Contact Us

Certified Information Systems Auditor

Certified Information Systems Auditor (CISA) is a globally acknowledged certification, which builds upon the previous experience of IS professionals, to produce valuable employees who possess exceptional knowledge of Information Systems Auditing, Control, and Security. This certification is a DoD Approved 8570 Baseline Certification and meets DoD 8140/8570 training requirements. During this CISA training course, delegates will be exposed to the Five Domains of Information Security Auditing.

Interested in attending? Have a suggestion about running this event near you?
Register your interest now

Description

  • The course content surrounds the pivotal Five Domains. The information imparted within each domain is as follows:
  • Domain 1:
  • Information Systems Audit Process:
  • Developing a risk-based IT audit strategy
  • Planning specific audits
  • Conducting audits to IS audit standards
  • Implementation of risk management and control practices
  • Domain 2:
  • IT Governance and Management:
  • Effectiveness of IT Governance structure
  • IT organisational structure and human resources (personnel) management
  • Organisation's IT policies, standards, and procedures
  • Adequacy of the Quality Management System
  • IT management and monitoring controls
  • IT resource investment
  • IT contracting strategies and policies
  • Management of organisations IT-related risks
  • Monitoring and assurance practices
  • Organisation business continuity plan
  • Domain 3:
  • Information Systems Acquisition, Development, and Implementation:
  • Business case development for IS acquisition, development, maintenance, and retirement
  • Project management practices and controls
  • Conducting reviews of project management practices
  • Controls for requirements, acquisition, development, and testing phases
  • Readiness for Information Systems
  • Project Plan Reviewing
  • Post Implementation System Reviews
  • Domain 4:
  • Information Systems Operations, Maintenance, and Support:
  • Conduct periodic reviews of organisations objectives
  • Service level management
  • Third party management practices
  • Operations and end-user procedures
  • Process of information systems maintenance
  • Data administration practices determine the integrity and optimisation of databases
  • Use of capacity and performance monitoring tools and techniques
  • Problem and incident management practices
  • Change, configuration, and release management practices
  • Adequacy of backup and restore provisions
  • Organisation's disaster recovery plan in the event of a disaster
  • Domain 5:
  • Protection of Information Assets:
  • Information security policies, standards and procedures
  • Design, implementing, monitoring of system and logical security controls
  • Design, implementing, monitoring of data classification processes and procedures
  • Design, implementing, monitoring of physical access and environmental controls
  • Processes and procedures to store, retrieve, transport and dispose of information assets
  • Effect 1st Aug 2024
  • Comparison of 2019 to 2024 CISA exam content outline (ECO) domains (no change to the five domain headings):
  • Domains    2019 ECO    2024 ECO
  • Domain 1:
  • Information System Auditing Process    21%    18%
  • Domain 2:
  • Governance and Management of IT    17%    18%
  • Domain 3:
  • Information System Acquisition, Development, and Implementation    12%    12%
  • Domain 4:
  • Information Systems Operations and Business Resilience    23%    26%
  • Domain 5:
  • Protection of Information of Assets    27%    26%
  • Total    100%    100%Total    100%    100%

Prerequisites

There are no prerequisites to learn CISA from this tutorial. However, to get the CISA certification you need to:

  • Pass the CISA examination

  • Submit an application for CISA certification

  • Pay a $50 application fee directly to ISACA

  • Adhere to the Code of Professional Ethics

  • Dedicate to the Continuing Professional Education Program

  • Compliance with the Information Systems Auditing Standards

The examination is open to all individuals who have an interest in information systems audit, control, and security. A minimum of 5 years of professional information systems auditing, control or security work experience is required for the CISA certification.

This training course is not suitable for beginners. It is required that delegates possess at least five years of exposure in the field of Information Systems Auditing. With this information in mind, it is expected that CISA qualified candidates have an outstanding level of professional experience, commitment, and extensive knowledge of IS Auditing. Thus, a CISA qualification is likely to open many doors and propel certified individuals into a high ranking position within the enterprise.

Please note: This exam is sat separately from the course. Delegates must book the exam directly from ISACA.

Audience

Executives and professionals in IT.
Experts in information and operational risk management.
Specialists in IT infrastructure security.
Internal control.
IT audit.

Similar courses

Microsoft Security, Compliance and Identity Fundamentals Register interest
Web Hacking Black Belt Edition Register interest
Entra ID (Azure AD) Register interest
Advanced in AI Auditor (AAIA) Register interest

Subscribe to Newsletter

Enter your email address to register to our newsletter subscription delivered on regular basis! 

CONTACT US     ABOUT     PRIVACY   BLOG

Search Search

© Copyright GTP Computrain, Limited 2025