This topic will be assorted rambles and comments regarding what I now call the “CisA” exam. Check out this post that started it all: Where is the IS in CISA?
– First of all, I realize that different exams are used. The guy next to me (the Deloitte guy) had a different version. But still, shouldn’t all versions contain similar content? Maybe his was all IT and very little audit?
– I have to admit that I’m thrilled that I passed the exam. Like the CISSP, it helps get you in the door. Regardless of what I thought of the exam, it means much more to HR folks and hiring managers. Another confession: the #1 reason I went after the CISA certification is because, in a previous job, I hired contract IT auditors (see Interviewing IT Auditors), and almost every resume I saw during that year had those letters on it. So it was a matter of survival. Did I learn anything? I’m embarrassed to say that what I learned was worth the investment of time and money. Like I said in my About page, “I still have a lot to learn.” It’s still true. Enough confessions…
– When I took the CISSP exam, I knew I passed. I wasn’t sure about the CISA. I guess that means I know more than I realize.
– One strange exam “help” website I found stated that the CISA is “40% technology + 60% business practice.”[Normally, I link to sites, but I wasn’t comfortable linking my readers to this one. ] That still wasn’t the percentage on my exam.
– Here’s a telling quote that makes a lot of sense to me! Wish I would have seen this before the exam. It’s the sixth Q/A on the page:
In our opinion, the $135 ISACA study guide was written for a CPA to gain CISA certification and assumes you already understand the CPA background knowledge. Details a CPA would know about audit rules, responsibilities and duties. This is what led David to write the Sybex study guide designed for use by both beginners and professionals with more experience. [emphasis mine]
One of the books I used was the Sybex. The only reason I bought it was because I learned about a free CISA review seminar being held in my area in two weeks, and it was the only book I could find and buy that weekend. It wasn’t a bad book. I’d rather have used the Shon Harris book.
Ok, I think I’m done ranting about this exam and how little info tech was on it. Anyone want to add anything from their experience?
Read my other CisA rant: Where is the IS in CISA?
** FREE CISA Study Guide **