Certified Information Systems Security Auditor

Many organizations require an Information System Auditor’s expert knowledge when it comes to identifying critical issues and providing effective auditing solutions. The knowledge and course content provided in the vendor neutral Certified Information Systems Security Auditor – C)ISSA will not only cover ISACA’s exam but will provide a measurable certification that demonstrates proficiency in the IS Auditing Field.

The Certified Information Systems Security Auditor covers the skills and knowledge to assess vulnerabilities, report on compliance and implement controls for private and public enterprises.

The Certified Information Systems Security Auditors will receive in-depth knowledge in topics that pertain to the following: IS audit, control, assurance, and security professionals, including IT consultants, auditors, managers, security policy writers, privacy officers, information security officers, network administrators, security device administrators, and security engineers.

• IS Security Officers
• IS Managers
• Risk Managers
• Auditors
• Information Systems Owners
• IS Control Assessors
• System Managers
• Government

A minimum of 1 year of Information Systems

Upon completion, Certified Information Systems Security Auditor students will be able to establish industry acceptable auditing standards with current best practices and policies. Students will also be prepared to competently take the CISSA exam.

Continuing education: 32 CPE Credits

The Certified Information Systems Security Auditor exam is taken online through Mile2’s Assessment and Certification System (“MACS”), which is accessible on your mile2.com account. The exam will take 2 hours and consist of 100 multiple choice questions. The cost is $400 USD and must be purchased from Mile2.com.

1. The Process of Auditing Information Systems
2. Risk Based Auditing
3. Audit Planning and Performance
4. Reporting on Audit
5. IT Governance and Management
6. Strategic Planning and Models
7. Resource Management
8. Business Continuity Planning
9. Systems Acquisition, Development and Implementation
10. Systems Development Models
11. Types of Specialized Business Applications
12. Application Controls
13. Information Systems Operations, Maintenance and Support
14. System and Communications
15. Hardward