CertificationsCertifications
CISA Certification
The Certified Information Systems Auditor® (CISA®) program is designed to assess and certify individuals in the IS audit, control and security profession who demonstrate exceptional skill and judgment. CISA has grown to be globally recognized and adopted worldwide as a symbol of achievement. The CISA certification has been earned by more than 44,000 professionals since inception. As Sarbanes-Oxley Act becomes effective in the United States, the value of CISA has increased dramatically due to the increasing demand for IS audit skills and knowledge in external audits, internal audits and IT governance. For more information on becoming a CISA, see www.isaca.org.
The CISA Exam
The CISA exam is one of the requirements to become a CISA. It is offered twice a year in June and December. It consists of 200 multiple-choice questions, administered during a four-hour session in multiple locations (e.g. San Francisco and San Jose in the Bay Area). The purpose of the exam is to test a candidate’s knowledge, evaluation and application of IS audit principles and practices and technical content areas. The San Francisco Chapter offers an 8-week CISA review course in downtown San Francisco starting April 9, 2005. For more information, go to CISA Review Course.
CISM Certication
The Certified Information Security Manager® (CISM®) certification program is developed specifically for experienced information security managers and those who have information security management responsibilities. The CISM certification is for the individual who manages, designs, oversees and/or assesses an enterprise’s information security (IS). The CISM certification promotes international practices and provides executive management with assurance that those earning the designation have the required experience and knowledge to provide effective security management and consulting services. Individuals earning the CISM certification become part of an elite peer network, attaining a one-of-a-kind credential. The CISM job practice also defines a global job description for the information security manager and a method to measure existing staff or compare prospective new hires. For more informatin on becoming a CISM, see www.isaca.org.
The CISM Exam
The CISM exam covers five information security management areas, each of which is further defined and detailed through task and knowledge statements. These areas and statements were developed by the CISM Certification Board and represent a job practice analysis of the work performed by information security managers as validated by prominent industry leaders, subject matter experts and industry practitioners. It is offered twice a year in June and December. It consists of 200 multiple-choice questions, administered during a four-hour session in multiple locations (e.g. San Francisco and San Jose in the Bay Area).For more information, go to CISM Review Course.