UK flag UK
+44 (0) 207 874 5000
+44 (0) 207 874 5000
  • Home
  • Courses
  • Certified Information Systems Auditor (CISA) Training

Certified Information Systems Auditor (CISA) Training

Course 2040

  • Duration: 4 days
  • Exam Voucher: Yes
  • Language: English
  • Level: Intermediate

An ISACA CISA (Certified Information Systems Auditor) is recognised as one of the leading authorities in the areas of IS (Information Systems) auditing, control, and information security. This official CISA training course provides in-depth coverage of the five CISA domains covered on the CISA certification exam. These domains include Information System Auditing, governance and management of IT; information systems acquisition, development, and implementation; information systems operations and business resilience; and protection of information assets.

U.S. DoDM 8140.03 APPROVED BY DEPARTMENT OF DEFENSE

CISA Training Delivery Methods

  • In-Person

  • Online

  • Upskill your whole team by bringing Private Team Training to your facility.

CISA Training Course Information

In this CISA training, you will: 

  • Prepare for the Certified Information Systems Auditor (CISA) Exam. 
  • Develop and implement a risk-based IT audit strategy in compliance with IT audit standards. 
  • Evaluate the effectiveness of an IT governance structure. 
  • Ensure that the IT organisational structure and human resources (personnel) management support the organisation’s strategies and objectives. 
  • Review the information security policies, standards, and procedures for completeness and alignment with generally accepted practices. 

Certified Information Systems Auditor (CISA) Training Course Prerequisites 

IT professionals must have 5 years or more of IS audit, control, assurance, and security experience.

Certified Information Systems Auditor (CISA) Certification Exam Information 

This ISACA certification prep course is specifically designed for experienced information security professionals who are preparing to take the ISACA CISA exam. Click here to view more ISACA certification prep training ›

CISA Training Learning Objectives:

  • Plan an audit to determine whether information systems are protected, controlled, and provide value to the enterprise.
  • Conduct an audit following IS audit standards and a risk-based IS audit strategy.
  • Communicate audit progress, findings, results, and recommendations to stakeholders.
  • Conduct audit follow-up to evaluate whether risks have been sufficiently addressed.
  • Evaluate IT management and monitoring of controls.
  • Utilise data analytics tools to streamline audit processes.
  • Provide consulting services and guidance to the enterprise to improve the quality and control of information systems.
  • Identify opportunities for process improvement in the enterprise's IT policies and practices.

Topics:

  • IS Audit Standards, Guidelines, Functions, and Codes of Ethics
  • Types of Audits, Assessments, and Reviews
  • Risk-based Audit Planning
  • Types of Controls and Considerations
  • Audit Project Management
  • Audit Testing and Sampling Methodology
  • Audit Evidence Collection Techniques
  • Audit Data Analytics
  • Reporting and Communication Techniques
  • Quality Assurance and Improvement of Audit Process
  • Evaluate the IT strategy for alignment with the enterprise’s strategies and objectives.
  • Evaluate the effectiveness of IT governance structure and IT organisational structure.
  • Evaluate the enterprise’s management of IT policies and practices.
  • Evaluate the enterprise’s IT policies and practices for compliance with regulatory and legal requirements.
  • Evaluate IT resource and portfolio management for alignment with the enterprise’s strategies and objectives.
  • Evaluate the enterprise’s risk management policies and practices.
  • Evaluate IT management and monitoring of controls.
  • Evaluate the monitoring and reporting of IT key performance indicators (KPIs).
  • Evaluate whether IT supplier selection and contract management processes align with business requirements.
  • Evaluate whether IT service management practices align with business requirements.
  • Conduct periodic reviews of information systems and enterprise architecture. Evaluate data governance policies and practices.
  • Evaluate the information security programme to determine its effectiveness and alignment with the enterprise’s strategies and objectives.
  • Evaluate potential opportunities and threats associated with emerging technologies, regulations, and industry practices.

Topics

  • Laws, Regulations, and Industry Standards
  • Organisational Structure, IT Governance, and IT Strategy
  • IT Policies, Standards, Procedures, and Guidelines
  • Enterprise Architecture and Considerations
  • Enterprise Risk Management (ERM)
  • Privacy Programme and Principles 
  • Data Governance and Classification
  • IT Resource Management
  • IT Vendor Management
  • IT Performance Monitoring and Reporting
  • Quality Assurance and Quality Management of IT
  • Evaluate whether the business case for proposed information system changes meets business objectives.
  • Evaluate the enterprise's project management policies and practices.
  • Evaluate controls at all stages of the information systems development lifecycle.
  • Evaluate the readiness of information systems for implementation and migration into production. • Conduct a post-implementation review of systems to determine whether project deliverables, controls, and requirements are met.
  • Evaluate change, configuration, release, and patch management policies and practices.

Topics:

  • Project Governance and Management
  • Business Case and Feasibility Analysis
  • System Development Methodologies
  • Control Identification and Design
  • System Readiness and Implementation Testing
  • Implementation Configuration and Release Management
  • System Migration, Infrastructure Deployment, and Data Conversion
  • Postimplementation Review
  • Evaluate the enterprise’s ability to continue business operations.
  • Evaluate whether IT service management practices align with business requirements.
  • Conduct periodic reviews of information systems and enterprise architecture.
  • Evaluate IT operations to determine whether they are controlled effectively and continue to support the enterprise’s objectives.
  • Evaluate IT maintenance practices to determine whether they are controlled effectively and continue to support the enterprise’s objectives.
  • Evaluate database management practices.
  • Evaluate data governance policies and practices.
  • Evaluate problem and incident management policies and practices.
  • Evaluate change, configuration, release, and patch management policies and practices.
  • Evaluate end-user computing to determine whether the processes are effectively controlled.
  • Evaluate policies and practices related to asset lifecycle management.

Topics:

  • IT Components
  • IT Asset Management
  • Job Scheduling and Production Process Automation
  • System Interfaces
  • End-user Computing and Shadow IT
  • Systems Availability and Capacity Management
  • Problem and Incident Management
  • IT Change, Configuration, and Patch Management
  • Operational Log Management
  • IT Service Level Management
  • Database Management
  • Business Impact Analysis
  • System and Operational Resilience
  • Data Backup, Storage, and Restoration
  • Business Continuity Plan
  • Disaster Recovery Plans
  • Conduct audits by IS audit standards and a risk-based IS audit strategy.
  • Evaluate problem and incident management policies and practices.
  • Evaluate the enterprise's information security and privacy policies and practices.
  • Evaluate physical and environmental controls to determine whether information assets are adequately safeguarded.
  • Evaluate logical security controls to verify information confidentiality, integrity, and availability.
  • Evaluate data classification practices for alignment with the enterprise’s policies and applicable external requirements.
  • Evaluate policies and practices related to asset lifecycle management.
  • Evaluate the information security programme to determine its effectiveness and alignment with the enterprise’s strategies and objectives.
  • Perform technical security testing to identify potential threats and vulnerabilities.
  • Evaluate potential opportunities and threats associated with emerging technologies, regulations, and industry practices.

Topics:

  • Information Asset Security Policies, Frameworks, Standards, and Guidelines
  • Physical and Environmental Controls
  • Identity and Access Management
  • Network and End-Point Security
  • Data Loss Prevention
  • Data Encryption
  • Public Key Infrastructure (PKI)
  • Cloud and Virtualised Environments
  • Mobile, Wireless, and Internet-of-Things Devices
  • Security Awareness Training and Programmes
  • Information System Attack Methods and Techniques
  • Security Testing Tools and Techniques
  • Security Monitoring Logs, Tools, and Techniques
  • Security Incident Response Management
  • Evidence Collection and Forensics CISA Exam Preparation
  • CISA Exam Rules • Exam Tips • Day of the Exam • CISA Certification Step
Get This Course £2,890 For Team Prices Call: 44 (0) 207 874 5000

  • 4-day instructor-led training course

  • Official ISACA Curriculum

  • Exam voucher included with course tuition

  • One-on-one after course instructor coaching

#2040
  • Guaranteed to Run - you can rest assured that the class will not be cancelled.
    Dec 3 - 6 2:00 PM - 9:30 PM GMT
    Virtual
  • Guaranteed to Run - you can rest assured that the class will not be cancelled.
    Jan 7 - 10 3:00 PM - 10:30 PM GMT
    Austin or Virtual
  • Feb 18 - 21 9:00 AM - 4:30 PM GMT
    London or Virtual
  • Apr 22 - 25 2:00 PM - 9:30 PM BST
    New York or Virtual
  • May 6 - 9 2:00 PM - 9:30 PM BST
    Toronto or Virtual
  • May 6 - 9 9:00 AM - 4:30 PM BST
    London or Virtual
  • May 20 - 23 2:00 PM - 9:30 PM BST
    Herndon, VA or Virtual
  • May 27 - 30 3:00 PM - 10:30 PM BST
    Austin or Virtual
  • Jul 8 - 11 2:00 PM - 9:30 PM BST
    Virtual
  • Jul 15 - 18 2:00 PM - 9:30 PM BST
    Virtual
  • Jul 29 - Aug 1 2:00 PM - 9:30 PM BST
    Virtual
  • Aug 5 - 8 2:00 PM - 9:30 PM BST
    Virtual
  • Aug 12 - 15 9:00 AM - 4:30 PM BST
    London or Virtual
  • Aug 12 - 15 2:00 PM - 9:30 PM BST
    Virtual
  • Aug 19 - 22 2:00 PM - 9:30 PM BST
    Virtual
  • Aug 26 - 29 2:00 PM - 9:30 PM BST
    Virtual
  • Sep 9 - 12 2:00 PM - 9:30 PM BST
    Virtual
  • Sep 16 - 19 2:00 PM - 9:30 PM BST
    New York or Virtual
  • Sep 23 - 26 2:00 PM - 9:30 PM BST
    Virtual
  • Nov 18 - 21 9:00 AM - 4:30 PM GMT
    London or Virtual

Scroll to view additional course dates

  • Bring this or any training to your organisation

  • Full-scale programme development

  • Delivered when, where, and how you want it

  • Blended learning models

  • Tailored content

  • Expert team coaching

#2040
Questions about this course?
* Required Fields
Customise Your Team Training Experience

Fill out the form below or call 44 (0) 207 874 5000

* Required Fields
Preferred method of contact:

Need Help Finding The Right Training Solution?

Our training advisors are here for you.

Contact Us

CISA Training FAQs

Certified Information Systems Auditor is issued by ISACA and directed at people who oversee ensuring that an organisation's IT and business systems are monitored, managed & protected.

IT professionals must have 5 years or more of IS audit, control, assurance, and security experience and pass the CISA exam.

Yes! We know your busy work schedule may prevent you from getting to one of our classrooms, which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.

The new update has a primary focus on exam preparation, with:

  1. Extensive analysis of the Exam Content Outline to emphasise the most important content.
  2. 7+ Subject Matter Experts’ input to focus on elements that are most important for passing the exam.

Added content includes exam preparation tips such as: 

  • Types of questions to expect
  • Study planning tips
  • Question answering strategies
  • More practice questions (pre-test and mock exam

Related Courses

  • ISACA
    CISM Certified Information Security Manager

    In this course, you will gain the knowledge needed to successfully pass the certification exam and become a CISM, ISACA Certified Information Security Manager.

    Intermediate
    4 days
    Online or In-class
    Starts from £2,890
  • ISACA
    CGEIT Certification Training

    This official ISACA CGEIT certification course preps you for the exam & provides you with in-depth coverage of the CGEIT Framework & its implementation.

    Intermediate
    4 days
    Online or In-class
    Starts from £2,650
  • ISACA
    Certified Risk and Information Systems Control (CRISC) Training

    This official ISACA CRISC training course helps you prepare for the certification exam & provides you with in-depth coverage of the four CRISC domains.

    Intermediate
    4 days
    Online or In-class
    Starts from £2,890