The Certified Information Systems Auditor (CISA) is an industry certification in the field of audit, security and control of information systems. CISA has been a globally accepted certification standard since 1978 that's designed to demonstrate competence in the fields of IT audit, IT security, IT risk management and overall IT governance.
The CISA program was established by the Information Systems Audit and Control Association (ISACA) in order to standardize the knowledge and processes in the field of IT governance and to recognize professionals in the field who display sufficient knowledge.
In order to be awarded the certificate, qualified professionals must take the CISA exams, which are conducted every June, September and December of each year. The exam consists of 200 multiple choice questions with a total score of 800 points. A passing score requires 450 points. After obtaining the CISA certifications, a professional must log 20 hours of relevant training per year and at least a total of 120 hours in a three-year period in order to retain the CISA certification.
