Certified Information Systems Auditor(CISA)

Since 1978, the CISA certification has been a globally accepted standard of achievement among information systems (IS) audit, control and security professionals..


The CISA certification was specifically created for professionals with work experience in information systems auditing, control or security that include:

IS/IT Auditors Security professionals IS/IT Consultants IS/IT Audit managers

More than 106,000 professionals have earned the CISA designation since inception. CISA retention each year consistently remains more than 90 percent.

  • More than 29,000 serve as audit directors, managers or consultants and auditors (IT and non-IT).
  • More than 11,000 are IT directors, managers, consultants and related staff.
  • More than 10,000 are employed in managerial, consulting or related positions in IT operations or compliance.
  • More than 9,300 are security directors, managers, consultants and related staff.
  • More than 2,600 CISAs are CEOs, CFOs or equivalent executives.
  • More than 2,500 are CIOs, CISOs, or chief compliance, risk or privacy officers.
  • More than 2,400 serve as chief audit executives, audit partners or audit heads.

The CISA certification is sought by those who audit, control, monitor and assess an enterprise’s information technology and business systems. CISAs are recognized internationally as professionals with the assurance knowledge, skills, experience and credibility to leverage standards, manage vulnerabilities, ensure compliance, offer solutions, institute controls and deliver value to the enterprise. Often, CISA is a mandatory qualification for employment an information systems auditor.

Today the CISA exam is offered three times in a Year i.e. June, September and December and consists of 200 objective type questions which are to be completed in a 4 hour duration.

The CISA certification has wide acceptance in India and over the years, some highlights include

  • The Securities and Exchange Board of India (SEBI) mandates that trading members who have obtained approval from Exchange for Computer-to-Computer Link (CTCL) trading software are required to have the CTCL trading facility audited by a CISA/CISSP/ISA/DISA-certified auditor.
  • The Income Tax Department of India (ITD) requires all e-return intermediaries to be CISA- or ISA-certified.
  • The Controller of Certificate Authorities, Ministry of Information Technology has recognized CISA® for conducting Audit of Certificate Authorities.
  • Mobile Share Trading Guidelines issued by Bombay Stock Exchange recognize the CISA certification by requiring the following: "…the member is required to submit the system audit certificate on yearly basis duly certified by the CISA certified or equivalent system auditor..."
  • Third-party audits of Smart Order Routing in the Indian securities market must be conducted by a CISA or equivalent.
  • Reserve Bank of India (RBI) requires CISA-qualified personnel to perform IT audits on the IT infrastructure of all banks that hold government securities.
  • The Securities Exchange Board of India requires biannual system audits of all mutual funds to be conducted by an independent auditor who is CISA/CISM-certified or equivalent.

The Benefits of CISA

Simply put, when you have a CISA, your credentials, knowledge and capabilities are immediately understood by potential employers and fellow professionals alike With a CISA designation, there is no need to question your credentials. You have a CISA, so your credentials are understood.

CISA Certification:

  • Confirms your knowledge and experience
  • Quantifies and markets your expertise
  • Demonstrates that you have gained and maintained the level of knowledge required to meet the dynamic challenges of a modern enterprise
  • Is globally recognized as the mark of excellence for the IS audit professional
  • Combines the achievement of passing a comprehensive exam with recognition of work and educational experience, providing you with credibility in the marketplace.
  • Increases your value to your organization
  • Gives you a competitive advantage over peers when seeking job growth
  • Helps you achieve a high professional standard through ISACA’s requirements for continuing education and ethical conduct

Boost Your Credentials and Gain a Competitive Edge

The CISA designation is a globally recognized certification for IS audit control, assurance and security professionals. Being CISA-certified showcases your audit experience, skills and knowledge, and demonstrates you are capable to assess vulnerabilities, report on compliance and institute controls within the enterprise.Enhance your career by earning CISA—world-renowned as the standard of achievement for those who audit, control, monitor and assess information technology and business systems.

CISA Impacts Your Career and Your Organization

Enterprises demand IS audit professionals that possess the knowledge and expertise to help them identify critical issues and customize practices to support trust in and value from information systems.The skills and practices that CISA promotes and evaluates are the building blocks of success in the field. Possessing the CISA demonstrates proficiency and is the basis for measurement in the profession.

Employers seek out CISA's

With a growing demand for individuals possessing IS audit, control and security skills, CISA has become a preferred certification program by individuals and organizations around the world.

CISA employees:

  • Are highly qualified, experienced professionals
  • Provide the enterprise with a certification for IT assurance that is recognized by multinational clients, lending credibility to the enterprise
  • Are excellent indicators of proficiency in technology controls
  • Demonstrate competence in five domains, including standards and practices; organization and management; processes; integrity, confidentiality and availability; and software development, acquisition and maintenance
  • Demonstrate a commitment to providing the enterprise with trust in and value from your information systems
  • Maintain ongoing professional development for successful on-the-job performance

CISA Certification Requirements

To earn the CISA certification, candidates are required to:

How to Become CISA Certified

The CISA designation is awarded to individuals with an interest in Information Systems auditing, control and security who meet the following requirements:

  1. Successful completion of the CISA examinatio
  2. Submit an Application for CISA Certification
  3. Adherence to the Code of Professional Ethics
  4. Adherence to the Continuing Professional Education Program
  5. Compliance with the Information Systems Auditing Standards

Preparing for the CISA exam

ISACA Bangalore chapter enables you to prepare for the exam. Regular weekend classes and crash courses are conducted at the Bangalore Chapter. See the Review Classes page for more information and/or Write to chapter@isacabangalore.org for more information.

Taking the CISA exam

The CISA exam is offered three times in a year i.e. June, September & December and is usually held on the second sunday of the respective months. The exam comprises 200 questions and is to be taken within a three hour time frame. For more details about the exam, please Click here.

For a list of frequently asked questions, click FAQ's

Get a taste of the exam and test your exam chops click here for a sample exam.

Over the years CISA has been in the news wining accolades, recognition, laurels which have propelled it to become the most sought after certification. Click here to read about CISA in the news

CISA has also been recognized in several fora and has been awarded several times. Some high lights include

  • SC Magazine selected CISA as a finalist of the 2014 “Best Professional Certification Program” in the Professional Awards category for the fourth year in a row.
  • The Australian Signals Directorate listed CISA as a prerequisite for its Information Security Registered Assessor Program.
  • CISA is listed among the highest-paying certifications in Foote Partners IT Skills and Certifications Pay Index™ (ITSCPI) for 1 July 2013 - 1 October 2013.
  • CISA was noted as having gained 20% in average market value from 1 April to 1 October 2012 and was listed as a highest-paying certification in Foote Partners IT Skills and Certifications Pay Index™ (ITSCPI). CISAs are earning premiums that place them in the top 7% of all 268 certifications currently being reported.
  • CISA was listed among the four highest-paying certifications in the 2012 IT Skills and Salary Survey by Global Knowledge andTechRepublic.
  • CISA is recognized as one of the “Top Five Security Certifications” in a Global Knowledgeblog post.
  • The Skills Framework for the Information Age (SFIA) has recognized the CISA and CISM certifications by mapping them to the SFIA and showing the relevance of the related skills and experience.(www.sfia.org.uk)
  • CISA has earned accreditation from the American National Standards Institute (ANSI) under the International Standard ANSI/ISO/IEC 17024 for the past four years.

For a more comprehensive list of CISA recognitions, please visit


Make the most of your relatioship with ISACA

Become a Member