What is a Certified Information Systems Auditor?

Certified Information Systems Auditor (CISA) is a global professional designation awarded by the Information Systems Audit and Control Association (ISACA) to individuals who manage IT and business systems for organizations.  

To earn the designation, an applicant must undergo training by ISACA, pass the certiication exam, and complete the minimum amount of work experience. 

Candidates are tested on five major areas:

• Information Systems Operations
• Government and Management of IT
• Process of Auditing Information Systems
• Maintenance and Service Management
• The Process of Auditing Information Systems

CISAs must also strictly adhere to the code of conduct, standards, and ethics of Information Systems Auditing.

Below are addition requirements for CISA certification;

• At least five years experience in information systems control, auditing and security.
• A masters degree or bachelor's degree from a university that is in partnership with ISACA.
• 60-120 semester credit hours must be completed in the University.
• A year of experience in information systems.

The CISA must complete continued professional education of about 20 hours in a year and 120 hours in three years.