CISA Training.

Transcription

1 CISA Training

2 WHAT IS CISA TRAINING? The CISA, Certified Information Systems Auditor, is a professional designation which provides great benefits and increased influence for an individual within their organization. The CISA certification is for those in the IT industry who audit, control, monitor and assess IT and business systems. The CISA designation is a globally recognized certification for IS audit control, assurance and security professionals. Being CISA-certified showcases your audit experience, skills and knowledge, and demonstrates you are capable to manage vulnerabilities, ensure compliance and institute controls within the enterprise. BENEFITS OF CISA TRAINING CISA is in increasing demand as business analytics, audit control and security are becoming more prevalent and need people with the qualifications that come along with the CISA certification. It is preferred in many job requirements for audit control positions. Enhancing your skills Increasing the chance of promotion Becoming more comfortable with your abilities Gain a globally recognised certification WHO SHOULD ATTEND? Any candidate can attend training who want to learn about CISA Internal and external auditors Finance/CPA professionals IT and Information security professionals Five or more years of experience in IS audit, control, assurance, or security to attend CISA certification exam A bachelor's or master's degree from a university that enforces the ISACA-sponsored Model Curricula can be substituted for 1 year of experience

3 LEARNING OBJECTIVES The Process of Auditing Information Systems Governance and Management of IT Information Systems Acquisition, Development, and Implementation Information Systems Operations, Maintenance and Support Reliance on automation Protection of Information Assets

4 COURSE CONTENTS 1. The process of auditing information systems ISACA IT Audit and Assurance Standards, Guidelines and Tools and Techniques Risk assessment in an audit context Control Objectives related to information systems Audit planning and management techniques Gathering information and preserving evidence Reporting and communication techniques Control Objectives and IS-Related Controls Risk Assessment in an Audit Context Audit planning and management techniques Reporting and Communication Techniques Control Self-Assessment 2. Communication And Stakeholder Management IT Governance Frameworks IT strategy, policies, standards and procedures Organizational structure roles and responsibilities related to IT Quality Management systems Maturity and business process re-engineering models IT contracting strategies Enterprise risk management Process Improvement Models IT Contracting Strategies Monitoring and Reporting IT Performance IT Human Resource Management Business impact analysis Business continuity planning 4. IT SERVICE DELIVERY AND SUPPORT Service level management practices Operations management Technology concepts related to networks, tsystem software and database management systems System resiliency tools and techniques Database administration practices Capacity planning and monitoring techniques Problem and incident management practices Disaster recovery plans and testing methods 5. Protection of Information Assets Security controls Security incidents Logical access controls Network security controls Network and Internet security Attack methods and techniques Security testing techniques Encryption related technologies PKI components and digital signature techniques Security of mobile and wireless devices Voice communications security Data classification schemes Physical access controls Environmental protection devices Process and procedures for information assets 3. Information Security Program Development and Management Benefits realization practices Project governance mechanisms Project management control frameworks, practices and tools Risk management practices Requirements analysis and management practices System development methodologies and tools Configuration and release management System migration and infrastructure deployment practices Post-implementation review objectives and practices Security Issues with Programming Languages

5 CERTIFICATION CISA Exam Information: Exam Duration: 4 Hours Exam Format: Multiple Choice Exam Pass Mark: 450 with the scale of points. Number of Question: 200 Questions PREREQUISITE Five (5) or more years of experience in IS audit, control, assurance, or security.

6 AUSTRALIA 5, Everage Street, Moonee Ponds, Victoria, 3039 Melbourne, Ph Fax learn@austech.edu.au