Passing the CISA exam does not make you a good IT auditor anymore than passing a driving test makes you a good driver.
Passing either exam says that you know the basics, but you still have a lot to learn.
Most likely, you still don’t know how and when to use what you know and apply it to the current situation. That’s why experience is necessary. Lots of it.
I’m going on a rant here, so reader beware. If you read on, make sure you hang in there until I make my main point in the end.
You just won’t feel the love right away…
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Employment, How to..., Technology, Written by Skyyler
Tagged as brakes, certification, cisa, exam, experience, interview, it auditor
If you’re looking for FREE practice questions for the CISA exam, I found a good resource.
The site provides over 900 questions for you to test yourself.
Continue reading →
Like this:
Like Loading...
Below is a list of the top paying certs for 2014 (including average salary amount).
The list is based on the 2014 IT Skills and Salary Survey conducted by Global Knowledge and Penton, completed in October 2013.
After the list, I offer a few comments on some of the certs and the salaries.
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Employment, Technology, Top 10
Tagged as cca, ccda, ccee, CEH, certification, cisa, cism, CISSP, crisc, exam, itil, msce, pass, pay, pmp, rhcsa, salary, scrum, six sigma
If you’re planning to take the CISA exam, you need to take ISACA‘s own CISA Self-Assessment exam (get it here).
The exam consists of 50 questions that allow exam candidates to “assess their knowledge of the CISA job practice areas and determine in which information security areas they may have strengths and weaknesses.”
Like this:
Like Loading...
Filed under Audit, Certification, Free, Security
Tagged as certification, cisa, exam, free, IS, isaca, IT, pass, prep, questions, quiz, rant, self-assess, study
This post answers these questions: Why get the CISSP certification? What has it done for me? What else do I need to know?
Charles, one of my readers, asked me, “Do you have postings related to CISSP?” Not many, but here’s one….
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Security, Technology
Tagged as certification, cisa, CISSP, cpe, exam, information security, isaca, least privileged, thrifty
To make these posts easier to find (and link to), here’s a list of all the CISA-related posts on this blog, in alphabetical order.
I’ll add other CISA posts as they are written.
Continue reading →
Like this:
Like Loading...
ISACA has a free glossary of IT, audit, and security terms that is not only helpful in studying for the CISA exam, but is a good reference guide for new and experienced auditors.
Continue reading →
Like this:
Like Loading...
Filed under Audit, Free, Security, Technology
Tagged as assurance, Audit, black box, chain, cisa, custody, define, definition, download, exam, free, glossary, guide, isaca, materiality, objectivity, reference, sampling, Security, SOD, suspense, wsdl
If you’re an IT auditor (or want to be one) and don’t have any audit certifications, which certification should you get, the CISA or the CIA? If you want to get both, which one do you get first?
Full disclosure: I have the CISA, but not the CIA. Back when the CIA was 4 exams, I studied for all the CIA exams except the financial exam, but ended up not taking any of the exams. I also have the CISSP.
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Security, Technology
Tagged as Audit, auditor, basics, certification, cia, cisa, cism, CISSP, cost, cpe, dummies, exam, financial, gold standard, guide, iia, internal, isaca, isc2, IT, learn, master, mcse, path, pay, perception, risk, salary, Security, study, survey, trifecta, tutorial
What’s the biggest problem in computer security, according to valsmith at carnal0wnage.attackresearch.com? Well, it’s…
Staffing.
As the author admits, the post leans toward self-promotion of the company, but it makes many good points and deserves a read and a good pondering.
Continue reading →
Like this:
Like Loading...
Filed under Audit, Security
Tagged as analyst, big 4, budget, certification, cisa, CISSP, compliance, computer, consultants, CPEs, data mining, demand, documentation, exam, exploit, IS, little 4, lone ranger, management, penetration, problem, sans, Security, skills, sox, supply, valsmith
When I was studying for the CISA, I created a 40-page study guide for myself that you can download for free.
If you decide to use it, here’s a couple points to keep in mind:
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Free, Technology
Tagged as certification, cisa, exam, free, guide, isaca, review manual, study
This topic will be assorted rambles and comments regarding what I now call the “CisA” exam. Check out this post that started it all: Where is the IS in CISA?
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Technology
Tagged as certification, cisa, CISSP, cpa, exam, isaca, rant, shon harris, study, sybex
Why do so many IT auditors who pass the CISA know so little about IS and security–and in my opinion aren’t worth hiring* for that and several other reasons?
Well, I think I figured it out. So what clarified my understanding? I took the CISA exam.
Like this:
Like Loading...
Filed under Audit, Certification, Technology
Tagged as cisa, CISSP, exam, IS, isaca, IT, pass, questions, study
Getting ready to take the CISA, CISM, CISSP, CIA, PMP, MCSE, or other certification exams? Here’s what you need to do to pass those tests:
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, How to..., Security, Technology
Tagged as a+, ace, ccna, certification, cia, cisa, cisco, cism, CISSP, exam, free, itil, mcp, mcsa, msce, network, pass, pmp, practice, questions, Security, test, tips
According to Dice, the job search site, certain certifications increase technology professionals’ salaries at all experience levels.
After surveying nearly 17,000 techies, Dice found that the following certifications draw the most additional dollars (no particular order):
Continue reading →
Like this:
Like Loading...
Filed under Audit, Certification, Security, Technology, Top 10
Tagged as a+, ccna, certification, CISSP, exam, increase, itil, Linux, mcp, mcsa, mcse, network, pay, pmp, salary, Security, study materials, Unix, vendor neutral
Passing the CISA exam does not make you a good IT auditor anymore than passing a driving test makes you a good driver.
ITauditSecurity 