The Certified Cyber Governance Professional (CCGP) is a certification designed for professionals seeking to validate their knowledge of cybersecurity governance, cyber risk management, organizational resilience, and security governance frameworks, based on the NIS2 Directive, the Digital Operational Resilience Act (DORA), CIS Controls, and the NIST Cybersecurity Framework (CSF) 2.0.
This certification covers key topics from the NIS2 Directive, the Digital Operational Resilience Act (DORA), CIS Controls, and the NIST Cybersecurity Framework (CSF) 2.0, including cybersecurity governance principles, cyber risk management, organizational resilience, governance frameworks, leadership responsibilities, security controls, and the implementation of policies, processes, and controls to strengthen organizational cybersecurity and operational resilience.
The Certified Cyber Governance Professional (CCGP) certification exam is an online, closed-book, and remotely proctored exam. This exam consists of 60 multiple-choice questions. The passing score is 70%. Candidates will have 60 minutes to complete the exam. Validate your cyber governance knowledge and advance your career. Purchase your exam voucher now!
|
Exam code |
ITC-219 |
|
Launch date |
July 11, 2026 |
|
Exam description |
The Certified Cyber Governance Professional (CCGP) certification exam validates the candidate's knowledge of cybersecurity governance, cyber risk management, and organizational resilience in accordance with the NIS2 Directive, the Digital Operational Resilience Act (DORA), CIS Controls, and the NIST Cybersecurity Framework (CSF) 2.0. |
|
Current version |
v1 (July 11, 2026) |
|
Exam format |
Multiple choice; computer-based; closed book (online proctored exam) |
|
Number of questions |
60 questions |
|
Passing score |
70% (42 out of 60) |
|
Exam duration |
60 minutes |
|
Level |
Advanced |
|
Languages |
English and Portuguese |
|
Exam description |
This certification covers key topics from the NIS2 Directive, the Digital Operational Resilience Act (DORA), CIS Controls, and the NIST Cybersecurity Framework (CSF) 2.0, including cybersecurity governance principles, cyber risk management, organizational resilience, governance frameworks, leadership responsibilities, security controls, and the implementation of policies, processes, and controls to strengthen organizational cybersecurity and operational resilience. |
|
RECOMMENDED HOURS OF STUDY |
32 hours |
|
BLOOM'S TAXONOMY |
Level 2 (Understanding), Level 3 (Applying), Level 4 (Analyzing), and Level 5 (Evaluating) |
|
Recommended reading |
• NIS2 Directive |
|
Prerequisites |
There are no prerequisites for this certification program. |
|
Recommended experience |
Six months of work experience in Cyber Governance |
|
Validity period |
Lifetime |
| Domains | Weight |
|---|---|
|
1. NIS2 Directive |
25% |
|
2. Digital Operational Resilience Act (DORA) |
25% |
|
3. CIS Controls |
25% |
|
4. NIST Cybersecurity Framework (CSF) 2.0 |
25% |
Total | 100% |
Browse our certification programs and choose your certification.
Discover the exam objectives and prepare for your exam.
Register for your online proctored exam.
Take your online proctored exam in the comfort of your home or office.
Congratulations! You are certified!
After purchasing an exam voucher, candidates will have 180 days to take the exam.
The exam voucher includes 2 retakes in case the candidate fails the first attempt.
There are no prerequisites to take the exams. ITCERTS recommends that candidates have at least six months of work experience in the area that the certification exam covers.
If a candidate does not achieve a passing score on the first attempt, there is no waiting period between the first and the second attempt. If a candidate does not achieve a passing score on the second attempt, the candidate must wait at least 7 days before retaking the exam for a third time. A candidate may not take a given exam any more than three times per year (12 months).
Visit the Online Proctored Exam registration page to find complete instructions.
Training is recommended as part of your certification preparation, but it is not mandatory.
Our exams are currently available in English and Portuguese.
Exams are delivered online (Online Proctored Exams) and can be taken from anywhere in the world.
ITCERTS certifications are considered good-for-life and do not expire.
Your employer can verify your certification on our certification verification page. Your certification number will be needed in order to process the verification.
Subscribe to our newsletter