Certified Information Systems Auditor (CISA)

Our Certified Information Systems Auditor (CISA) training course will cover the following modules:

Module 1: The Process of Auditing Information Systems

• Develop and implement a risk-based IT audit strategy 
• Plan specific audits 
• Conduct audits in accordance with IT audit standards 
• Report audit findings and make recommendations to key stakeholders 
• Conduct follow-ups or prepare status reports

Module 2: IT Governance and Management of IT

• Evaluate the effectiveness of the IT governance structure 
• Evaluate IT organisational structure and human resources (personnel) management 
• Evaluate the organisation’s IT policies, standards, and procedures 
• Evaluate the adequacy of the quality management system 
• Evaluate IT management and monitoring of controls 
• Evaluate IT contracting strategies and policies, and contract management practices 
• Evaluate risk management practices 
• Evaluate the organisation’s business continuity plan

Module 3: Information Systems Acquisition, Development, and Implementation

• Evaluate the business case for proposed investments in information 
• Evaluate the project management practices and controls 
• Conduct reviews to determine whether a project is progressing in accordance with project plans 
• Evaluate controls for information systems 
• Evaluate the readiness of information systems for implementation and migration into production 
• Conduct post-implementation reviews of systems

Module 4: Information Systems Operations, Maintenance, and Support

• Conduct periodic reviews of information systems 
• Evaluate service-level management practices 
• Evaluate third-party management practices 
• Evaluate data administration practices 
• Evaluate the use of capacity and performance monitoring tools and techniques 
• Evaluate change, configuration, and release management practices 

Module 5: Protection of Information Assets

• Evaluate the information security policies, standards, and procedures 
• Evaluate the design, implementation, and monitoring of system and logical security 
• Evaluate the design, implementation, and monitoring of physical access and environmental controls 
• Evaluate the processes and procedures used to store, retrieve, transport, and dispose of information assets 

Our Certified Information Systems Auditor (CISA) training course is suitable for anyone with five years’ professional experience in information systems auditing, control or security, or those who will gain this experience in the next five years. For example:

• Internal and external auditors (both IT and financial)
• Compliance officers
• Finance/CPA professionals
• Information security professionals
• Risk management professionals
• IT professionals and management
• Information systems/IT auditors
• Information systems/IT consultants
• Information systems/IT audit managers
• Security professionals
• Non-IT auditors

Our Certified Information Systems Auditor (CISA) training course includes the following:

• A certificate of attendance.
• 4-day instructor-led training course
• Official ISACA Curriculum
• Exam voucher included with course tuition
• One-on-one after course instructor coaching
• Pre-reading
• Course Manuel
• Quizzes
• Exercises

Our Certified Information Systems Auditor (CISA) requires attendees to have 5 years or more experience in IS audit, control, assurance, and security experience.

There is no recommended reading for our Certified Information Systems Auditor (CISA) training course.

Certified Information Systems Auditor (CISA) Examination:

• Duration: 4 hours
• Format: Multiple Choice
• Number of questions: 150
• Pass Mark: 450

Our Certified Information Systems certificates have emerged as key qualifications for Security Professionals. More and more organisations are demanding experienced Information Security Professionals with the qualifications to prove that you can protect their valuable information and assets. It is the ideal time to achieve and maintain up to date qualifications. Purple Griffon currently offer the following Certified Information Systems classroom-based training courses:

• Certified Information Security Manager (CISM)
• Certified Information Systems Security Professional (CISSP)
• BCS Certificate In Information Security Management Principles (CISMP)
• Certified In Risk & Information Systems Control (CRISC)

Upon passing the Certified Information Systems Auditor (CISA) exam and successful certification application, you will be awarded the ISACA Certified Information Systems Auditor (CISA) qualification.

For the certification application, the following requirements must be met:

• Pass the Certified Information Systems Auditor (CISA) Exam within the past five years.
• Have the relevant full-time work experience in the Certified Information Systems Auditor (CISA) job practice areas.
• Submit the Certified Information Systems Auditor (CISA) certification application including the application processing fee.