Site Map | Contact Us

Certified Information Security Auditor® (CISA®)

 

(Information taken from CISA Fact Sheet at www.isaca.org)

 

Background

Since 1978, the CISA program has been a globally accepted standard of achievement among information systems (IS) audit, control and security professionals.

To earn the CISA designation, candidates are required to:

  • Successfully complete the CISA examination, which is offered twice annually in 11 languages and at more than 200 locations
  • Adhere to ISACA’s Code of Professional Ethics and agree to comply with a continuing professional education policy
  • Submit evidence of a minimum of five years of professional IS auditing, control or security work experience

A 2003 survey of ISACA members revealed that 70 percent of CISAs and members in the process of becoming CISAs believe that the CISA certification had helped advance their careers.  When all ISACA members, CISA or not, were asked if they thought gaining the CISA would help their careers in the future, the positive response was even greater at 77 percent. 

More than 50,000 professionals have earned the CISA designation since inception.  More than 31,000 candidates registered for the CISA examination in 2005, more than doubling 2004 registration.

CISA in the News

  • A 2006 study by Foote Partners LLC called CISA one of the highest-paying tech certifications.
  • “Those holding the Certified Information Systems Auditor (CISA) receive the highest incentive pay of all certs we track, at 14 percent of base salary—up 40 percent on 2003.” –David Foote, president and chief research officer at Foote Partners LLC, SC Magazine, September 2005.
  • "Earning the CISA designation demonstrates attainment of a highly regarded qualification and commitment to stay current in a fast-changing technological world. It brings with it recognition and positive reputation for certified professionals worldwide in the IS audit and control field." - Ria Lucas, development program investment manager at Telstra Corporation Ltd. and former chair of the CISA Certification Board, Certification Magazine, December 2004.

CISA in the Workplace

  • More than 400 CISAs are now employed in organizations as CEOs or CFOs.
  • More than 900 CISAs serve as CIOs or IS security directors.
  • More than 2,300 CISAs serve as audit directors or audit partners.
  • More than 8,500 CISAs are currently employed in managerial or consulting positions in IT operations, security or auditing.

CISA Recognition

  • The US Department of Defense includes CISA in its list of approved certifications for its information assurance professionals.
  • All assistant examiners employed by the US Federal Reserve Banks must pass the CISA examination before they are eligible for commissioning.
  • CISA is one of two certifications recognized by Washington, USA, to qualify an individual as a computer security professional.
  • The National Stock Exchange of India has recognized CISA as a requirement to conduct systems audits.
  • In Hong Kong, ISACA members who have held a CISA certification for at least four years have the right to vote for the city’s legislative counselors, as representatives of the IT category among the functional constituencies.
  • CERT-IN, the Indian Computer Emergency Response Team, has recognized CISA as one of the requirements to be empaneled to conduct security audits.
  • In Romania, banks desiring to implement distance or electronic payment instruments, such as Internet bank and home banking, are required by law to be certified by CISA-holding auditors.
  • In Singapore, CISA was accredited under the Critical IT Resource Program of the National Infocomm Competency Centre (NICC). This is the national body that oversees accreditation of IT-related certifications.
  • The State Bank of Pakistan began offering its employees who earned the CISA credential financial incentives:  reimbursement of their examination fees and payment of a cash bonus.
  • In Hyderabad, India, the State Bank also conferred incentives, in the form of examination and maintenance fee reimbursement and a significant honorarium, to employees earning and retaining the CISA.
  • The state of Washington (USA) has recognized CISA as one of the certifications an auditor must possess to be considered a computer security professional and perform audits of the state certification authority.
  • ISACA worked with the Chinese National Audit Office (CNAO) in 2002 to offer the first CISA exam in People’s Republic of China. The exam was conducted in four locations in PRC, in both English and Mandarin Chinese.

More information about the CISA Exam
Certification Requirements
CISA Frequently Asked Questions
CISA Exam Reference Materials
CISA Bulletin of Information
CISA Exam Registration Form
CISA Continuing Education Requirement

 

 

About Us | Site Map | Privacy Policy | Contact Us |
© 2007, ISACA South Florida Chapter
Email Webmaster