CISA EXAM

Exam:

Certified Information Systems Auditor Exam

Industry:

Country:

Global

Website:

https://www.isaca.org/credentialing/cisa

CISA Exam Overview

The Certified Information Systems Auditor (CISA) exam, offered by ISACA, is a globally recognized certification for IS audit, control, and assurance professionals. Key details include:

Tests knowledge and skills required for IT auditing, control, and security professionals
Recognized as a standard of achievement for professionals in the field
Exam consists of 150 multiple-choice questions covering 5 job practice domains
4 hours to complete the exam
Exam available via computer-based testing at PSI locations worldwide or online proctored

Exam Dates and Registration

Exam offered during 3 testing windows each year: May 1-June 30, August 1-September 30, November 1-December 31
Registration typically opens 2-3 months before each testing window
Exam fees: $575 for ISACA members, $760 for non-members

Eligibility Requirements

To earn the CISA certification, candidates must:

Pass the CISA exam
Adhere to the ISACA Code of Professional Ethics
Agree to comply with the CISA Continuing Education Policy
Submit verified evidence of a minimum of 5 years of professional IS audit, control, assurance or security work experience

Substitutions and waivers of experience may be obtained through:

A maximum of 1 year of information systems experience OR 1 year of non-IS auditing experience can be substituted for 1 year of the experience requirement
60 to 120 completed university semester credit hours (the equivalent of a 2- to 4-year degree) can be substituted for 1 or 2 years of the experience requirement
A master’s degree in information security or IT from an accredited university can be substituted for 1 year of the experience requirement
2 years as a full-time university instructor in a related field can be substituted for 1 year of the experience requirement

Exam Content Outline

The CISA exam covers 5 domains:

Information System Auditing Process (21%)
Governance and Management of IT (17%)
Information Systems Acquisition, Development and Implementation (12%)
Information Systems Operations and Business Resilience (23%)
Protection of Information Assets (27%)

A detailed content outline is available on the ISACA website.

Who Should Take the CISA Exam?

The CISA exam is suitable for professionals who work in roles such as:

IT Auditors - Responsible for assessing and evaluating an organization's IT systems, processes, and controls
IT Security Professionals - Tasked with protecting an organization's information assets and ensuring compliance with security policies and standards
IT Consultants - Provide advice and guidance to organizations on IT governance, risk management, and control best practices
IT Managers - Oversee the planning, implementation, and maintenance of an organization's IT systems and processes

Related Certifications and Credentials

Several certifications and credentials are related to or complement the CISA, including:

Certified Information Security Manager (CISM) - Focuses on information security management and strategy
Certified in Risk and Information Systems Control (CRISC) - Emphasizes risk management and information systems control
Certified in the Governance of Enterprise IT (CGEIT) - Covers governance of enterprise IT and alignment with business goals
Certified Information Systems Security Professional (CISSP) - Concentrates on information security principles and practices

Maintaining the CISA Certification

To maintain the CISA certification, professionals must:

Adhere to the ISACA Code of Professional Ethics
Comply with the CISA Continuing Education Policy
Earn and report a minimum of 20 continuing professional education (CPE) hours annually
Pay an annual maintenance fee of $45 for ISACA members or $85 for non-members

More Info:

https://www.isaca.org/credentialing/cisa