ISACA is a global nonprofit focused on IT governance, assurance and security. It was founded in 1969 and now has over 100,000 members worldwide. ISACA provides certifications in areas like information systems audit, IT governance, and security. It also develops frameworks like COBIT for enterprise IT governance. ISACA membership offers opportunities for professional development, networking, and advancement in fields like IT auditing, security, risk management and governance.

1. ISACA
For Student

2. Get to know
ISACA

3. ISACA (Information Systems Audit and Control Association)
• 1969 ISACA was incorporated in, this to recognized for a centralized source of
information and guidance in the growing field of auditing controls for computer
systems.
• It was formerly known as the Information Systems Audit and Control Association but
now goes simply by ISACA
• ISACA is a global nonprofit association focused on IT governance.
• Today, ISACA’s membership—more than 100,000 strong worldwide—is
characterized by its diversity. Members live and work in more than 180 countries and
cover a variety of professional IT-related positions—to name just a few, IS auditor,
consultant, educator, IS security professional, regulator, chief information officer and
internal auditor
• Another of ISACA’s strengths is its chapter network. ISACA has more than 190
chapters established in over 75 countries worldwide, and those chapters provide
members education, resource sharing, advocacy, professional networking and a host
of other benefits on a local level.

4. Area of ISACA certification:
1. Information systems audit process
2. Information systems governance
3. Systems and infrastructure life cycle management
4. Information technology service delivery and support
5. Protection of information assets
6. Business continuity and disaster recovery

5. ISACA Vision and Mission
ISACA’s vision (to aspire to as an organization)
“Trust in, and value from, information systems”
ISACA’s mission (to guide decision making and investments)
“For professionals and organizations
be the leading global provider of knowledge, certifications, community,
advocacy and education
on information systems assurance and security,
enterprise governance of IT, and IT-related risk and compliance”

6. About ISACA
• ISACA Is Non-profit association in the area of:
• IT auditing/ auditors
• IT security professionals
• IT risk and compliance professionals
• IT governance professionals and more!
• Nearly all industry categories: finance, banking, public
accounting, government/public sector, technology, utilities
and manufacturing.

7. About ISACA
• What is an IT Auditor?
An IT Auditor performs a formal inspection and verification to
check whether a standard or set of guidelines is being
followed, records are accurate, or efficiency and effectiveness
targets are being met.
CISA certification is the gold-standard credential for Information Systems
Auditors. CISA certified systems auditors have the skills and expertise to
audit computer systems, manage vulnerabilities, institute security controls
and oversee compliance at the enterprise level
Big 5 IT Certification with highest salary.
 Research from Footepartners

8. The role of IT auditor's was born through a union of accounting and technology
fields in a computer-driven economy.
Responsible for identifying risks to a company by way of its online systems,
including databases, email, intranet and Internet networks, as well as tangible
threats to computer hardware and equipment.
Avoiding damage done by disgruntled former workers, competitors or hackers
while highlighting inadequacies and areas for improvement are all roles of this
profession.
To succeed in this position, you must have a variety of technology, business
and social skills.

9. Skills of Auditor
• Hard Skills
The hard skills IT auditors include:
• Strong understanding of general computer controls,
data analytics, basic system infrastructure, and risk
assessment.
• Data analytics is a process of inspecting, cleaning,
transforming, and modeling data to highlight useful
information, suggest conclusions, and support
decision-making.
• IT auditors use specialized data analysis tools or off-the-
shelf database and spreadsheet software to detect
fraud, find data errors, and help the organization
eliminate waste

10. • The IT auditor needs a solid base knowledge of Basic
system infrastructure such as hardware, software,
networks, database, OS and cloud computing -- from
installation to operation and repair.
• Programming knowledge is helpful, since IT auditing
uses computer-assisted audit tools to perform many job
functions.
• Note :The auditor must learn and monitor
advancements in these tools, then apply the correct
ones to each task.

11. • What is IT Security Professional?
IT Security Professional is the person
responsible for implementing, monitoring and
enforcing security rules established and
authorized by management.
Certified Information Security Manager (CISM) | CISM covers four vital domains in
cyber security management: security governance, risk management, security
program creation and incidence response. The key differentiator of CISM is its
focus on the big picture, i.e., how to use information security to advance top-level
business goals.

12. • To minimize liabilities/reduce risks, the IT
security professional must:
– Stay current with security technology
– Stay current with laws and regulations

13. About ISACA
• What is an IT risk and compliance officer?
IT risk and compliance officers assess the business risk
associated with the use, ownership, operation, involvement,
influence and adoption of IT within enterprise while collecting
evidence on both the effectiveness and operation of the IT
controls during an audit period.
Certified in Risk and Information Systems Control
(CRISC) | CRISC certification demonstrates a mastery of
IT and enterprise risk management. Calculating and
mitigating risk is a coveted skill in enterprise IT; talented
CRISC certified pros make significant contributions to
the business and are rewarded in kind.

14. What is IT Governance Professional?
An IT governance professional is a person who oversees all the rules and regulations
under which information systems function and the mechanisms put in place to ensure
that the information systems in place sustain and extend the organization's strategies
and objectives.
IT governance (ITG) is defined as the processes that ensure the effective and
efficient use of IT in enabling an organization to achieve its goals.
IT demand governance is the process by which organizations ensure the
evaluation, selection, prioritization, and funding of competing IT investments;
oversee their implementation; and extract (measurable) business benefits.
Certified in the Governance of Enterprise IT (CGEIT) | CGEIT validates
expertise in the principles and real-world applications of enterprise IT
governance. CGEIT certified professionals have the credibility to ensure good
governance, which reduces unanticipated security issues and helps to
formulate an agile response to any surprises that still arise.

15. About ISACA
Why a career in…IT audit, IT security, IT risk and
compliance or IT governance?
• High-level understanding of organization
and industry
• Exposure to senior-level management
• Growth market, excellent salary potential
• Networking opportunities
• Potential global travel
• Diverse work environment

16. 16
Skill-sets needed?
• Creative
• Conceptual
• Excellent communicators
• Persuasive
• Inquisitive
About ISACA

17. About ISACA: Certification
90,000+ CISAs certified since inception in 1978 18,000+ CISMs certified since inception in 2003
16,000+ CRISCs 5,000+ CGEITs certified since inception in 2007 certified since inception in 2010

18. 18
About ISACA: Certification
Value of Professional Certifications
• Global recognition
• Credibility
• Higher pay
• Diverse career opportunities
• Career advancement

19. About ISACA: Certification
Recognition: SC Magazine Awards
CISA: SC Magazine’s 2011 Best Professional Certification Program finalist; 2009 winner
CISM: SC Magazine’s 2009-2012 Best Professional Certification Program finalist
CGEIT: SC Magazine’s 2011 Best Professional Certification Program finalist

20. About ISACA: Certification
Foote Partners Salary Survey on IT Certifications
CISA –
• Consistently ranking among the top-paying
industry certifications
• Ranked as having the high paid premium
• 2ND highest paying IT security certification in
2011
• Consistently ranks among the top-paying
industry certifications
• Top five of Foote Partners’ 2011 semiannual
“HOT LIST Forecast” of IT skills and
certifications that will increase in value
(Source: Foote Partners IT Skills and Certification Pay Index, 2nd quarter 2011)

21. About ISACA
Foote Partners Salary Survey On IT Certifications
CISM
• Highest-paying IT security certification in the
2012 IT Skills and Certifications Pay Index
(ITSCPI)
• The top paying IT security certification in 2011
• Ranked as having the highest pay premium
(Source: Foote Partners IT Skills and Certification Pay Index, 2nd quarter 2011)

22. About ISACA: Research
COBIT 5
For more information please visit www.isaca.org/cobit5

23. About ISACA: Research
COBIT
COBIT ranks globally among top four IT Governance Frameworks
Fact: 60,000+
downloads of COBIT 5
since its introduction
in April 2012
For more information please visit www.isaca.org/cobit5

24. About ISACA: Research
COBIT
Harley-Davidson, USA
Sun Microsystems, USA
DataSek, Uruguay
Dongbu HiTek, Korea
Jefferson Wells, USA
Manta Group, Canada
Pension-Fennia, Finland
Government of Dubai
Ontario Pension Board
Prudential, Asia
Blackboard, Inc.
Allstate, USA
Fact: COBIT has been touted in
the media in 40 countries.
Unisys, USA
Bahrain Civil Service
Central Bank of Republic of Armenia
Curtin University of Technology, Western Australia
Blue Cross/Blue Shield, No. Carolina & IBM Consulting
Kuwait Turkish Participation Bank
Canadian Tire Financial Services
Charles Schwab & Co. Inc., USA
U.S. Dept of Veterans Affairs
Adnoc Distributions, UAE
For more information please visit www.isaca.org/cobitcasestudies

25. Move Yourself Forward
Student Membership
As an ISACA student member, you will join a community of more than
1,000 students in more than 300 universities worldwide.
ISACA Students major in a variety
of areas including:
Information systems
Business administration
Accounting
Information technology
Engineering
Computer Science
So don’t be left behind…Join ISACA and see what you can find.

26. Move Yourself Forward
ISACA
Student Member Benefits
“Knowledge and experience to put students far
ahead of the competition when it comes time to
begin their careers.”

27. ISACA Student Groups
ISACA urges students to form an ISACA Student Group on campus. ISACA
student groups encourage education beyond the classroom and allow
students to network and learn from each other.
Benefits of creating an ISACA Student Groups are:
• Ability to affiliate, if possible, with an ISACA local chapter and participate in
their events;
• Become recognized by your educational institution; student membership in
ISACA is not required;
• Internationally recognized by ISACA HQ with an official student group logo
• Have the ability to interact with professionals in
the field
For more information about student group including
a step by step guide, please visit
http://www.isaca.org/studentgroup and
http://www.isaca.org/createISG