidelines.

Truth in Information
I understand and agree that my Certification application will be denied and any credential granted me by ISACA will be revoked and forfeited in the
event that any of the statements or answers provided by me in this application are false or in the event that I violate any of the examination rules or
certification requirements. I understand that all certificates are owned by ISACA and if my certificate is granted and then revoked, I will destroy the
certificate, discontinue its use and retract all claims of my entitlement to the Certification. I authorize ISACA to make any and all inquiries and
investigations it deems necessary to verify my credentials and my professional standing.

3rd Party Information Sharing

I acknowledge that if I am granted the Certification, my certification status will become public, and may be disclosed by ISACA to third parties who
inquire. If my application is not approved, I understand that I am able to appeal the decision by contacting ISACA. Appeals undertaken by a
Certification exam taker, Certification applicant or by a certified individual are undertaken at the discretion and cost of the examinee or applicant. By
signing below, I authorize ISACA to disclose my Certification status. This contact information will be used to fulfill my Certification inquiries and
requests.

Contact Policy
By signing below, I authorize ISACA to contact me at the address and numbers provided and that the information I provided is my own and is accurate.
I authorize ISACA to release confidential Certification application and certification information if required by law or as described in ISACA’s Privacy
Policy. To learn more about how we use the information you have provided on this form, please read our Privacy Policy, available at
www.isaca.org/privacy-policy.

Usage Agreement
I hereby agree to hold ISACA, its officers, directors, examiners, employees, agents and those of its supporting organizations harmless from any
complaint, claim, or damage arising out of any action or omission by any of them in connection with this application; the application process; the failure
to issue me any certificate; or any demand for forfeiture or re-delivery of such certificate. Not withstanding the above, I understand and agree that any
action arising out of, or pertaining to this application must be brought in the Circuit Court of Cook County, Illinois, USA, and shall be governed by the
laws of the State of Illinois, USA.
I understand that the decision as to whether I qualify for certification rests solely and exclusively with ISACA and that the
decision of ISACA is final.
I have read and understand these statements and I intend to be legally bound by them.
A handwritten signature or verifiable digital signature is required.

APPLICANT SIGNATURE: DATE:

STEP 6. SUBMIT APPLICATION

Please submit your application online at: https://support.isaca.org/app/cert/ask

Submitted applications take approximately two-to-three weeks to process. Upon approval, you will be notified via
email. A certification packet, including a letter of approval, a CGEIT certificate, and a CGEIT pin, will be sent to you
via postal mail to the primary address in your ISACA profile. Please allow four-to-eight weeks for delivery.

Page A-2
 CGEIT Experience Verification Form
Applicants who passed CGEIT Exam July 2020 and Later
Please use Adobe Reader when filling out this application electronically.
APPLICANT DETAILS
APPLICANT NAME: ISACA ID:

FORM INSTRUCTIONS FOR VERIFIER

The applicant (named above) is applying for CGEIT certification through ISACA. ISACA requires the applicant’s
work experience to be independently verified by a supervisor, manager, colleague, or client with whom they have
worked. Verifiers cannot be immediate or extended family, nor can they work in the Human Resources department.
By completing this form, you are attesting to the applicant's work experience as noted on their attached application
form (page A-1) and as described by the CGEIT examination content outline domains and task statements (page V-2).
Please return the form to the applicant for their submission. For any questions, please contact ISACA at
https://support.isaca.org.

VERIFIER INFORMATION
VERIFIER NAME:
COMPANY NAME: JOB TITLE:
EMAIL: PHONE NUMBER:

VERIFIER QUESTIONS
1. I am attesting to the following work experience earned by the applicant, as indicated on page A-1
(check all that apply):
Section A: Company 1 Section A: Company 3
Section A: Company 2 Section A: Company 4
2. I have functioned in the following role(s) to the applicant (must check at least one to qualify):
Supervisor Manager Colleague Client
3. I can also attest that the tasks performed by the applicant, as listed on page A-1 and V-2, are correct to
the best of my knowledge:
Yes No

VERIFIER AGREEMENT
I hereby confirm that the information on page A-1, V-1 and V-2 is correct to the best of my knowledge and there is no
reason this applicant should not be certified as a CGEIT. I am also willing, if required, to answer questions
from ISACA about the above information.
A handwritten signature or verifiable digital signature is required.

VERIFIER SIGNATURE: DATE:

Page V-1
 CGEIT Experience Verification Form
Applicants who passed CGEIT Exam July 2020 and Later
Please use Adobe Reader when filling out this application electronically.
EXAMINATION CONTENT OUTLINE DOMAIN INSTRUCTIONS
Please check the box next to the domain in which any or all tasks have been completed by the applicant.

DOMAIN 1 - Governance of Enterprise IT (Governance Framework, Technology Governance, Information Governance)

Task Statements:
• Establish the objectives for the framework for the governance of • Establish policies and standards that inform decision-making with
enterprise IT. regard to IT-enabled business investments.

• Establish a framework for the governance of enterprise IT.
• Identify the internal and external requirements for the framework for
the governance of enterprise IT.
• Incorporate a strategic planning process into the framework for the
governance of enterprise IT.
• Establish communication and awareness processes to convey the
value of the governance of enterprise IT.
• Evaluate, direct, and monitor IT strategic planning processes to ensure
alignment with enterprise goals.
• Evaluate, direct, and monitor stakeholder engagement.

• Incorporate enterprise architecture into the framework for the • Document and communicate the IT strategic planning processes and
governance of enterprise IT. related outputs.

• Incorporate information architecture into the framework for the • Ensure that enterprise architecture is integrated into the IT strategic
governance of enterprise IT. planning process.

• Align the framework for the governance of enterprise IT with • Ensure that information architecture is integrated into the IT strategic
enterprise-wide shared services. planning process.

• Establish roles, responsibilities, and accountabilities for information • Incorporate a prioritization process for IT initiatives into the framework
assets and IT processes. for the governance of enterprise IT.

• Establish a process for the identification and remediation of issues • Ensure that processes are in place to govern the lifecycle of
related to the framework for the governance of enterprise IT. information assets.

• Establish policies and standards that support IT and enterprise • Ensure the alignment of information governance with the framework for
strategic alignment. the governance of enterprise IT.

DOMAIN 2 - IT Resources (IT Resource Planning, IT Resource Optimization)

Task Statements:
• Ensure that processes are in place to manage the lifecycle of IT • Ensure the alignment of IT resource management processes with the
resources and capabilities. enterprise’s resource management processes.

• Incorporate sourcing strategies into the framework for the • Ensure that processes are in place for the assessment and
governance of enterprise IT to ensure optimization and control. development of personnel to align with business needs.

DOMAIN 3 - Benefits Realization (IT Performance and Oversight, Management of IT-Enabled Investments)
Task Statements:
• Ensure that a business case development and benefits realization • Evaluate the process that assigns ownership and accountability for
process for IT-enabled investments has been established. IT-enabled investments.

• Incorporate comprehensive and repeatable processes and activities • Ensure that IT investment management practices align with enterprise
into the framework for the governance of enterprise IT. investment management practices.

• Evaluate the framework for the governance of enterprise IT and identify • Evaluate the benefits realization of IT-enabled investments, IT
improvement opportunities. processes, and IT services.

• Ensure that IT-enabled investments are managed through their • Establish a performance management program for IT-enabled
economic lifecycle. investments, IT processes, and IT services.

• Ensure that improvement initiatives are based on the results derived

from performance measures.

DOMAIN 4 – Risk Optimization (Risk Strategy, Risk Management)

Task Statements:
• Ensure that comprehensive IT and information risk management • Ensure the alignment of IT and information risk management with
programs are established. the enterprise risk management framework.

• Ensure that a process is in place to monitor and report on the adherence • Ensure that IT and information risk management policies and
to IT and information risk management policies and standards. standards are developed and communicated.

• Ensure the alignment of IT processes with the enterprise's legal and

regulatory compliance objectives.

Page V-2