I am looking for some sound advice regarding CISA and the IT auditor. I am considering moving into IT auditor as a career option. I have been working in IT for the last eight years, but mostly in network support. I would like your opinion on whether IT audit would be a wise career move; and furthermore, judging from my work experience, would I be able to apply for CISA certification? Thanks for your time.
Regards, Donald Chodeva
To become a certified IT auditor, I would recommend an auditing certification such as the CISA. However, there are more general audit qualifications such as the Certified Internal Auditor offered by the Institute of Internal Auditors. Or there’s a more specialized qualification program offered by (ISC)2 that includes the CAP, the SSCP or the higher CISSP certification. Combine any of the above certification programs with other IT professional certifications and this will only enhance your chances of entering the field.
The CISA is internationally recognized, and it’s reinforced by the fact that you can’t just sit for the exam at a normal testing center, but at set ISACA-named centers only at set periods. Getting CISA status is not as easy as just passing an exam. ISACA says: “A minimum of five years of professional information systems auditing, control or security work experience (as described in the job practice areas) is required for certification. Substitutions and waivers of such experience may be obtained if certain education and general IS…
Please log in or subscribe to read this article