This document provides information about ISACA certification programs. It discusses the CISA, CISM, CGEIT, and CRISC certifications, including requirements to earn each certification, exam structure and content areas, study materials, and continuing education requirements to maintain certification. It also provides details about ISACA as an organization, including its history, members, and chapters worldwide.
Alta dirección: Cómo encontrar soluciones novedosas y simplesHéctor Debernardo
Esta presentación, elaborada por la Dra. Margarita Hurtado Hernández y el Dr. Héctor D. Debernardo, expone las preguntas clave para diagnosticar la situación actual de una empresa y recomienda el enfoque sistémico y herramientas específicas como medios para encontrar soluciones novedosas y simples.
Los autores han aplicado exitosamente estos conceptos en numerosas oportunidades y los enriquecen con la experiencia adquirida en más de 100 empresas de manufactura, comerciales y de servicios, con las que han colaborado en México, Argentina, Colombia y España, entre otros.
El Dr. Debernardo enseña y ayuda a implementar estas herramientas en sus actividades de dirección de empresas, asesoría a la alta dirección y mentoría de ejecutivos y sucesores. La Dra. Hurtado Hernández las difunde y aplica en sus actividades académicas de docencia universitaria e investigación.
Cloud computing is less a technological revolution than it is a business revolution. In this session we'll look at trends that are driving cloud computing and the opportunities these bring to ISV organizations to compete in the marketplace. We’ll see how cloud computing can change an ISV's business model in potentially radical new ways and discuss concrete ways your business can grow in the modern world of software.
Glion Institute of Higher Education, is among the top 3 hospitality management schools in the world for an international career and provides undergraduate, graduate and post graduate studies in the fields of hospitality, hotel and tourism to students from all over the world. Our academic programs are accredited at university level by the New England Association of Schools and Colleges in the USA.
¿por que adquirir este fabuloso manual y curso on line?
Esta diseñado para enseñar a todo aquel que quiera iniciar en la industria del Network Marketin Multinivel, como hacerlo con el pie derecho, las técnicas y habilidades para cientos de afiliados cada mes.
Un curso que estará aportando muchos conocimientos y desarrollando el potencial de cada uno de los estudiantes de Multinivel.
Alta dirección: Cómo encontrar soluciones novedosas y simplesHéctor Debernardo
Esta presentación, elaborada por la Dra. Margarita Hurtado Hernández y el Dr. Héctor D. Debernardo, expone las preguntas clave para diagnosticar la situación actual de una empresa y recomienda el enfoque sistémico y herramientas específicas como medios para encontrar soluciones novedosas y simples.
Los autores han aplicado exitosamente estos conceptos en numerosas oportunidades y los enriquecen con la experiencia adquirida en más de 100 empresas de manufactura, comerciales y de servicios, con las que han colaborado en México, Argentina, Colombia y España, entre otros.
El Dr. Debernardo enseña y ayuda a implementar estas herramientas en sus actividades de dirección de empresas, asesoría a la alta dirección y mentoría de ejecutivos y sucesores. La Dra. Hurtado Hernández las difunde y aplica en sus actividades académicas de docencia universitaria e investigación.
Cloud computing is less a technological revolution than it is a business revolution. In this session we'll look at trends that are driving cloud computing and the opportunities these bring to ISV organizations to compete in the marketplace. We’ll see how cloud computing can change an ISV's business model in potentially radical new ways and discuss concrete ways your business can grow in the modern world of software.
Glion Institute of Higher Education, is among the top 3 hospitality management schools in the world for an international career and provides undergraduate, graduate and post graduate studies in the fields of hospitality, hotel and tourism to students from all over the world. Our academic programs are accredited at university level by the New England Association of Schools and Colleges in the USA.
¿por que adquirir este fabuloso manual y curso on line?
Esta diseñado para enseñar a todo aquel que quiera iniciar en la industria del Network Marketin Multinivel, como hacerlo con el pie derecho, las técnicas y habilidades para cientos de afiliados cada mes.
Un curso que estará aportando muchos conocimientos y desarrollando el potencial de cada uno de los estudiantes de Multinivel.
BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie ISACA organizacijos veiklą, sertifikacijas ir mokymus. Renginys vyko balandžio 18 d., 2013.
BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie CISM (Certified Information Security Manager) sertifikaciją. Renginys vyko balandžio 18 d., 2013.
Certified Information System Auditor- CISAKnowledgehut
Certified Information Systems Auditor (CISA®) is a globally recognised professional
certication for Information Technology Audit professionals, and serves to validate
their competence in the fields of audit, control and security of information systems.
The certificate is awarded by the Information Systems Audit and Control Association
(ISACA).
The CISA® certification is considered the globally accepted standard of proficiency
in IS audit. CISA®-certied individuals have demonstrated their capabilities in managing
vulnerabilities and instituting controls within the enterprise, and undertake to
comply with the rigorous auditing standards set by ISACA. They are highly sought
after in hiring circles - having this achievement under your belt would lead to more
extensive employment opportunities with higher pay grades.
CISA Live Online Training from Mercury Solutions is an engaging, instructor-led course that enhances the employment opportunities of the professionals in COVID and post COVID era.
BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie CISA (Certified Information Systems Auditor) sertifikaciją. Renginys vyko balandžio 18 d., 2013.
Certifications and Career Development for Security ProfessionalsDan Houser
Joint presentation by Kevin Flanagan & Dan Houser, RSA 2008. Overview of career development, professional security/risk certifications, and how to develop and drive your career plan.
A presentation about the many reasons professionals in the security, risk, safety, facilities, loss prevention, and investigations industries should join ASIS International (formerly the American Society for Industrial Security)
BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie ISACA organizacijos veiklą, sertifikacijas ir mokymus. Renginys vyko balandžio 18 d., 2013.
BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie CISM (Certified Information Security Manager) sertifikaciją. Renginys vyko balandžio 18 d., 2013.
Certified Information System Auditor- CISAKnowledgehut
Certified Information Systems Auditor (CISA®) is a globally recognised professional
certication for Information Technology Audit professionals, and serves to validate
their competence in the fields of audit, control and security of information systems.
The certificate is awarded by the Information Systems Audit and Control Association
(ISACA).
The CISA® certification is considered the globally accepted standard of proficiency
in IS audit. CISA®-certied individuals have demonstrated their capabilities in managing
vulnerabilities and instituting controls within the enterprise, and undertake to
comply with the rigorous auditing standards set by ISACA. They are highly sought
after in hiring circles - having this achievement under your belt would lead to more
extensive employment opportunities with higher pay grades.
CISA Live Online Training from Mercury Solutions is an engaging, instructor-led course that enhances the employment opportunities of the professionals in COVID and post COVID era.
BKA renginio "Kaip tapti lyderiais IT valdymo, saugos ir audito srityje?" pranešimas apie CISA (Certified Information Systems Auditor) sertifikaciją. Renginys vyko balandžio 18 d., 2013.
Certifications and Career Development for Security ProfessionalsDan Houser
Joint presentation by Kevin Flanagan & Dan Houser, RSA 2008. Overview of career development, professional security/risk certifications, and how to develop and drive your career plan.
A presentation about the many reasons professionals in the security, risk, safety, facilities, loss prevention, and investigations industries should join ASIS International (formerly the American Society for Industrial Security)
Learn more about ASIS International, the leading association for security management professionals worldwide, 38,000+ members strong and growing daily.
Leveraging Technology Using Keyword Analytics in Fraud and Compliance MonitoringJim Kaplan CIA CFE
Keyword analytics is the process of using data analytics to find keywords in both structured and unstructured data for detecting fraud and compliance review anomalies. It can be used by auditors, accountants and lawyers. This presentation from the 2015 TeamMate User Conference presented the results of the AuditNet Keyword Survey with tools and a comprehensive list of more than 4,000 keywords, social media terms, terrorist keywords and more.
20231005 ARMA San Diego RIM-IG Certifications and the Path to Professional De...Jesse Wilkins
This presentation was delivered virtually to ARMA San Diego on October 5, 2023. It compared and contrasted the various information governance / information management-related certifications and presented a framework for deciding which one(s) to pursue based on an individual's career goals.
20230717 ARMA Canada How to Select the Right IM Certifications for You.pptxJesse Wilkins
This presentation, delivered on July 17, 2023, at the ARMA Canada Information Conference, compared and contrasted the various IM and IM-adjacent certifications. Attendees also learned how to determine the right certification for them based on their career goals.
20231219 ARMA Florida Gulf Coast How to Select the Right Certifications for Y...Jesse Wilkins
This presentation, delivered virtually to the ARMA Florida Gulf Chapter on December 19, 2023, outlined the value of certifications and described three class of certifications including RIM, "RIM-adjacent", and "Other". Attendees received an overview of the 6 RIM certifications and a table comparing their exams and programs. The session concluded with a framework for determining how to select the most appropriate certification based on costs, context, and program visibility and market awareness.
CISSP® certification is a globally recognized standard of achievement that confirms an individual\\\'s knowledge in the field of information security. CISSPs are information assurance professionals who define the architecture, design, management and/or controls that assure the security of business environments. Using this course, students prepare for the exam, while at the same time obtain essential security knowledge that can be immediately used to improve organizational security. This knowledge enhances services and products, secures business functions and infrastructures, provides better implementation processes, and can be used to restructure critical programs and procedures to help keep companies up-to-date on today’s business and security strategies, technologies, and best practices.
Similar to Canberra Chapter Certification Information Session (20)
This comprehensive program covers essential aspects of performance marketing, growth strategies, and tactics, such as search engine optimization (SEO), pay-per-click (PPC) advertising, content marketing, social media marketing, and more
New Explore Careers and College Majors 2024.pdfDr. Mary Askew
Explore Careers and College Majors is a new online, interactive, self-guided career, major and college planning system.
The career system works on all devices!
For more Information, go to https://bit.ly/3SW5w8W
3. ISACA FACTS
• Founded in 1969 as the EDP Auditors Association
• Since 1978, CISA has been a globally accepted standard
of competency among IS audit, control, assurance and
security professionals
• More than 120,000 members in over
180 countries
• More than 200 chapters worldwide
• Canberra Chapter founded in 1985 (30th anniversary)
• 330 Members in Canberra
4. CERTIFCATION TARGET JOBS
Qualification CISA CISM CRISC CGEIT
Potential Career
Path
Chief Audit Executive Chief Security Officer Chief Risk Officer Chief Information Officer
Work Performed Provide assurance by
conducting audits and
assessments of information
systems
Oversee, direct and manage
information security activities
Identify, evaluate and manage
risk through the development,
implementation and
maintenance of information
systems controls
Define, establish, maintain and
manage a framework of
governance
Experience
Required
IT auditors and consultants
who provide assurance
services (3-5 years)
Information security managers
and security consultants who
direct and manage an
information security program
(10 years+)
IT and business risk and control
practitioners who manage risk
and implement information
systems controls (8 years,
during grandfathering program)
IT and business managers and
consultants who direct the
governance of IT at an enterprise
level (10 years+)
5. CISA REQUIREMENTS
• Earn a passing score on the CISA Exam
• Submit verified evidence of a minimum of five years of verifiable
IS audit, control or security experience (substitutions available)
• Submit the CISA application (within 5 years of passing date) and receive
approval (www.isaca.org/cisaapp)
• Adhere to the ISACA Code of Professional Ethics
• Abide by IS Auditing Standards as adopted by ISACA
• Comply with continuing professional education policy
(www.isaca.org/cisacpepolicy)
More information may be found at www.isaca.org/cisarequirements
6. CISM REQUIREMENTS
• Earn a passing score on the CISM exam
• Submit verified evidence of a minimum of five years of information
security management work experience (covering 3 of the 4 job practice
domains – www.isaca.org/cismjobpractice )
• Submit completed CISM application within 5 years of passing exam
and receive approval
• Adhere to the ISACA Code of Professional Ethics
• Comply with the CISM Continuing Professional Education Policy
More information may be found at www.isaca.org/cismrequirements
7. CGEIT REQUIREMENTS
• Earn a passing score on the CGEIT exam
• Submit verified evidence of the five years experience requirements as
defined by the CGEIT Job Practice
• Submit the CGEIT application (within 5 years of passage of the exam)
and receive approval
• Adhere to the ISACA Code of Professional Ethics
• Comply with the CGEIT Continuing Education Policy
More information may be found at www.isaca.org/cgeitrequirements
8. CRISC REQUIREMENTS
• Earn a passing score on the CRISC exam
• Submit completed CRISC application within 5 years of passing exam and receive
approval
• Submit verified evidence of a minimum of 3 years of risk and information systems
controls experience (covering 3 of the 5 job practice domains)
• Adhere to the ISACA Code of Professional Ethics
• Comply with the CRISC Continuing Professional Education Policy
(www.isaca.org/crisccpepolicy)
• More information may be found at www.isaca.org/criscrequirements
9. KEY DATES 2015
June Exam
Exam Date: Saturday June 13
Early Registration: Closes February 11
Final Registration: Closes April 10
September Exam (Not Run in Canberra, CISA & CISM only)
Exam Date: Saturday September 12
Early Registration: Closes June 17
Final Registration: Closes July 24
December Exam
Exam Date: Saturday December 12
Early Registration: Closes August 19
Final Registration: Closes October 23
10. EXAM REGISTRATION FEES
Early Registration
• ISACA Member: US $440.00
• Non-Member: US $625.00
Final Registration
• ISACA Member: US $490.00
• Non-Member: US $675.00
Register Online at www.isaca.org/examreg and save $$
• Online registration via the ISACA web site is encouraged, as candidates will save US $75.
Non-members can join ISACA at the same time, which maximizes their savings.
Exam registration fees must be paid in full to sit for the exams. Those whose exam registration fees are not paid will not
be sent an exam admission ticket and their registration will be cancelled.
11. CANDIDATE INFORMATION GUIDE
The ISACA Exam Candidate Information Guide includes candidate
information about exam registration, dates, and deadlines and provides
important key candidate details for exam day administration. This
publication is available online at www.isaca.org/examguide. Translated
copies are also available in each of the exam languages at this link.
Links for the hard copy registration forms can be found at
www.isaca.org/examreg or at the following links for each specific
certification:
• CISA: www.isaca.org/cisaregform
• CISM: www.isaca.org/cismregform
• CGEIT: www.isaca.org/cgeitregform
• CRISC: www.isaca.org/criscregform
12. ARE YOU A MEMBER?
• $US185 cheaper to register as a member
• How much to become a member?:
• $US135 ISACA Membership Fee (2015 Membership)
• $US30 Local Chapter Dues
• $US10 Joining Fee ($US30 if you don’t join online)
• $US175 total
• Joining is simple during the exam registration process
• Or go to www.isaca.org/join
13. EXAM STRUCTURE
CISA – 4 hour exam, 200 multiple choice questions
CRISC – 4 hour exam, 200 multiple choice questions
CISM – 4 hour exam, 200 multiple choice questions
CGEIT – 4 hour exam, 150 multiple choice questions
Questions:
• are designed to test practical knowledge and experience
• have four options (answer choices)
• require the candidate to choose one best answer.
14. EXAM QUALITY
Ensured by:
• Job Practice Analysis Study: Determines content
• Test Development Standards: Ensures high standards for
the development and review of questions
• Review Process: Provides two reviews of questions by
independent committees before acceptance into pool
• Periodic Pool Cleaning: Ensures that questions in the pool
are up-to-date by continuously reviewing questions
• Statistical Analysis of Questions: Ensures quality
questions and grading by analyzing exam statistics for
each language
15. CISA EXAM DOMAIN AREAS
Domain 1—The Process of Auditing Information
Systems (14%)
Domain 2—Governance and Management of IT (14%)
Domain 3—Information Systems Acquisition,
Development and Implementation (19%)
Domain 4—Information Systems Operations,
Maintenance and Support (23%)
Domain 5—Protection of Information Assets (30%)
16. CISM EXAM DOMAIN AREAS
Domain 1—Information Security Governance (24%)
Domain 2—Information Risk Management and
Compliance (33%)
Domain 3—Information Security Program
Development and Management (25%)
Domain 4—Information Security Incident Management
(18%)
17. CRISC EXAM DOMAIN AREAS
Domain 1—Risk Identification (27%)
Domain 2—Risk Assessment (28%)
Domain 3—Risk Response and Mitigation (23%)
Domain 4—Risk and Control Monitoring and Reporting
(22%)
18. CGEIT EXAM DOMAIN AREAS
Domain 1: Framework for the Governance of
Enterprise IT (25%)
Domain 2: Strategic Management (20%)
Domain 3: Benefits Realization (16%)
Domain 4: Risk Optimization (24%)
Domain 5: Resource Optimization (15%)
20. CISA STUDY MATERIALS
ISACA Members Non-Members
CISA Review Manual 2015 (US) $105.00 (US) $135.00
CISA Review Questions, Answers & (US) $100.00 (US) $130.00
Explanations Manual 2015
CISA Review Questions, Answers & (US) $40.00 (US) $60.00
Explanations Manual 2015 Supplement
CISA Practice Question Database 12 month (US) $185.00 (US) $225.00
subscription
*******
For a complete listing of materials including product descriptions visit:
www.isaca.org/cisabooks
Additional resources to assist in studying for the exam visit: www.isaca.org/examprep
21. CGEIT STUDY MATERIALS
ISACA Members Non-Members
CGEIT Review Manual 2015 (US) $85.00 (US) $115.00
CGEIT Review Questions, Answers & (US) $40.00 (US) $60.00
Explanations Manual 2015
CGEIT Review Questions, Answers & (US) $40.00 (US) $60.00
Explanations Manual 2015 Supplement
For detailed descriptions of the available study materials as well as information on preparing for the CGEIT exam visit:
www.isaca.org/cgeitbooks
www.isaca.org/cgeitprep
www.isaca.org/cgeitreferences
22. CRISC STUDY MATERIALS
ISACA Members Non-Members
CRISC Review Manual 2015 (US) $85.00 (US) $115.00
CRISC Review Questions, Answers & (US) $60.00 (US) $80.00
Explanations Manual 2015
CRISC Review Questions, Answers & (US) $40.00 (US) $60.00
Explanations Manual 2015 Supplement
CRISC Practice questions database 12 month (US) $185.00 (US) $225.00
subscription
For detailed descriptions visit www.isaca.org/criscbooks
Additional information on exam preparation available at: www.isaca.org/criscprep
23. CISM STUDY MATERIALS
ISACA Members Non-Members
CISM Review Manual 2015 (US) $85.00 (US) $115.00
CISM Review Questions, Answers & (US) $70.00 (US) $90.00
Explanations Manual 2015
CISM Review Questions, Answers & (US) $40.00 (US) $60.00
Explanations Manual 2015 Supplement
CISM Practice Question Database 12 month (US)$120.00 (US) $160.00
subscription
For detailed descriptions visit www.isaca.org/cismbooks
Additional information on exam preparation available at: www.isaca.org/cismprep
24. STUDY SESSIONS
• The ISACA Canberra Chapter puts on free study sessions for ISACA
members. These are done by volunteers and you will be contacted
shortly after enrolment closes.
• Sydney Chapter 2 Day Boot Camp for each exam – discount for ISACA
members
• CISA Online Learning http://www.isaca.org/Education/Training/exam-
review-courses/Pages/CISA-Online-Review-Course.aspx
$US100 per module or $US250 for all 5 modules
26. WHAT HAPPENS AFTER YOU PASS
To become certified and enjoy the benefits of certification, one must earn the required job
experience and submit an application within 5 years of exam passage.
Applications for Certification is available at:
www.isaca.org/CISAapp
www.isaca.org/CGEITapp
www.isaca.org/CRISCapp
www.isaca.org/CISMapp
General information:
• Complete and submit application with the requisite experience.
• Application requires the work experience to be verified. A Verification of Work Experience form is included in the
application
• When applying for certification, there is a US $50 application fee.
• Abide by the ISACA Code of Professional Ethics (www.isaca.org/ethics)
• Instructions for completion of form are included in links above.
• Until an application is received and approved, candidates are not CISA certified and cannot use the designation.
Candidates have 5 years from the passing date to apply for certification. After the 5 year period the exam score
is voided.
28. CONTINUING PROFESSIONAL EDUCATION (CPE)
REQUIREMENTS
1. Once certified, the certification must be renewed annually. Maintaining the
certification requires:
• Earning and reporting an annual minimum of 20 hours of continuing
professional education
• Earning and reporting a minimum of 120 hours of continuing education for
each fixed three-year period (each 3-year cycle)
• Paying the annual certification maintenance fee
• Responding to and submitting required documentation of continuing education
activities if selected for an annual audit
• Comply with the ISACA Code of Professional Ethics (www.isaca.org/ethics)
ISACA membership provides many CPE opportunities which can assist
you with meeting this requirement. For more details visit
www.isaca.org/cpe.
CPE policy for each certification available at: www.isaca.org/CPE
29. FREE CPE FOR MEMBERS
Webinars and Virtual Conferences — CPE quizzes are for members
only.
up to 36 free CPEs per year
Canberra Chapter Professional Updates up to 10 CPEs per year
Journal quizzes: Earn one CPE for each of six journals per year—
members only.
6 free CPEs per year
Serving as an ISACA Volunteer:
Participate on an ISACA or ITGI board, committee, task force or as an
officer of an ISACA chapter, and gain one CPE credit (up to 20 per
year) for each hour of active participation. (Consult Qualifying
Educational Activities for CISA, CISM, CGEIT and CRISC members.)
www.isaca.org/participate
20 free CPEs per year
Mentoring:
Earn one CPE for each hour of mentoring efforts directly related to
coaching, reviewing or assisting an individual with
CISA/CISM/CGEIT/CRISC exam preparation or providing career
guidance through the credentialing process.
10 free CPEs per year
TOTAL Possible FREE CPEs for ISACA Certified Members: 82 free CPEs per year
30. ISACA CODE OF PROFESSIONAL ETHICS
ISACA sets forth this Code of Professional Ethics to guide the professional and personal conduct of
members of the association and/or its certification holders. Failure to comply with this Code of
Professional Ethics can result in an investigation into a member's or certification holder's conduct and,
ultimately, in disciplinary measures.
Members and ISACA certification holders shall:
1. Support the implementation of, and encourage compliance with, appropriate
standards and procedures for the effective governance and management of
enterprise information systems and technology, including: audit, control, security
and risk management.
2. Perform their duties with objectivity, due diligence and professional care, in
accordance with professional standards.
3. Serve in the interest of stakeholders in a lawful manner, while maintaining high
standards of conduct and character, and not discrediting their profession or the
Association.
www.isaca.org/ethics
31. ISACA CODE OF PROFESSIONAL ETHICS
(CONTINUED)
Members and ISACA certification holders shall:
4. Maintain the privacy and confidentiality of information obtained in the course of
their activities unless disclosure is required by legal authority. Such information
shall not be used for personal benefit or released to inappropriate parties.
5. Maintain competency in their respective fields and agree to undertake only those
activities they can reasonably expect to complete with the necessary skills,
knowledge and competence.
6. Inform appropriate parties of the results of work performed including the
disclosure of all significant facts known to them that, if not disclosed, may distort
the reporting of the results.
7. Support the professional education of stakeholders in enhancing their
understanding of the governance and management of enterprise information
systems and technology, including: audit, control, security and risk
management.
www.isaca.org/ethics
32. WANT TO KNOW MORE?
Please contact us at:
ISACA Canberra Chapter
GPO Box 535
Canberra ACT 2601
Email ISACACanberraPresident@outlook.com (please email if you want a copy of these slides)
Web site: www.isaca.org/canberra
ISACA International
3701 Algonquin Road
Suite 1010
Rolling Meadows, IL 60008 USA
Phone: +1.847.660.5660
Fax: +1.847.253.1443
Email: certification@isaca.org exam@isaca.org
Web site: www.isaca.org www.isaca.org/certification