What is the CITP credential?

Do I have to be a CPA and a member of the AICPA to apply?
Yes. You must be an AICPA Regular, Honorary, International Associate, or Retired Regular Member (CPA) in good standing and hold an unrevoked CPA permit, license or certificate issued by a legally constituted state authority.

Do I need an active CPA license to practice public accounting to become a CITP®?
No. To qualify for the CITP credential, you must hold a valid and unrevoked CPA license or certificate (whether active or inactive) issued by a state authority and be an active member of the AICPA.

Is there a way I can quickly assess whether I qualify for the Certified Information Technology Professional credential?
If you answer “yes” to the following questions, then you’re well on your way:

• Are you a member in good standing at the AICPA?

• Do you hold an unrevoked CPA certificate issued by a state authority?

• Have at least 1,000 business experience hours in the last five years (associated with the CITP Exam Content Specification Outline (CSO))?

Do I have to take an examination to qualify for the CITP credential?

Candidates must pass the CITP Examination to earn the CITP credential. The CITP exam requirement is waived for candidates who have passed ISACA’s Certified Information Systems Auditor (CISA®) certification exam.

What is the CITP examination requirement?

Candidates must pass the four-hour CITP Examination, compromising of 160 multiple-choice questions. The CITP exam is offered year-round, continuously. Candidates have the flexibility to take the exam online in a remote-proctored environment or at one of 300 test center locations across North America. Results are made available to candidates immediately following the conclusion of the exam.

The CITP exam requirement is waived for candidates who have passed ISACA’s Certified Information Systems Auditor (CISA®) certification exam.

• Register online at here. Registration is available to both AICPA members and non-members. Current pricing is listed on the membership dues page.

• Within two weeks of registration, candidates will receive their Notification To Schedule (NTS). Included in the NTS are instructions on how to schedule, a link to the test center, and your unique voucher code to enable you to schedule.

• After successfully passing the exam and fulfilling the business experience requirement of 1,000 hours in the CITP Exam Content Specification Outline (CSO), candidates can apply.

• Have more questions? Select the chat icon to the right of your screen, visit our help page for frequently asked questions and other contact information or submit an email to mailto:citp@aicpa.org.

How may I prepare for the CITP examination?

The CITP credential program is built around Content Specification Outline (CSO):

• Information Security Governance

• Cybersecurity Risk Management

• SOC for Cybersecurity

• Data Management

• Data Analysis & Reporting

• Business Intelligence Management

• IT Governance & Strategy

• IT Risks, Process & Controls

• System and Organization Controls (SOC) Reporting

The key to passing the examination is a combination of using the body of knowledge referred to in the CITP Exam CSO coupled with applying this body of knowledge by obtaining relevant work experience.

To assist in exam preparation, the AICPA offers:

CITP Exam Self-study Review Course

Closely aligned with the comprehensive outline of topics the CITP Exam covers, the AICPA’s CITP Exam Review Course is the only CITP exam review program backed by the resources and collective expertise of accounting professionals associated with the AICPA who specialize and demonstrate specific skills, proficiency and experience in the areas that include:

• Information security and cyber risks

• Business intelligence, data management and analytics

• IT governance, risks and controls

Through illustrative examples and explanations, this CPE course makes abstract concepts come to life for both seasoned professionals and students, and it will help you understand and successfully navigate in today’s technology-driven marketplace.

CITP Learning Pathway

What is the CITP learning pathway?
The CITP learning pathway is a three-part education series covering the comprehensive CITP credential body of knowledge. Aligned with the CITP credential body of knowledge, the CITP Learning Pathway compromises of the following three modules:

• Information Security & Cyber Risk (Module 1)
  This learning provides extensive coverage of subject matter from the Information Security & Cyber Risks module of the CITP credential body of knowledge, which accounts for 40% of the subject matter covered on the CITP Exam. Leverage this learning to acquire the essential skills and competencies in the following areas, in preparation for the CITP Exam:

  • Information security governance

  • Cybersecurity risk management

  • SOC for cybersecurity

• Business Intelligence, Data Management & Analytics (Module 2)
  This learning provides extensive coverage of subject matter from the Business Intelligence, Data Management & Analytics module of the CITP credential body of knowledge, which accounts for 20% of the subject matter covered on the CITP Exam. Leverage this learning to acquire essential skills and competencies in the following areas, in preparation for the CITP Exam:

  • Data management

  • Data analysis & reporting

  • Business intelligence management

• IT Governance, Risks & Controls (Module 3)
  This learning provides extensive coverage of subject matter from the IT Governance, Risks & Controls module of the CITP credential body of knowledge, which accounts for 40% of the subject matter the CITP Exam covers. Leverage this learning to acquire essential skills and competencies in the following areas, in preparation for the CITP Exam:

  • IT governance & strategy

  • IT risks, process & controls

  • System and Organization Controls (SOC) Reporting

CITP credential candidates can leverage the CITP Learning Pathway Bundle to acquire the skills and essential competencies in each of the core areas of the CITP discipline. Included in the bundle are the education resources for each of the three CITP credential body of knowledge modules above, in addition to a complimentary CITP Exam, which can be taken upon completion of all three modules.

What is the CITP credential?
The Certified Information Technology Professional (CITP) credential represents the intersection of technology and financial reporting. The CITP acknowledges CPAs and recognized equivalents who specialize and demonstrate specific skills, expertise and experience in areas that include:

• Information security and cyber risks

• Business intelligence, data management and analytics

• IT governance, risks and controls

CITPs understand the impact of these areas on financial reporting and overall business operations, positioning them as trusted advisers for clients and employers alike.

How long has the CITP credential been available?
The AICPA developed the credential over 20 years ago to respond to the needs of the marketplace and provide a specialty designation for CPAs with considerable training and experience in the body of knowledge. Beginning 2012, successful completion of an examination became a requirement together with experience and education requirements.

The CITP is a specialty designation that identifies CPAs with the skills to bridge between business and technology while meeting the strict requirements for a CPA license as well as additional training and experience in a body of knowledge that includes:

• Information Security Governance

• Cybersecurity Risk Management

• SOC for Cybersecurity

• Data Management

• Data Analysis & Reporting

• Business Intelligence Management

• IT Governance & Strategy

• IT Risks, Process & Controls

• System and Organization Controls Reporting

Why become a CITP credential holder?

Professionals pursue the CITP credential because it:

• Provides instant recognition as a professional who understands how information technology and financial reporting interrelate.

• Promotes a greater level of confidence amongst employers and clients

• Represents an expertise that is backed by the world’s largest member association representing the accounting profession – the AICPA.

• Demonstrates commitment to continuously improving IT skills and expertise, resulting in increased professional competency

• Expands opportunities for referrals from other practitioners, strategic partners, consumers and clients

• Provides access to a community of professionals with similar technology expertise and interests

In addition to the prestige that comes along with obtaining the CITP credential, you will also have access to the latest information, professional development and networking opportunities and premium benefits and resources, including:

• Discounts at the following AICPA conferences/events:

  • AICPA ENGAGE (Includes practitioners and TECH+ and advanced accounting & auditing tracks)

• Discounts for the following AICPA Certificate Programs:

  • Blockchain Fundamentals for Accounting and Finance Professionals Certificate

  • COSO Enterprise Risk Management Certificate Program

  • Cybersecurity Advisory Services Certificate Program

  • Cybersecurity Fundamentals for Finance and Accounting Professionals Certificate

  • Data Analytics Core Concepts Certificate

  • Data Analytics Modeling Certificate

  • Robotic Process Automation Fundamentals for Accounting and Finance Professionals Certificate

  • SOC for Cybersecurity Certificate

Additional resources include:

• Inclusion in the AICPA online Membership and Credential Holder Directory, the public’s No. 1 tool to search for CITP credential holders.

• Access to a CITP marketing toolkit containing resources to promote your value as a CITP credential holder

• Access to the Privacy Management Framework (PMF) mapping tool for us in managing privacy risk

• The CITP Champion Program, which offers the support, structure, and resources to collaborate with state societies and universities on the value of the CITP credential

Please review the AICPA overview of CITP benefits.

I am reinstating my AICPA membership, can I reinstate my CITP credential?
The existing reinstatement application is here if you wish you reinstate your CITP credential, as long as your AICPA membership is in good standing.

What is required to maintain the CITP Credential?

To maintain the CITP credential, please review the recertification requirements information.

Do I need an active license to practice public accounting to become a CITP?
No. CITP credential holders must only hold a valid and unrevoked CPA permit, license or certificate (active or inactive) issued by a state authority and be an active AICPA member.

Does the AICPA audit CITP applications?
Yes. A percentage of approved applications are selected for random audit. Any misrepresentations or incorrect information may result in disciplinary action, including suspension or revocation of CITP eligibility and/or credential.

All approved applications are subject to random audit at any time. False or incorrect applications may result in suspension or revocation of CITP eligibility and/or credential.

Looking at the qualifications for a CITP credential, I believe I may qualify. What is the next step?
Upon successful completion of the CITP examination requirement and fulfillment of the business experience requirement, candidates must complete the CITP credential application, which includes payment of the CITP credential application fee.

What is the membership fee to become a CITP credential holder?
Current pricing is listed on the membership dues page.

May a firm include the “Certified Information Technology Professionals” credential or “CITP” on its letterhead and in marketing materials?
The CITP is an individual credential and not a firm credential. However, it is permissible under AICPA Ethics Rule 502 for a firm to hold itself out as Certified Information Technology Professionals and to use the CITP credential on its letterhead and in marketing materials if all partners or shareholders of the firm have the CITP credential. State accountancy rules may impose other restrictions.

What is the correct use of the CITP credential?
The use of “CITP” on letterheads, business cards and other marketing materials is governed by the rules of the board of accountancy in the state(s) in which you practice. The AICPA does not have a prescribed format for the credential.

Most state accountancy laws are silent on whether CPAs can use the specialty credential. In 1994, the U.S. Supreme Court decided the Ibanez case, which held that states cannot prohibit a CPA from using a specialty credential, such as the CITP credential, unless there is factual proof of real or potential harm. If you check with your state board and run into a problem in using the credential, email the AICPA.

How does the CITP credential differ from other information technology credentials?
The AICPA Certified Information Technology Professional credential provides recognition as a professional who understands how information technology and financial reporting interrelate. CITP credential holders demonstrate skills, expertise and experience in areas that include:

• Information security and cyber risk

• Business intelligence, data management and analytics

• IT governance, risks and controls

CITP credential holders understand the impact of these areas on financial reporting and overall business operations, positioning them as trusted advisers for clients & employers alike.