It's not enough to possess knowledge - one must be certified. If you're a system auditor, there's no better certification than the CISA. It certifies that your knowledge meshes with the requirements of the ISACA. Information technology is a field that is always in flux, and with each advance in technology come related questions of business practice and ethics - and ultimately these become questions of law. A technology auditor must know not only the law, but the reasons for the law.
Now the CISA examination itself is a grueling four hour process, and you must have experience either in auditing or in IT to qualify for it. Six subjects are examined in the four hours, and perhaps the most important of these is Information Security Processes.
Information Security Processes is a section that actually covers the entire range of actions incorporated within an audit process. As part of this process, information is first collected, both from sources within and outside the organization. This information gathering must itself be painstaking and reliable - remember, if you have flawed data at the start, it will effect your subsequent results and from there the entire progress and ultimate success of your auditing efforts.
Once you have your data, this information is carefully documented and studied, and a thorough and meticulous assessment made of the software used by the organization. Network security data flow is then tested, examining how securely data transfers are within the organizations internal networks - something that can be critical. Besides all this, any continuity plans the business may have in case of disaster or catastrophic failure are examined, as also backup plans floated by the business in case of total failure or any sort of disaster. Finally, one examines the areas where information is physically stored - this is of crucial importance, as a failure in this area can have disastrous consequences. The offices and areas where business is actually conducted must also be carefully examined carefully by the conscientious auditor.
Pass The Certified Information Systems Auditor Exam on Your First Try with 2 Hours of Video Instruction and 2,400 CISA Questions Exam Simulator in one System.
Course Contents Part 1: Our Course Includes 2 Instructional CDROMS that run as program on your computer.
Course Contents Part 2: 2,400 CISA Questions Exam Simulator in one System. (Also Included in the Course)
CISA
ไม่มีความคิดเห็น:
แสดงความคิดเห็น