ISACA

For Student

Get to know ISACA

• 1969 ISACA was incorporated in, this to recognized for a centralized source of

information and guidance in the growing field of auditing controls for computer

systems.

• It was formerly known as the Information Systems Audit and Control Association but

now goes simply by ISACA

• ISACA is a global nonprofit association focused on IT governance.

• Today, ISACA’s membership—more than 100,000 strong worldwide—is

characterized by its diversity. Members live and work in more than 180 countries and

cover a variety of professional IT-related positions—to name just a few, IS auditor,

consultant, educator, IS security professional, regulator, chief information officer and

internal auditor

• Another of ISACA’s strengths is its chapter network. ISACA has more than 190

chapters established in over 75 countries worldwide, and those chapters provide

members education, resource sharing, advocacy, professional networking and a host

of other benefits on a local level.

ISACA (Information Systems Audit and Control Association)

Area of ISACA certification:

1. Information systems audit process

2. Information systems governance

3. Systems and infrastructure life cycle management

4. Information technology service delivery and support

5. Protection of information assets

6. Business continuity and disaster recovery

ISACA Vision and Mission

“For professionals and organizations

be the leading global provider of knowledge, certifications, community,

advocacy and education

on information systems assurance and security,

enterprise governance of IT, and IT-related risk and compliance”

“Trust in, and value from, information systems”

ISACA’s vision (to aspire to as an organization)

ISACA’s mission (to guide decision making and investments)

About ISACA

• ISACA Is Non-profit association in the area of:

• IT auditing/ auditors

• IT security professionals

• IT risk and compliance professionals

• IT governance professionals and more!

• Nearly all industry categories: finance, banking, public accounting, government/public sector, technology, utilities and manufacturing.

About ISACA

• What is an IT Auditor?

An IT Auditor performs a formal inspection and verification to check whether a standard or set of guidelines is being followed, records are accurate, or efficiency and effectiveness targets are being met.

CISA certification is the gold-standard credential for Information Systems

Auditors. CISA certified systems auditors have the skills and expertise to

audit computer systems, manage vulnerabilities, institute security controls

and oversee compliance at the enterprise level

Big 5 IT Certification with highest salary.

Research from Footepartners

The role of IT auditor's was born through a union of accounting and technology

fields in a computer-driven economy.

Responsible for identifying risks to a company by way of its online systems,

including databases, email, intranet and Internet networks, as well as tangible

threats to computer hardware and equipment.

Avoiding damage done by disgruntled former workers, competitors or hackers

while highlighting inadequacies and areas for improvement are all roles of this

profession.

To succeed in this position, you must have a variety of technology, business

and social skills.

Skills of Auditor

• Hard SkillsThe hard skills IT auditors include:

• Strong understanding of general computer controls, data analytics, basic system infrastructure, and risk assessment.

• Data analytics is a process of inspecting, cleaning, transforming, and modeling data to highlight useful information, suggest conclusions, and support decision-making.

• IT auditors use specialized data analysis tools or off-the-shelf database and spreadsheet software to detect fraud, find data errors, and help the organization eliminate waste

• The IT auditor needs a solid base knowledge of Basic

system infrastructure such as hardware, software,

networks, database, OS and cloud computing -- from

installation to operation and repair.

• Programming knowledge is helpful, since IT auditing

uses computer-assisted audit tools to perform many job

functions.

• Note :The auditor must learn and monitor

advancements in these tools, then apply the correct

ones to each task. 

• What is IT Security Professional?

IT Security Professional is the person responsible for implementing, monitoring and enforcing security rules established and authorized by management.

Certified Information Security Manager (CISM) | CISM covers four vital domains in cyber security management: security governance, risk management, security program creation and incidence response. The key differentiator of CISM is its focus on the big picture, i.e., how to use information security to advance top-level business goals.

• To minimize liabilities/reduce risks, the IT

security professional must:

– Stay current with security technology

– Stay current with laws and regulations

• What is an IT risk and compliance officer?

IT risk and compliance officers assess the business risk associated with the use, ownership, operation, involvement, influence and adoption of IT within enterprise while collecting evidence on both the effectiveness and operation of the IT controls during an audit period.

Certified in Risk and Information Systems Control

(CRISC) | CRISC certification demonstrates a mastery of

IT and enterprise risk management. Calculating and

mitigating risk is a coveted skill in enterprise IT; talented

CRISC certified pros make significant contributions to the business and are rewarded in kind.

About ISACA

What is IT Governance Professional?An IT governance professional is a person who oversees all the rules and regulations under which information systems function and the mechanisms put in place to ensure that the information systems in place sustain and extend the organization's strategies and objectives.

IT governance (ITG) is defined as the processes that ensure the effective and

efficient use of IT in enabling an organization to achieve its goals.

IT demand governance is the process by which organizations ensure the

evaluation, selection, prioritization, and funding of competing IT investments;

oversee their implementation; and extract (measurable) business benefits.

Certified in the Governance of Enterprise IT (CGEIT) | CGEIT validates

expertise in the principles and real-world applications of enterprise IT

governance. CGEIT certified professionals have the credibility to ensure good

governance, which reduces unanticipated security issues and helps to

formulate an agile response to any surprises that still arise.

Why a career in…IT audit, IT security, IT risk and compliance or IT governance?

• High-level understanding of organization and industry

• Exposure to senior-level management• Growth market, excellent salary potential• Networking opportunities• Potential global travel• Diverse work environment

About ISACA

16

Skill-sets needed?

• Creative

• Conceptual

• Excellent communicators

• Persuasive

• Inquisitive

About ISACA

16,000+ CRISCs certified since inception in 20105,000+ CGEITs certified since inception in 2007

18,000+ CISMs certified since inception in 200390,000+ CISAs certified since inception in 1978

About ISACA: Certification

18

• Global recognition

• Credibility

• Higher pay

• Diverse career opportunities

• Career advancement

Value of Professional Certifications

About ISACA: Certification

Recognition: SC Magazine Awards

CISA: SC Magazine’s 2011 Best Professional Certification Program finalist; 2009 winner

CISM: SC Magazine’s 2009-2012 Best Professional Certification Program finalist

CGEIT: SC Magazine’s 2011 Best Professional Certification Program finalist

About ISACA: Certification

CISA –

• Consistently ranking among the top-paying industry certifications

• Ranked as having the high paid premium

• 2ND highest paying IT security certification in 2011

• Consistently ranks among the top-paying industry certifications

• Top five of Foote Partners’ 2011 semiannual “HOT LIST Forecast” of IT skills and certifications that will increase in value

About ISACA: Certification

Foote Partners Salary Survey on IT Certifications

(Source: Foote Partners IT Skills and Certification Pay Index, 2nd quarter 2011)

CISM

• Highest-paying IT security certification in the 2012 IT Skills and Certifications Pay Index (ITSCPI)

• The top paying IT security certification in 2011

• Ranked as having the highest pay premium

About ISACA

Foote Partners Salary Survey On IT Certifications

(Source: Foote Partners IT Skills and Certification Pay Index, 2nd quarter 2011)

About ISACA: ResearchCOBIT 5

For more information please visit www.isaca.org/cobit5

About ISACA: ResearchCOBIT

For more information please visit www.isaca.org/cobit5

COBIT ranks globally among top four IT Governance Frameworks

Fact: 60,000+ downloads of COBIT 5 since its introduction in April 2012

About ISACA: ResearchCOBIT

Harley-Davidson, USASun Microsystems, USADataSek, UruguayDongbu HiTek, KoreaJefferson Wells, USAManta Group, CanadaPension-Fennia, FinlandGovernment of DubaiOntario Pension BoardPrudential, AsiaBlackboard, Inc.Allstate, USA

Unisys, USABahrain Civil ServiceCentral Bank of Republic of Armenia Curtin University of Technology, Western AustraliaBlue Cross/Blue Shield, No. Carolina & IBM Consulting Kuwait Turkish Participation BankCanadian Tire Financial ServicesCharles Schwab & Co. Inc., USAU.S. Dept of Veterans AffairsAdnoc Distributions, UAE

For more information please visit www.isaca.org/cobitcasestudies

Fact: COBIT has been touted in the media in 40 countries.

Move Yourself Forward

Student MembershipAs an ISACA student member, you will join a community of more than

1,000 students in more than 300 universities worldwide.

ISACA Students major in a varietyof areas including:Information systems

Business administrationAccounting

Information technologyEngineering

Computer Science

So don’t be left behind…Join ISACA and see what you can find.

ISACA

Student Member Benefits

Move Yourself Forward

“Knowledge and experience to put students far ahead of the competition when it comes time to begin their careers.”

ISACA urges students to form an ISACA Student Group on campus. ISACA student groups encourage education beyond the classroom and allow students to network and learn from each other.

Benefits of creating an ISACA Student Groups are:

• Ability to affiliate, if possible, with an ISACA local chapter and participate in their events;

• Become recognized by your educational institution; student membership in ISACA is not required;

• Internationally recognized by ISACA HQ with an official student group logo

ISACA Student Groups

• Have the ability to interact with professionals in the field

For more information about student group including a step by step guide, please visit http://www.isaca.org/studentgroup and http://www.isaca.org/createISG