Welcome to this page dedicated to aspiring Certified Information Systems Auditors! CISA has become one of the “hottest” certifications after a series of financial scandals Arther Anderson fallout, and problems in internal control.
The number of CISAs has doubled in the last decade. Are you ready?
How to Become CISA Certified
1. Register for the CISA Exam
You may not realize, but there is no prerequisite to take this exam. As long as you have given this a good thought and believe that the CISA exam is useful for your career, go ahead.
2. Complete the CISA Exam
This is a pencil-and-paper exam available three times each year. It is a 4-hour exam consisting of 200 questions in multiple choice format. Anyone can take the exam as long as they pay the registration fees.
In terms of syllabus, there are 5 domains surrounding the role and responsibility of IT auditors. Theories are tested but in general, if you are a practicing IT auditor, it is relatively easy.
The passing rate is around 50%. Successful candidates can work towards the experience requirements and apply for the certificate.
3. Fulfill the Experience Requirement
This is actually the stricter part of the CISA certification process. You need to have at least 5 years of experience in information system auditing, control or security.
The work experience must be gained within 10 years preceding the application date, or within 5 years from the date of passing the exam.
There are various ways to obtain waivers. Please refer to this requirements page below.
4. Maintain the Certification
You can maintain its active status by paying the maintenance fees and fulfilling the CPE requirements. You’ll need to have at least 20 contact hours per year, and 120 contact hours within a fixed 3-year period. For details, please refer to this CPE Policy on ISACA website.