Get your credential from ISACA as a Certified Information Systems Auditor (CISA)!Online CISA exam preparation starting at only $99.95!

As organizations around the world tighten budgets and downsize workforces, it is now more important than ever to improve your résumé with a well-established and globally respected certification such as the Certified Information Systems Auditor (CISA) credential by Information Systems Audit and Controls Association (ISACA).

The Certified Information Systems Auditor (CISA) is ISACA’s cornerstone certification. The CISA certification has been earned by more than 60,000 professionals since inception and is for the IS audit, control, assurance and/or security professionals who wish to set themselves apart from their peers. Since 1978, the CISA certification has been renowned as the globally recognized achievement for those who control, monitor and assess an organization’s information technology and business systems.

The technical skills and practices that CISA promotes and evaluates are the building blocks of success in the field. Possessing the CISA designation demonstrates proficiency and is the basis for measurement in the profession. With a growing demand for professionals possessing IS audit, control and security skills, CISA has become a preferred certification program by individuals and organizations around the world. CISA certification signifies commitment to serving an organization and the IS audit, control and security industry with distinction. In addition, it presents a number of professional and personal benefits. Visit ISACA's website to learn more about CISA certifiication requirements and how to register for your exam.

Let us help you prepare to pass your exam. Start your training today. Now.

How does the course work? What does it cost? Is it guaranteed? How do I purchase?

Enough reading already! We have fantastic web-based training, so why not just see it for yourself and let us teach you about it along the way? Try the tour now for free to see if it's the right solution for you.

Quick Facts

• Last updated in January 2010 to include new content. Updated twice yearly.
• Over 600 narrated screens, and over 860 practice questions.
• The only CISA® Preparation that provides personal support from the globally published author of the training. Have questions? Talk to author Allen Keele now at our offices at +1 (904) 406-4311.
• The only comprehensive on-line CISA^® training good enough to be backed by a 100% exam pass guarantee! See details in the Guarantee tab of this page.

This training has been custom designed and published by the world's leading CISA examination certification preparation expert and author, Allen Keele. It is streamlined to focus ONLY on the exam-related information you need, so every minute you have to invest in preparation will be used efficiently. Its special structure and presentation have been proven to take the guesswork out of your preparation. There is simply no faster way to prepare for your CISA examination.

Why wait to start preparing for the exam? This is the #1 CISA exam preparation method used by CISA exam candidates around the globe since 2006. It's backed by a true 100% money-back guarantee, and you can start your training immediately. Right now.

DoD Directive 8570.01-M

The United States Department of Defense (US DoD) Directive 8570.01-M is a set of guidelines and procedures for the training, certification, and management of the DoD Information Assurance (IA) workforce conducting Information Assurance (IA) functions. According to the DoD Directive 8570 IAT FAQ, the long-term goal of DoD 8570.01 is the creation of a sustained, professional Information Assurance workforce possessing the knowledge and skills to effectively prevent and respond to attacks against DoD information, information systems, and information infrastructures. All DoD organizations must comply the requirements of this directive in order to put the right people with the right skills in the right place. One way DoD 8570.01 prepares the IA workforce is by specifically requiring every full- and part-time military service member, defense contractor, civilian and foreign employee with privileged access to a DoD system–regardless of job series or occupational specialty–to obtain a commercial certification credential that has been accredited by the ISO/IEC.

So if you work for the DoD, or are looking for DoD work, what certifications should you have? And what does 8570.01 mean to people who are already certified? First of all, if you are already a member of the DoD IA workforce, or are employed by a DoD contractor, the actual steps you will follow to comply with 8570.01 can be found here. You will be provided guidance from your Information Assurance Manager (IAM) on the certification(s) you need for your current position and level. There should be no guesswork in this for you. If you are looking to make yourself a more attractive hiring prospects to a DoD entity, or you just like to collect highly-recognized certifications, you’ll need some additional information about the certification that the DoD has judged to be worthwhile and why. To start, DoD 8570.01 specifically defines certification as:

“Recognition given to individuals who have met predetermined qualifications set by an agency of government, industry, or profession.  Certification provides verification of individuals’ knowledge and experience through evaluation and approval based on a set of standards for specific profession or occupations’ functional job levels.  Each certification is designed to stand on its own, and represents a certified individual’s mastery of a particular set of knowledge and skills.” – DoD Directive 8570.01-M

So earning a certification is a way for an individual to prove that he or she has a certain mastery of a particular set of knowledge and skills. Sort of like passing one or two college classes in a particular subject. However, just any IT certification is not acceptable under DoD  8570.01. To be approved by the DoD, an IA workforce certification must be accredited under ISO/IEC Standard 17024:2003 or an equivalent accepted standard. ISO/IEC 17024 is an international standard that defines a criteria for organizations creating a certification program to certify individual people. Here are the accredited IT certifications currently recognized in DoD 8570.01-M:

Certified Information Security provides proven and guaranteed exam preparation training for ISACA's CISA and CISM certifications described in the table above.

But What Certification(s) Should I Get?

Now, after all this, if you still want or need certification compliant with DoD 8570.01, which certification(s) should you get? That depends on your functional role within the IA workforce.

The IA workforce is split into two major categories: IA Technical and IA Management, with each category being divided into three levels: I, II, and III. Each category and level has a specific set of job requirements that define the role that a DoD employee performs and the personnel requirements for a position at a specific level.

The following chart shows which commercial, ISO-approved IT certifications may be used to meet baseline IA workforce requirements for certified personnel performing IA functions. Only one certification listed at each level and category need be attained to meet the certification requirement for that level:

So pick your category and level and there are your cert choices. If you are looking to get the fewest number of certs that will cover the most bases on this chart, it looks like having the Security+, SSCP, and CISSP will do just that. And, as someone who has all of these certs, I can tell you they aren’t bad ones to have, regardless if you have a DoD job or not. But will already having several of these certifications help you get a job with the U.S. DoD or with a U.S. defense contractor? Probably so. Most hiring managers prefer to hire people who already have the necessary certifications rather than spend the money in my departmental training budget to get new people certified. Job candidates who already have certifications also likely come with more InfoSec work experience than non-certified candidates.But getting a few certifications isn’t all there is to it. To maintain certification status, a regular schedule of continuous learning by IA workforce personnel is also mandated of by 8570.01. Even if you plan on retaking your certification exam(s) every three years, on-going education is still required. And when it comes to protecting DoD information systems, there’s nothing bad about that. Most of the courses offered at Certified Information Security provide CPE credit and associated certificates of achievement that can be used to fulfill ongoing continuing education requirements.

How can Certified Information Security help me?

Certified Information Security provides proven and guaranteed exam preparation training for ISACA's CISA and CISM certifications described in the table above.

References

• International Accreditation Forum, Inc. (2004). IAF Guidance on the Application of ISO/IEC 17024:2003. Retrieved from http://www.compad.com.au/cms/iaf/workstation/upFiles/228543.IAF-GD24-2004_Guidance_on_ISO_17024_Pub.pdf
• Information Assurance Support Environment. (June 17, 2009). DoD Directive 8570 Information Assurance Training, Certification and Workforce Management, Frequently Asked Questions. Retrieved from http://iase.disa.mil/policy-guidance/8570_faq_6_12_09.doc
• United Stated Department of Defense. (May 15, 2008). DoD 8570.01-M Information Assurance Workforce Improvement Program. Retrieved from http://www.dtic.mil/whs/directives/corres/pdf/857001m.pdf

Note: Our CISA SuperReview guarantee policy changed on June 06, 2010. If you purchased your subscription prior to June 06, 2010, the previous guarantee policy and terms still apply.

Step 2: Even if the on-line tour worked for you with no problems, please be sure to update your computer's browser and Adobe Flash prior to attempting to access your course. Check your Adobe Flash Player installation, and update if necessary by clicking here: http://www.adobe.com/software/flash/about/.