Nicholson said ISACA is conscious such an accreditation program needs to hit the market as soon as possible, adding they set the 18-month timetable for release in September 2006 due to the new breed of information technology workers and CIOs not having come from an IT background.

"ISACA facilitates the systems auditor and security manager qualifications which are accepted worldwide as the certification for people in IT assurance, but we have found a lot of members have not come through the traditional IT audit stream and are neither security professionals in terms of managers but responsible for IT governance and these people are charged by organizations to look at where the company sits in terms of governance," Nicholson said.

"Basically it will cover all basic questions a governance framework would look to answer as people need to understand in a wider context of the enterprise that IT governance has a critical role to play and this accreditation would not only give some assistance in governance frameworks but recognition for new skills and experiences.

"We have charged a taskforce with looking at possible credential frameworks and we had a face-to-face meeting in October regarding the need for businesses to try and distill what exactly is needed and how to address that need. Whilst we think COBIT will provide the basis for this we realize the problem is larger than COBIT, but we believe at the strategy level, COBIT is excellent for managing IT."

At this stage the courses may run over four non-consecutive days. ISACA currently have a taskforce looking into developing the framework.