"The club membership sub has been the biggest ROI I've ever had. Like, this is absolutely insane, seeing everything that's happened since I got wind of the club last Fall." — Dex Copeland

Now Live · CGE-P Enrollment Open

GRC Engineer Certification

The GRC Engineering Club Academy

The CGE-P (Certified GRC Engineer – Practitioner) is the first GRC engineer certification built by GRC engineers, for GRC engineers.
Video training, hands-on labs, an open-book exam, and a real capstone you submit on GitHub.

Enroll in the GRC Engineer Certification

Introducing the CGE-P

Certified GRC Engineer — Practitioner

The CGE-P is the first certification designed specifically for GRC engineers. It covers everything from GRC frameworks and cloud compliance to hands-on implementation and automation — the skills you actually need to build modern compliance programs.

Study Guide

Comprehensive materials to prep early

Download PDF →

Exam Blueprint

Know exactly what to expect

Download PDF →

Free for Members

Full course + exam included with membership

What You'll Learn

Seven domains covering the full spectrum of GRC engineering.

GRC Engineering Foundations

Core concepts, maturity models, compliance frameworks (NIST, RMF, FedRAMP, CMMC), and the GRC Engineer career path.

Infrastructure as Code

Terraform fundamentals, compliant resource design, reusable modules, and using version control as your evidence trail.

Policy-as-Code

OPA/Rego policies for compliance enforcement, mapping NIST controls to executable policies, and shift-left compliance.

CI/CD for GRC Engineers

Build pipelines that automate security testing, policy validation, and evidence collection as a byproduct of deployment.

Cloud-Native Security & Monitoring

Control validation, continuous monitoring dashboards, drift detection, and cloud-native security services.

OSCAL & Continuous Authorization

OSCAL component models, System Security Plans, and the transformation roadmap from traditional ATO to cATO.

Applied GRC Engineering

End-to-end integration, portfolio projects, and capstone workflows that tie all domains together.

The Exam

Two components. Knowledge and proof you can build.

Certification Exam

  • 60questions — 50 multiple choice + 10 scenario-based with follow-ups
  • 90 minutes to complete
  • 72%passing score (43/60)

Domain Weights

Infrastructure as Code20%
GRC Engineering Foundations15%
Policy-as-Code15%
CI/CD for GRC Engineers15%
Cloud-Native Security & Monitoring15%
OSCAL & Continuous Authorization10%
Applied GRC Engineering10%

IaC Portfolio

A hands-on submission in "Pull Request Review" format. Fork a starter repo with intentionally non-compliant Terraform, write OPA policies to catch violations, fix the code, and submit a PR with before/after analysis and compliance rationale.

Grading Criteria

25%

Correctness

25%

Compliance Mapping

25%

Code Quality

25%

Documentation

This isn't a lab you forget after passing. Your portfolio submission becomes a real artifact you can showcase to employers.

Keeping Your Cert Active

Two paths to maintain your CGE-P. One rewards community involvement.

Recommended

Club Members

Stay active as a GRC Engineering Club member for 12 months post-certification and your CGE-P auto-renews. No extra steps, no logging hours.

  • Automatic renewal every 12 months
  • No CEU tracking required
  • Ongoing access to new courses and content

Non-Members

If you're not an active club member, maintain your certification by completing 20 hours of Continuing Education Units (CEU) within a 2-year cycle.

  • 20 CEU hours per 2-year renewal cycle
  • Self-reported professional development activities
  • Conferences, training, contributions, and more

Certification Roadmap

A full certification path for GRC engineers. Starting with the CGE-P.

P

CGE-P — Practitioner

Live now

The foundation. Covers GRC frameworks, cloud compliance basics, and hands-on implementation skills.

CGE-A — Associate

Coming Soon

Deeper dives into automation, tooling, and building scalable GRC programs.

CGE-Pro — Professional

Coming Soon

Advanced architecture, program leadership, and enterprise-scale GRC engineering.

CGE-S — Specialty

CGE-AUD · July 15, 2026

Focused specialty tracks. First up: CGE-AUD (Auditor Specialty), launching July 15, 2026, teaching auditors to evaluate code-defined controls. More to follow across AWS, Azure, GCP, AI, and RMF.

Explore the Auditor Specialty

Why CGE?

This isn't another vendor cert. It's built different.

Built by Practitioners

Created by working GRC engineers, not vendors or test-prep companies.

Community-Driven

Future courses contributed by community members who are experts in their domains.

Free for Members

Club members get full access to every course and exam at no extra cost.

Hands-On, Not Theoretical

You build real systems. Labs, projects, and infrastructure — not slides and flashcards.

GRC Engineer Certification FAQ

Everything you need to know about the CGE-P before you enroll.

What is the GRC engineer certification?

The CGE-P (Certified GRC Engineer – Practitioner) is the first certification built specifically for GRC engineers. It validates hands-on ability to design, implement, and maintain compliance automation across seven domains: GRC engineering foundations, infrastructure as code, policy-as-code, CI/CD for compliance, cloud-native security monitoring, OSCAL and continuous authorization, and applied GRC engineering.

Who is the CGE-P for?

The CGE-P is for GRC analysts, IT auditors, cloud engineers, and security practitioners who want to move from checkbox compliance to engineered compliance systems. It assumes some technical exposure but has no specific prerequisite certification.

How much does the CGE-P cost?

The CGE-P is free for active GRC Engineering Club members ($9.99/month membership, locked forever for early members). Non-members can purchase exam access for $250 — a one-time fee that includes the video training, labs, exam, capstone review, and certificate.

How long does it take to earn the CGE-P?

Most candidates complete the video training, hands-on labs, knowledge exam, and capstone in 4 to 8 weeks. The exam itself is 90 minutes (60 questions, 72% to pass). The capstone is a real GitHub project graded against a published rubric.

What does the CGE-P exam cover?

Seven domains: Infrastructure as Code (20%), GRC Engineering Foundations (15%), Policy-as-Code (15%), CI/CD for GRC Engineers (15%), Cloud-Native Security and Monitoring (15%), OSCAL and Continuous Authorization (10%), and Applied GRC Engineering (10%).

How is the CGE-P different from CISA, CRISC, or CGRC?

CISA, CRISC, and CGRC test audit and governance knowledge through multiple choice. The CGE-P tests engineering skill through a real capstone — you fork a non-compliant Terraform repo, write OPA policies to catch the violations, fix the code, and submit a pull request with before/after analysis. The grading rubric is 25% correctness, 25% compliance mapping, 25% code quality, 25% documentation.

Is the CGE-P recognized?

The CGE-P is the first certification designed by working GRC engineers, not vendors or test-prep companies. Recognition is growing alongside the GRC engineering discipline — the credential mirrors the technical skills employers list in real GRC engineer job descriptions.

How do I enroll?

Enroll at cert.grcengclub.com. Free for GRC Engineering Club members; $250 one-time for non-members. Enrollment includes full video training, hands-on labs, exam access, capstone submission, and your earned certificate.

Earn the GRC Engineer Certification

Enroll in the CGE-P today. Free for GRC Engineering Club members; $250 one-time for non-members.

Enroll Now Join the Club

Free for Club members and beta participants. Or buy a cert directly:

Buy CGE-AUD · $350Buy CGE-P · $250