| Let us take a look at the core basis of the CISA | | | | to be covered for the dedicated auditor. How about |
| certification examination, which is essentially an | | | | Information Technology Governance, for example, |
| examination of recognition and qualification for the | | | | which examines every aspect of survival and growth |
| aspiring Information Technologies Auditor. The | | | | for a successful company. There are some who |
| examination ensures that a candidate has an accurate | | | | would argue that survival IS growth - and therefore an |
| working knowledge of the current positions of different | | | | organization must identify new and necessary |
| aspects of the IT industry. For example, he or she | | | | technologies to incorporate into it's systems if it is to |
| must know the status of current laws as regards the | | | | ensure it's continued survival. |
| IT industry, as well as the changing nature of those | | | | Helping to define this process is the task of the |
| laws, and the impact any such changes would have | | | | dedicated and competent IT auditor - he or she will |
| on the industry | | | | examine and identify necessary new technology, and |
| The requirements for the CISA are demanding, to say | | | | then manage and oversee it's installation and |
| the least - for example, it is impossible to even take | | | | incorporation into the businesses' present systems. |
| the exam unless you have some actual experience | | | | One has to emphasize here that the integration has to |
| working at auditing or in some position in the | | | | be flawless, in that the process of installation and |
| Information Technology industry. The exam itself is | | | | assimilation must result in as little disruption of the |
| grueling and not for the faint of heart, with a strenuous | | | | business' current processes as possible. |
| two hundred questions covering six core areas of | | | | Also, integration of new technology and systems must |
| interest. | | | | result in growth for the business, or in some |
| These six areas are the central areas of the | | | | reasonable advantage, else the purpose is defeated. |
| Information Technology industry, and include subjects | | | | All this amounts to correct and accurate assessments |
| like Information Security Processes, which examines | | | | carried out in the very beginning - this is key, and if it is |
| the integrity of a company's data transfers over it's | | | | done right, everything that follows can then be |
| internal networks, and also assesses the sophistication | | | | implemented by the conscientious auditor. Remember, |
| and reliability of it's software. | | | | the purpose of this process is not theoretical, but |
| And it also examines a crucial aspect of company | | | | practical - it is to aid the business in maintaining it's |
| survival, the security and backup capability that the | | | | position, and in ensuring it's growth, and in a world |
| company maintains for it's core records. | | | | where competition is so intense, growth equals survival, |
| Yet all this is only a single aspect of the CISA | | | | extending the company's life span. |
| certification examination. There are a lot more aspects | | | | |