|
Why CISA? What is CISA? Colman Okoro, Certified Information Systems Auditor (CISA) with vast experience in IT, IT Audit and Consulting provides insights on CISA. CISA is the top audit professional certification sponsored by the Information Systems Audit and Control Association (ISACA).
Continued from
Why CISA? What is CISA? (1)
In a world dependent on IT the value of IT security expertise is obvious. What is the importance and value of CISA? How relevant is CISA compared to other IT security certifications.
Q. Do Security Certifications really make a difference? Has security certification helped your career? What do you think the future for Security Certifications will look like; will they be more, or less important than they are today?
A. Yes, security certifications make a difference. Possession of CISA, CISM, CISSP e.t.c, as I mentioned earlier, is an indication of security authority in the IT industry. Also, IT professionals and managers need to have security certifications that would enhance their standing as generalists, who would be prudent in any security situation within their organizations. For example, Information Systems Audit and Control Association (ISACA) came up with following analysis:
1. More than 1,400 CISAs are now employed in organizations as the chief executive officer (CEO), chief financial officer (CFO) or an equivalent executive position.
2. More than 2,300 serve as chief audit executives, audit partners or audit heads.
3. More than 3,500 serve as chief information officers, chief information security officers, security directors, security managers or consultants.
4. More than 5,400 serve as audit directors, managers or consultants.
5. Nearly 13,000 additional CISAs are currently employed in managerial or consulting positions in IT operations or compliance.
You can see with me that the statistics attests to the importance of the knowledge, skills and recognition achieved by IT security certified professionals.
For my career, the designation has not only made me an authority in the field but bestowed additional audit and security responsibilities and affording me an opportunity of being part of important IT assurance and consulting engagements.
The future is bright for those with security certifications. They are the future business leaders – CEOs, CFOs, chief audit executives, audit partners or audit heads, chief information security officers, security directors, security managers or consultants. Definitely, there will be more certified professional in the future so long as the importance of enterprise IT security would not be ignored.
Q. Finally, what tips and advice would you have for students, who are working to get their ISACA CISA certification or interested in IT security and audit? What would you encourage them to do?
Studying for CISA examination is one step in achieving this Certification. There are a lot of study aids out there to prepare for the exam. CISA Review Manual is a great resource for this exam. The manual reflects a complete syllabus for the CISA examination. Like I said it is only for review purposes and does not preclude extensive study of related text books on information systems. Students should also visit ISACA website for an updated textbooks that covers CISA topics and exam question model. It is also important to attend review classes. Experience in IT audit, control and security is very relevant and emphasizes hands on. Students should seek for IT audit experience in order to understand what the issues are. In summary bear in mind that for you to be certified, you must pass the examination, agree to adhere to ISACA's Code of Professional Ethics, submit evidence of a minimum of five years of professional IS auditing, control, or security work, and abide by a program of continuing professional education.
Again, thank you for having me.
Continued from
Why CISA? What is CISA? (1)
Jidaw.com thanks Colman Okoro for his time and the great work he is doing in information systems auditing and IT assurance.
Colman Okoro is Senior IT Associate- (Information Assurance) with Clifton Gunderson LLP, firm of certified public accountants and consultants with office in Calverton, Maryland, USA
What
Do you Have to Say? Post
Your Comments about this article Here:
COMMENTS
for "What is CISA, Why CISA - Certified Information Systems Auditor":
|
January 24, 2011
Mary Amirtha
says:
|
Information security and auditing - I am in need of
teaching material/tutorial related with Information security and
Auditing especially about what BS7799 can do, computer assisted
audit tools and techniques, present auditing models etc.
|
|
December 2, 2010
L.G. Bhute
of nagpur (maharashtra), India
says:
|
I cleared CISA in 2009. Working in
Government Sector. Conducted 4 to 5 IT Audit of system developed
in State Government Departments of Maharashtra State. Running
age of 45. Should have any opportunity in
private/public/corporate sector with good salary
|
|
October 19, 2010
adityavaranasi
of India
says:
|
Is fresher of cisa eligible for higher
salary? I need to know can freshers of cisa can earn more?
|
|
July 21, 2010
ajayi ibukunoluwa of Nigeria
says:
|
what is cisa and why cisa - pls i
want to know if there's any exemption if one already a chartered
accountant and pls is there an alternative for the 5yrs audit
experience?
|
|
April 29, 2010
dennis namandah
of Kenya
says:
|
how do I do cisa without experience?
|
|
April 15, 2010
Ogunyemi Sanyaolu of Lagos, Nigeria
says:
|
How long does it take to be a CISA and what is the qualification
that I need to possess to sit for CISA exam.
|
|
March 13, 2010
sulaimon oladipo
of Lagos, Nigeria
says::
|
I appreciate the contributions. I will like to add the fact all
work processes are now being computerized and so there is a need
for the management to check it how it goes(audit), the
governance, procurement processes (new softwares and systems),
prevention and management of information asset in case of any
form of disaster. CISA will adequately answer all these. i
became a CISA in Dec 2009. Im looking for a better place to
acquire experience and knowledge.
|
|
March 10, 2010
Edafe of Lagos, Nigeria
says::
|
What is the difference between financial audit and the said
information audit? how is it different from statutory audit as
against information audit. Again, how many certification stages
are there in CISA?
|
|
December 4, 2009
Alphonsus Eze
of Lagos, Nigeria
says::
|
CISA is a very tough exam and as such requires thorough
preparation. Most of the exam questions are senario-based
questions. CISAs Abi?
|
|
December 1, 2009
Peter Ama of Nigeria
says::
|
CISA is yet to be recognized in the order of civil service in
Nigeria. How then can the certificate be beneficial to
accountants/auditors working in that sector?
|
|
November 4, 2009
Colman Okoro (The Author)
says::
|
CISA would be relevant to a legal person hoping to use computer
forensics for criminal cases. I am not too sure about Tax.
Thanks
|
|
October 31, 2009
Oyewo Johnson of Lagos, Nigeria
says:
|
I am a legal practitioner who recently sat for CISA exams and
passed. I will like to know if the CISA qualification is
relevant to tax in anyway. I would not know if one can combine
both CISA and ACTI. Thank you.
|
|
|
|
|
RSS Feed |
| |
|
Recommended Self Development
Resources |
|
|
|
|
|
|
|
|
|
| |
|
|
Get the job You
deserve. Wishing you the best in your Job
hunt. Be Creative and Persevere ...You will get there |
| |
|
|
| |
| |
| |
|
To achieve success and independence by Start and Build
your career and
investing in yourself. Age, Sex and Background are not as
important as your desire and your thinking. NOTE:
TRAINING IS NOT A GET-RICH-QUICK SCHEME. TRAINING IS ABOUT HARD
WORK - UNDERSTANDING THE PRINCIPLES, IDENTIFYING
THE CHALLENGES AND OPPORTUNITIES AND INVESTING QUALITY EFFORT TO MAKE A
DIFFERENCE.
. |
|
