CISA is the MOST globally recognized certification for experienced IS audit, control and security professionals. CISA is considered by organizations and professionals worldwide as “the gold standard” for IS/IT certifications.

With globalization comes increased cyber security threats; the demand for expert security system professions is increasing day by day. Both government sector and private commercial enterprises recruit IS personnel, and specifically seek CISA certificate holders.

It is renowned as a prestigious, lifelong symbol of knowledge and expertise.

• The American National Standards Institute (ANSI) has accredited the CISA certification program under ISO/IEC 17024:2012.
• CISA is the 2017 SC Magazine Award Winner for Best Professional Certification Program.
• The Quarterly IT Skills and Certifications Pay Index ITSCPI) from Foote Partners consistently ranks CISA among the most sought-after IT certifications and confirms that CISA holders are among the most highly rewarded by employers.
• The U.S. Department of Defense (DoD) 8570.01-M “Information Assurance Workforce Improvement Program” named CISA certifications among those approved for US DoD information assurance (IA) professionals.

At the end of the workshop, the delegates will be able to:

• gain knowledge required to comply with the highest standards of information systems and providing the best audit practices as well. For organizations, this would mean thorough control and protection of their business and information systems.
• develop sound IS control practices and management mechanisms. Organizations benefit from the certified professionals who will provide the assurance of best practices including policies, accountability, and structures of monitoring, in order to arrive at the desired IT governance.
• implement processes and methodologies that modern organizations employ while changing or reinventing the infrastructure components of their application systems, hence will be ready for the CISA exam as well as the real world.
• review the processes and methodologies applicable to different IT systems. Further, he/she will deliver learning of the IS audit in the event of a disruption. Organizations benefit from certified professionals who will enact disaster recovery methodologies and timely resumption of database services, thus minimizing the negative impact on a range of business processes.
• able to ensure the integrity, availability, and confidentiality of information assets while instituting physical and logical access controls and other security measures.

Why Undertake CISA Training:

As it has become more important than ever that organizations recruit employees who can take a comprehensive view of information systems and their relationship to organizational and business success, many hiring managers look for CISA-certified experts. For some business and governmental agencies, CISA is even a prerequisite for information systems and information technology roles. CISA has become world-renowned as the standard of achievement for those who assess an organization’s information technology and business systems and provide assurance on their availability and sustainability. Since its inception in 1978, more than 129,000 people have become CISA certified to validate their expertise.

• Having a CISA certification on your resume/CV makes you quickly identifiable to employers as a highly qualified, experienced professional.
• CISA demonstrates that you have gained and maintained the level of knowledge required to meet the dynamic challenges of a modern enterprise.
• CISA is proof not only of competency in IT controls, but also your understanding of how IT relates to business.
• Unlike many certifications, CISA requires real-world, hands-on work experience in addition to the achievement of passing a comprehensive exam. By recognizing this additional professional experience, CISA adds breadth to your credibility in the marketplace and in your role.
• CISA holders are consistently recognized among the most-qualified professionals in the fields of IS auditing, control, cyber security and security.

With 150,000 professionals in more than 180 countries, ISACA is the trusted source of knowledge, standards, certifications, networking and career development for information systems audit, control, security, cyber security, risk, privacy and governance professionals.

Incorporated in 1969 and previously known as the Information Systems Audit and Control Association—but now known solely by its acronym—ISACA advances and validates business-critical skills and knowledge through its globally respected certifications.

Day 1 – Monday: The Process of Auditing Information Systems

How to provide services in accordance with IT audit standards, in order to assist the organization in protecting and controlling information systems.

Tasks

• Developing and implementing a risk-based IT audit strategy
• Planning and conducting the audit, and reporting findings
• Understand ISACA IT Audit and Assurance Standards, Guidelines and Tools and Techniques, Code of Professional Ethics and other applicable standards.

This helps gaining knowledge required to comply with the highest standards of information systems and providing the best audit practices as well. For organizations, this would mean thorough control and protection of their business and information systems.

Day 2 – Tuesday: Governance and Management of IT

How to provide assurance that necessary organization structure and processes are in place.

Tasks:

• Evaluate the effectiveness of the IT governance structure, organizational structure, HR management, and policies and standards, in order to determine whether they support the organization’s strategies and objectives.

This helps develop sound IS control practices and management mechanisms. Organizations benefit from certified professionals who will provide the assurance of best practices including policies, accountability, and structures of monitoring, in order to arrive at the desired IT governance.

Day 3 – Wednesday: IS Acquisition, Development, and Implementation

How to provide assurance that the practices for the acquisition, development, testing, and implementation of IS meet the organization’s strategies and objectives.

Tasks:

• Evaluate proposed investments in IS acquisition, development, maintenance and subsequent retirement.
• Evaluate project management practices and controls and conducting reviews.

This covers the processes and methodologies that modern organizations employ while changing or reinventing the infrastructure components of their application systems, hence preparing the auditor for the CISA exam as well as the real world.

Day 4 – Thursday: IS Operations, Maintenance and Support

How to provide assurance that the processes for information systems operations, maintenance and support meet the organization’s strategies and objectives.

Tasks:

• Conduct periodic reviews of IS and evaluation such as service level management practices, operations and end-user procedures, and process of information systems maintenance.

This helps auditor review the processes and methodologies applicable to different IT systems. Further, it will deliver learning of the IS audit in the event of a disruption. Organizations benefit from certified professionals who will enact disaster recovery methodologies and timely resumption of database services, thus minimizing the negative impact on a range of business processes.

Day 5 – Friday: Protection of Information Assets

How to provide assurance that the organization’s security policies, standards, procedures and controls ensure the confidentiality, integrity and availability of information assets.

Tasks:

• Evaluate the information security policies, standards and procedures; the design, implementation and monitoring of various controls, such as system and logical security controls, data classification processes, and physical access and environmental controls.

This enables the professional to be able to ensure the integrity, availability, and confidentiality of information assets while instituting physical and logical access controls and other security measures.