Certified Information Systems Auditor

Search Wikipedia Last edited 14 days ago by an anonymous user

Certified Information Systems Auditor

Certified Information Systems Auditor (CISA)  is a globally recognized certification in the

field of audit audit,, control control  and security security o   f information systems. CISA gained worldwide acceptance having uniform certification criteria, the certification a high degree of visibility and recognition in the fields of IT security, security, IT audit, audit, IT risk management and governance. Vacancies in the areas of IT security management, IT audit or IT risk management often ask for a CISA certification.[1]T   he certification is extremely challenging and is associated with a high failure rate[citation needed ]. CISA is awarded by the Information Systems Audit and Control Association  Association (ISACA). [2]

Obtaining the certificate The C The   ISA ISACA certificate can be applied for if the following conditions are met [3] and passed the CISA exam Experience as an auditor of information information systems systems Compliance with Code of Ethics Continuous Continu ous trainin training g Compliance with the standards for audits of information systems

Membership in ISACA The CISA certification is not tied to membership in the worldwide umbrella organization ISACA IS ACA  a nd the local (mostly national) called Chapters.

Exam The world unified CISA exams are conducted three times a year: in June, September and December.[4] The exam is four hours in length, consists of 200 multiple choice questions and uses the format of one correct answer per question. The scoring is weighted depending on an predetermined value for each question with a passing score of 450

points and a 800 point score as the maximum. Some questions are purely for statistical purposes and do not affect the candidates score. CISA Review Courses are organised by various educational institutions across the globe, where student go through the CISA Review manual in the 5 Domains which are ; 1. Domain 1 — The Process of Auditing Information Systems 2. Domain 2 — Governance and Management of IT 3. Domain 3 — Information Systems Acquisition, Development and Implementation 4. Domain 4 — Information Systems Operations, Maintenance and Support 5. Domain 5 — Protection of Information Assets

Additional Requirements As well as passing the exam, candidates must also pass the following requirements:[5] The candidate must provide evidence of at least five years of professional experience. Related work experience or relevant higher education programs can provide credit against this. The candidate has to comply with the auditing standards of ISACA in the exercise of  audits and adhere to the ISACA Code of Professional Ethics. After obtaining the CISA certification 20 hours of training must be documented per year and at least 120 in a three-year period to retain certification.

See also IT Governance Frameworks

References 1. A recruiters perspective of CISA, http://www.isaca.org/KnowledgeCenter/Blog/Lists/Posts/Post.aspx?ID=277 2. Certification Center info page,http://www.isaca.org/Certification/CISA-CertifiedInformation-Systems-Auditor/Pages/default.aspx 3. CISA Certification Job Practice Areas,http://www.isaca.org/Certification/CISACertified-Information-Systems-Auditor/Prepare-for-the-Exam/Job-PracticeAreas/Pages/2011-CISA-Job-Practice-Areas.aspx 4. Isaca.org page about CISA Certification, http://www.isaca.org/About-ISACA/Pressroom/Pages/CISA-Fact-Sheet.aspx 5. http://www.isaca.org/Certification/CISA-Certified-Information-Systems-

Auditor/Pages/FAQs.aspx#certification Read in another language

  Mobile

Desktop

Content is available under CC BY-SA 3.0 u   nless otherwise noted. Terms of Use

Privacy