Many certifications require the holders to keep updated with the latest professional development, and ask that they take a minimum number of continuing professional educations. The ISACA requires the same for CISA certification holders.
and the CISA certification is renewed every 3 years. Within this reporting period, CISAs must following the following rules:
1. Annual requirement
2. 3-year reporting period requirement
There are many ways to earn your CPE credits. Please note that there is an upper limit of 72 free CPE hours per year.
|Programs and events||Max. # CPE hours|
|1. Paid CPEs|
|Conference||32 per event|
|Ad hoc online training||26 per course|
|ISACA training week||32 per course|
|2. Free CPEs|
|Webinars and virtual conference||36 per year|
|ISACA volunteer ||20 per year|
|ISACA mentor ||10 per year|
|Journal quizzes: Earn one CPE for each of six journals per year—(members only)||6 per year|
 You are considered a volunteer if you take part on the ISACA board, committee, task force or as an officer of an ISACA chapter.
 You are considered a mentor if you coach, review or assist an individual with CISA/CISM/CGEIT/CRISC exam preparation or related career guidance.
There is an online tracking system on the ISACA website. CISAs can input the CPE hours once they are earned.
Those who are retired or non-practicing do not need to obtain CPE hours. They cannot use “CISA” or “CISA-nonpracticing” on business cards.
1. Retired status
This is applicable to those over 55 years of age and permanently retired from the CISA profession, or unable to perform the duties of an IS audit, control or security professional by reason of permanent disability.
2. Non-practicing status
These are CISAs who are no longer working in the IS audit, control or security profession are entitled to apply for nonpracticing CISA status.
I am the author of How to Pass The CPA Exam (published by Wiley) and the publisher of this and several accounting professional exam prep sites.