• Approx. 13 Hours
• 7 Modules
• Expert Level

CISA is to Audit what CPA and CA are to Accounting. CISAs are recognized internationally as professionals with the knowledge, skills, experience and credibility to leverage standards, manage vulnerabilities, ensure compliance, offer solutions, institute controls and deliver value to the enterprise. CISA job practice analysis has been completed by ISACA. This analysis resulted in a new CISA job practice which reflects the vital and evolving responsibilities of IT auditors. The new CISA job practice was effective beginning with the CISA exam administration in June 2011. For purposes of these statements, the terms “enterprise” and “organization” or “organizational” are considered synonymous.

Lesson 1 –

• Introduction
• Audit Process
• Auditing Standards
• Auditing Guidelines
• Cobit Model
• Audit Management
• Internal Control Classifications
• Planning
• Program
• Evidence
• Audit Control Evaluation
• CSA Control Self-Assessment

Lesson 2 – 

• IT Governance
• Governance & Security Policies
• Outsourcing & Governance
• Outsourcing & Globalization
• Organizational Compliance
• IT Strategy
• IT Performance

Lesson 3 –

• System & Infrastructure
• Requirements
• Project Management Tools – Part 1
• Project Management Tools – Part 2
• Applications
• Agile Development
• Monitoring & Controlling
• Acquisition Process
• Testing Process
• Information Systems Maintenance Practices
• Data Conversion Tools

Lesson 4 – 

• Media Disposal Process
• Post Implementation Review
• Periodic Review
• System Maintenance

Lesson 5 – 

• IT Service Delivery and Support
• How to Evaluate Service Level Management Practices
• Operations Management
• Databases
• Structured Query Language (SQL)
• Monitoring Performance
• Source Code and Performance Monitoring
• Patch Management
• Incident Management
• Hardware Component Types
• Network Component Types

Lesson 6 – 

• IS Auditor Technical Overview
• Security Design
• Monitoring Systems
• Types of Attacks
• Cryptography
• Encryption
• Asymmetric Encryption
• Digital Certificate
• Different Kinds of Attacks
• Access Controls
• Identification and Authenication
• Physical Access Exposure
• Environmental Security
• Network Security Devices and Network Components
• Network Address Translation
• Virtual Private Networks (VPNs)
• Voice System Risks
• Intrusion Detection
• Firewalls
• Firewall Implementation
• Network Access Protection
• HoneyPot
• Risks to Portable and Wireless Devices
• Bluetooth
• OSI Networking
• Managing Data

Lesson 7 –

• Business Continuity and Disaster Recovery
• Fault Tolerance
• Business Continuity and Disaster Recovery Regulations