Certified Information Systems Auditor (CISA)


Cybersecurity Demo

Certified Information Systems Auditor (CISA)

This instructor led, online training course, provides students with all the knowledge they need to become an information systems auditor and to pass the CISA exam for certification. The course is a comprehensive study of the auditing process including:

  • Auditing information systems process
  • Protection of information assets
  • Governance and management of IT
  • Acquisition, development, and implementation
  • Operations, maintenance, and support

CISA is a DoD approved 8570 Baseline Certification and meets DoD 8140/8570 training requirements.

Exam: CISA


Derrick Coston, Security+, CISSP, CISA, GIAC

Course Information

Skills Learned

By the end of this course, students will have a better understanding of:

  • Auditing information systems process
  • Protection of information assets
  • Governance and management of IT
  • Acquisition, development and implementation
  • Operations, maintenance and support

Who Should Attend This Course

  • IT Audit Manager
  • Internal Auditor
  • Privacy Officer
  • Any student looking to gain their CISA certification


To earn a CISA certification, candidates must pass the CISA test with a score of at least 450 (out of a possible 800) and have at least five years of professional experience in information systems auditing, assurance, control, or security. It’s required that the previous experience must have been within the last ten years or within five years of passing the CISA exam.

Course Outline

Module 1 – The Process of Auditing Information Systems

  • Task statements
  • Knowledge statements
  • Executive misconduct and relevant regulations
  • Regulatory objectives and assessing threats and vulnerabilities
  • Leadership through governance
  • Undertanding policies, standards, guidelines and procedures
  • Understanding professional ethics
  • Understanding the purpose of an audit
  • Implementing audit standards
  • The executive position of auditor
  • Understanding the corporate organizational structure

Module 2 – Goverance and Management of IT

  • Task statements and knowledge statements
  • Managing IT governance
  • Tactical management
  • Business process re-engineering
  • Operations management

Module 3 – Information Systems Acquisition, Development, and Implementation

  • Task statements and knowledge statements
  • Audit process
  • Performing the audit
  • Gathering audit evidence
  • Conducting audit evidence testing

Module 4 – Information Systems Operation, Maintenance, and Support

  • Task statements and knowledge statements
  • System implementation and operations
  • Understanding IT services
  • IT operations management
  • Administrative protection
  • Problem management
  • Monitoring controls status
  • Implementing physical protection

Module 5 – Protection and Information Assets

  • Protection of information assets
  • Technical protection

*Course Outline is subject to change


Are you a student and need support?

Don’t see the class you’re looking for?

Get a demo or pricing!

Call (800) 850-9932 or submit this form to get pricing for you or your team.

We absolutely love being able to tailor the StormWind training experience to you and your goals. Simply provide us with a little bit of upfront info and we’ll get to work on customizing learning packages for you—at a price you just can’t resist.