Work Experience Requirement

Hi all, I'm hoping you can confirm my understanding of how the CRISC certification process works, and how the 3yr work experience piece fits in.

Work Experience:

• Past - A generic helpdesk job for ~2.5yrs between 2019 and 2022
• Current - A GRC position for the past ~1yr. I was an intern from June 2022 - Oct 2022, and smoothly transitioned into a FTE for the same role in Oct 2022.

Education:

• BA in Cybersecurity Dec 2022
• CompTIA Security+ July 2023

I don't believe ISACA credits degrees, my prior helpdesk position, or other certs towards work experience, so if I understand this right, I only have around a 1yr of experience in their eyes (ISACA states that internship experience does count on their site).

It seems like I'm allowed to take the exam, but not officially be certified until the work requirement is met. In that period of time, I'd be considered an CRISC Associate. This is the route I think I want to go.

Does anyone have any input on if this is a good strategy and/or if I'm mistaken about anything I said? I feel strongly that CRISC is the move for me, and y'all have shared an abundance of study materials, so I'm good on that front. I personally find it confusing how they have all of this listed out on the ISACA website so any clarity you guys can provide would be helpful.