Over 10 years we helping companies reach their financial and branding goals. Onum is a values-driven SEO agency dedicated.

CONTACTS
Certifications

After passing the CISA exam, what next?

After preparing and passing my CISA exam, I applied to get certified

The Certified Information Systems Auditor (CISA) certification is a globally-recognized certification focusing on the audit, control, and security of information systems (IS). It is a highly respected certification in the field of IT security, audit, risk management, and governance.

In order to secure this certification, I had to satisfy the CISA requirements that determined my CISA eligibility.

Note: Passing the CISA exam doesn’t automatically define you as a CISA. You will receive a CISA exam passer certificate which highlights CPEs that you have earned for passing the exam but that’s not the actual CISA certification. The actual certification is extracted from your myisaca dashboard under certifications portal. Some candidates write the CISA exam even though they don’t meet the experience requirements. This practice is acceptable by ISACA but you can’t be awarded the CISA designation until you meet all the requirements.

In a world full of Auditors, be a CISABelow are the steps I followed to become CISA certified.

1. Passed the CISA exam see the link on how I prepared for and passed my CISA exam. https://www.linkedin.com/pulse/how-i-passed-my-cisa-exams-veronica-rose-cisa/

2. Met the work experience requirements. This requires relevant full-time work experience in the CISA Job Practice Areas. See my resume https://www.linkedin.com/in/veronica-rose-cisa-b24b91124/

3. Submitted my CISA Certification application to ISACA see more here https://www.isaca.org/credentialing/certifications and after a few days, I received an email from ISACA congratulating me and confirming that I am now designated as a CISA and eligible to use it after my name (Veronica Rose, CISA). Sounds great, right?

The hardcopy of my certificate was delivered to my mailing address together with a CISA Tag and I can still access & download my CISA certificate in softcopy from myISACA account anytime.

Requirements

The candidate needs to have;

  • A minimum of five (5) years of professional experience in IS auditing, control, or security. Fortunately, waivers to experience are available.

A candidate with three (3) years of experience can obtain the certification on the following basis:

  • A maximum of one (1) year of experience in IS or one (1) year of experience in non-IS auditing can be substituted for one year of experience.
  • 60 to 120 university semester credit hours which don’t have the ten-year preceding restriction) can be substituted for one or two years of experience.
  • A Master’s degree in IS or IT from a recognized university can also be substituted for one year of experience or A bachelor’s or Master’s degree in information security or information technology from an accredited university can be substituted for one (1) year of experience
  • A candidate with two (2) years of experience as a university instructor (full-time) in computer science, IS auditing or accounting can be substituted for one (1) year of experience.
  • Three (3) years of IS auditing, control, or security experience, or two years of IS audit, control, or security experience and one complete year of a non-IS audit or IS experience of two years experience as a university instructor (full time).

Not done yet!

Obtaining the certification is not the last step; the certification requires maintenance to keep getting benefits from the CISA designation.

Here are the Certification maintenance requirements:

  • Adherence to the code of professional ethics: CISA holders need to agree to the code of professional ethics for guiding their personal and professional conduct.
  • Adherence to the CPE program: CISA holders must adhere to the Continuing Professional Education Program. Here are its objectives:
  • Maintain individual competency by updating the knowledge and skills in the area of IS auditing, control, or security.
  • Provide a means for differentiating between qualified CISAs and non-qualified who haven’t met the requirements for the certification’s continuation.
  • Provide a mechanism to monitor IS audit, control, and security, and maintain the competency of the professional.
  • Help the top-level management develop sound IS audit, control, and security functions by providing criteria for the selection and development of personnel.
  • Other than this, a minimum of 20 contacts CPE hours and a maintenance fee are required on an annual basis. Here is how you maintain your certification https://www.isaca.org/credentialing/cisa/maintain-cisa-certification
  • Compliance with IS auditing standards: All individuals who hold the CISA designation must agree to adhere to the ISA auditing standard developed by ISACA.

Conclusion:

  • Once you have successfully become CISA designated, your value to employers increases. The CISA certification demonstrates that the holder gained and maintains the knowledge required for meeting the dynamic challenges of IS auditing, control, and security of a modern enterprise.
  • CISAs have a competitive edge over their peers, and since this certification is globally recognized, your worth in the global market increases, too.

Read about the most common interview questions I have encountered during my CISA interviews. https://www.linkedin.com/pulse/most-common-interview-questions-cisas-veronica-rose-cisa

Tips for IT/IS Auditors

Website: www.veronicarose.africa

Author

Veronica

Published Author | Director, One In Tech, Foundation | Director, ISACA Board of Directors | IT Audit Professional | Speaker | Member of National Association for Corporate Directors | Vlogger | CISO | Global Mentor | Data Privacy Solutions Engineer | Award Winner in the Cybersecurity industry

Leave a comment

Your email address will not be published. Required fields are marked *