• IS Audit Standards, Guidelines, and Codes of Ethics
• Business Processes
• Types of Controls
• Risk-based Audit Planning
• Types of Audits and Assessments
CISA is a globally recognized certification meticulously designed for the professionals responsible for monitoring, managing, and protecting an organization’s IT and business environment. The latest 28th edition of the CISA certification training course validates the certificatio...
CISA is a globally recognized certification meticulously designed for the professionals responsible for monitoring, managing, and protecting an organization’s IT and business environment. The latest 28th edition of the CISA certification training course validates the certification holder’s skills and expertise to assess vulnerabilities, report compliance issues, and successfully implement IT security controls for an organization.
About course
The CISA certification training course is a globally acknowledged program that prepares IT professionals for excellence in IS auditing, control, and security. Encompassing essential domains such as the Auditing Process, IT Governance and Management, IS Acquisition and Implementation, and Operations and Business Resilience, it culminates with a focus on protecting information assets. This 2024 CISA latest version course empowers professionals to assess system vulnerabilities, report compliance, and implement controls, making them vital assets in maintaining organizational integrity and security. Covering the latest 28th edition of CISA, this course addresses all CISA 2024 exam changes, ensuring participants are well-prepared for the CISA 2024 exam.
IT Managers
Security Managers
System Analysts
Consultants
A minimum of 5 years of professional information systems auditing, control, or security work experience (as described in the CISA job practice areas) is required for certification. Substitutions and waivers of such experience, to a maximum of 3 years, may be obtained as follows:
• IS Audit Standards, Guidelines, and Codes of Ethics
• Business Processes
• Types of Controls
• Risk-based Audit Planning
• Types of Audits and Assessments
• Audit Project Management
• Sampling Methodology
• Audit Evidence Collection Techniques
• Data Analytics
• Reporting and Communication Techniques
• Quality Assurance and Improvement of the Audit Process
• IT Governance and IT Strategy
• IT-Related Frameworks
• IT Standards, Policies, and Procedures
• Organizational Structure
• Enterprise Architecture
• Enterprise Risk Management
• Maturity Models
• Laws, Regulations, and Industry Standards Affecting the Organization
• IT Resource Management
• IT Service Provider Acquisition and Management
• IT Performance Monitoring and Reporting
• Quality Assurance and Quality Management of IT
• Project Governance and Management
• Business Case and Feasibility Analysis
• System Development Methodologies
• Control Identification and Design
• Testing Methodologies
• Configuration and Release Management
• System Migration, Infrastructure Deployment, and Data Conversion
• Post-implementation Review
• Common Technology Components
• IT Asset Management
• Job Scheduling and Production Process Automation
• System Interfaces
• End-user Computing
• Data Governance
• Systems Performance Management
• Problem and Incident Management
• Change, Configuration, Release and Patch Management
• IT Service Level Management
• Database Management
• Business Impact Analysis (BIA)
• System Resiliency
• Data Backup, Storage and Restoration
• Business Continuity Plan (BCP)
• Disaster Recovery Plans (DRP)
• Information Asset Security Frameworks, Standards, and Guidelines
• Privacy Principles
• Physical Access and Environmental Controls
• Identity and Access Management
• Network and End-Point Security
• Data Classification
• Data Encryption and Encryption-Related Techniques
• Public Key Infrastructure (PKI)
• Web-Based Communication Techniques
• Virtualized Environments
• Mobile, Wireless, and Internet-of-Things (IoT) Devices
• Security Awareness Training and Programs
• Information System Attack Methods and Techniques
• Security Testing Tools and Techniques
• Security Monitoring Tools and Techniques
• Incident Response Management
• Evidence Collection and Forensics