Study any time, from any device.

Get Started

Become a Certified Information Systems Auditor (CISA)

The Certified Information Systems Auditor (CISA) certification path builds your knowledge of auditing information systems. You'll learn the tools and guidelines involved in the IT auditing process as well as concepts such as business continuity, enterprise IT governance, common security controls and more.

Get started

19 courses  //   19 videos  //   13 hours of training

Certified Information Systems Auditor (CISA) Training

This learning path teaches you the skills necessary to be an IT auditor and prepares you to earn ISACA’s most popular certification, the Certified Information Systems Auditor (CISA). You’ll progress through 19 courses tied to the five CISA domains, ranging from understanding the process of auditing information systems to developing and implementing those systems to protecting information assets. Upon completion, you’ll have the knowledge and skills needed to earn your CISA certification and take the next step in your IT auditing career.

Learning path components

CISA Custom Practice Exam
Practice Exam
CISA Custom Practice Exam

CISA Custom Practice Exam

Prepare for your CISA exam and test your domain knowledge.

Number of questions: 699
CISA Introduction
Course
CISA Introduction

CISA Introduction

Introduce yourself to CISA with this course introduction covering study plans, CISA stats and details, and more.

1 video
20 minutes of training
IS Audit Functions
Course
IS Audit Functions

IS Audit Functions

Explore the functions of an information security audit with this course looking at auditor practices, IS audit purposes and more.

1 video
8 minutes of training
Business Process Applications and Controls
Course
Business Process Applications and Controls

Business Process Applications and Controls

Explore the Business Process section and the controls you'll need to understand during your CISA study.

1 video
43 minutes of training
Types of Controls and Risk Assessments
Course
Types of Controls and Risk Assessments

Types of Controls and Risk Assessments

Explore the types of controls and risk assessments in four parts, beginning with Control Objectives and Control Measures.

1 video
22 minutes of training
Continuous Auditing
Course
Continuous Auditing

Continuous Auditing

In this course, you'll look at the five parts of the Audit Project Management section, as well as sampling, audit report objectives and more.

1 video
40 minutes of training
Governance and Management of IT
Course
Governance and Management of IT

Governance and Management of IT

Dig deep into the details of governance and management of IT, including effective information security governance, strategic planning and more.

1 video
39 minutes of training
IT Organizational Structure
Course
IT Organizational Structure

IT Organizational Structure

Explore the five parts of organizational structure and follow it up with a look at IT governing committees, roles and responsibilities and more.

1 video
32 minutes of training
IT Management
Course
IT Management

IT Management

In this course, you’ll review the details of IT management and more.

1 video
40 minutes of training
Information Systems Acquisition
Course
Information Systems Acquisition

Information Systems Acquisition

Take a closer look at the first part of the Information Systems Acquisition and Development subdomain.

1 video
32 minutes of training
Business Cases and Development
Course
Business Cases and Development

Business Cases and Development

Take some time to explore the second part of Information Systems Acquisition and Development.

1 video
64 minutes of training
Information Systems Implementation
Course
Information Systems Implementation

Information Systems Implementation

Wrap up Domain 3 of CISA with this course covering Control Identification and Design and Information Systems Implementation.

1 video
43 minutes of training
Information Systems Operations
Course
Information Systems Operations

Information Systems Operations

Dive into Part A of CISA Domain 4 in this course covering Common Technology Components, IT Asset Management and more.

1 video
78 minutes of training
Business Resilience
Course
Business Resilience

Business Resilience

Explore Part B of the Information Systems Operations domain.

1 video
23 minutes of training
Business Continuity
Course
Business Continuity

Business Continuity

Wrap up Part B of Domain 4 with this course on business continuity.

1 video
40 minutes of training
Asset Security Frameworks, Standards and Guidelines
Course
Asset Security Frameworks, Standards and Guidelines

Asset Security Frameworks, Standards and Guidelines

In this course, you'll start on CISA Domain 5 by covering Information Asset Security and Control topics.

1 video
42 minutes of training
Identity and Access Management
Course
Identity and Access Management

Identity and Access Management

Continue with Domain 5, Part A of CISA in this course covering identification and authentication topics.

1 video
67 minutes of training
Network Infrastructure Security
Course
Network Infrastructure Security

Network Infrastructure Security

Network infrastructure security has no secrets in this three-video course. Covers structure, auditing and more.

1 video
52 minutes of training
Asset Security
Course
Asset Security

Asset Security

Wrap up part A of CISA Domain 5 with this course covering asset security topics.

1 video
52 minutes of training
Security Event Management
Course
Security Event Management

Security Event Management

Explore Part B of CISA Domain 5 with this course on security event management.

1 video
42 minutes of training
 

What you’ll learn.

The CISA certification exam covers five primary domains:

  • Information systems auditing process
  • Governance and management of IT
  • Information systems acquisition, development and implementation
  • Information systems operations and business resilience
  • Protection of information assets

Who is this for?

To become a CISA, you need to both pass the CISA exam and gain five years of professional IS auditing or control experience in the CISA job practice areas (up to three years of experience can be waived for meeting other requirements).

This certification path is designed for:

  • Auditors
  • IT consultants
  • Information security analysts
  • Privacy officers
  • Anyone with a desire to get certified in IT auditing!

You're in good company

"Comparing Infosec to other vendors is like comparing apples to oranges. My instructor was hands-down the best I’ve had." 

James Coyle

FireEye, Inc.

"I knew Infosec could tell me what to expect on the exam and what topics to focus on most."

Julian Tang

Chief Information Officer

"I’ve taken five boot camps with Infosec and all my instructors have been great."

Jeffrey Coa

Information Security Systems Officer