CISA Certification

CISA is world renowned as the gold standard of achievement for IS audit control, assurance, and security professionals. This course is aimed at explaining all the key concepts that are necessary for a candidate appearing for the CISA Certification exam.

Key Learning Objectives

• Upon completing the CISA training course, delegates will, with or without additional support, be able to:

• Develop and implement a risk-based IS audit strategy for the organisation.

• Plan, conduct, communicate and advise on specific audits to ensure IT and business systems are protected and controlled.

• Implement Risk Management and Control practices.

• Describe evidence lifecycle management (collection, protection and chain of custody).

• Discuss evolving auditing principles - CSA (Continuous self assessment and continuous audit techniques).

• Discuss control frameworks (e.g. COBIT, COSO, ISO 27001) and control improvement models (e.g. CMM, BSCs).

• Evaluate IT Operations management, database administration practices, business continuity and disaster recovery capabilities.

• Evaluate the use of change, configuration and release management practices to ensure production changes are adequately controlled.

• Evaluate the design, implementation and monitoring of logical access controls, network infrastructure security controls, physical and environmental controls, encryption controls.