Login
Login

ISACA#Certified in Risk and Information Systems Control

{{Short description|International professional association focused on IT}}

{{Primary sources|date=November 2015}}

{{Use dmy dates|date=November 2021}}

{{Infobox organization

| name = Information Systems Audit and Control Association

| native_name =

| native_name_lang =

| named_after =

| image =

| image_size =

| alt =

| caption =

| logo = ISACA logo.png

| logo_size =

| logo_alt =

| logo_caption =

| map =

| map_size =

| map_alt =

| map_caption =

| abbreviation = ISACA

| motto =

| predecessor =

| merged =

| successor =

| formation = 1969

| founder =

| founding_location =

| merger =

| type = 501(c)(6)

| tax_id = 23-7067291{{cite web|title=INFORMATION SYSTEMS AUDIT AND CONTROL ASSOCIATION INC Form 990 2015|date=9 May 2013|url=https://projects.propublica.org/nonprofits/organizations/237067291|publisher=ProPublica|access-date=19 September 2017}}

| registration_id =

| status =

| purpose = To advance the pursuit of digital trust and the positive potential of technology.

| headquarters = Schaumburg, Illinois

| location =

| coords = {{Coord|42|3|10.9794|N|88|2|11.9754|W|display=inline,title}}

| region = Global

| membership = 169,000 (as of Dec 2022)

| membership_year =

| language = English

| leader_title = CEO

| leader_name = Erik Prusch

| leader_title2 = Board Chair

| leader_name2 = John De Santis

| board_of_directors =

| key_people =

| main_organ =

| parent_organization =

| subsidiaries =

| secessions =

| affiliations =

| budget =

| budget_year =

| revenue = {{increase}} USD $100.36 million (2022)

| expenses = {{increase}} USD $107.80 million (2022)

| endowment =

| staff = 300+ (2022)

| staff_year =

| volunteers = 2,400 (2023)

| volunteers_year =

| slogan =

| mission =

| website = {{URL|https://www.isaca.org/}}

| remarks =

| formerly = EDP Auditors Association

| footnotes = {{cite web |title=About us |url=https://www.isaca.org/why-isaca/about-us |website=About ISACA |publisher=ISACA |access-date=13 July 2020}}{{cite web |title=ISACA's Annual Reports |url=https://www.isaca.org/why-isaca/leadership-and-governance/annual-report |website=Annual Report |publisher=ISACA |access-date=4 May 2022}}{{cite web |title=Board of Directors |url=https://www.isaca.org/why-isaca/leadership-and-governance/board-of-directors |website=Board of Directors |publisher=ISACA |access-date=21 July 2020}}

}}

ISACA is an international professional association focused on IT (information technology) governance. On its IRS filings, it is known as the Information Systems Audit and Control Association, although ISACA now goes by its acronym only.[http://www.isaca.org/Content/NavigationMenu/About_ISACA/Overview_and_History/Overview_and_History.htm] {{webarchive|url=https://web.archive.org/web/20071002155124/http://www.isaca.org/Content/NavigationMenu/About_ISACA/Overview_and_History/Overview_and_History.htm|date=2 October 2007}}{{cite book|last=Vacca|first=John|title=Computer and Information Security Handbook|series=Morgan Kaufmann Publications|year=2009|publisher=Elsevier Inc|isbn= 978-0-12-374354-1|page=600}} ISACA currently offers 8 certification programs, as well as other micro-certificates.

History

ISACA originated in United States in 1967, when a group of individuals working on auditing controls in computer systems started to become increasingly critical of the operations of their organizations. They identified a need for a centralized source of information and guidance in the field. In 1969, Stuart Tyrnauer, an employee of the (later) Douglas Aircraft Company, incorporated the group as the EDP Auditors Association (EDPAA).{{cite book|last=Katsikas|first=Sokratis K.|editor1-last=Qing|editor1-first=Sihan|editor2-last=Eloff|editor2-first=Jan H. P.|title=Information Security for Global Information Infrastructures|url=https://books.google.com/books?id=sKPNlwBhQKYC|series=IFIP Advances in Information and Communication Technology|volume=47|year=2000|publisher=Springer|isbn=9780792379140|page=50|chapter=A Postgraduate Programme on Information and Communication Systems Security|quote=[...] the Information Systems Audit and Control Association (ISACA - formerly EDPAA) [...]}} Tyrnauer served as the body's founding chairman for the first three years. In 1976 the association formed an education foundation to undertake large-scale research efforts to expand the knowledge of and value accorded to the fields of governance and control of information technology.

The association became the Information Systems Audit and Control Association in 1994.{{cite book|last1=Gleim|first1=Irvin N.|last2=Hillison|first2=William A.|last3=Irwin|first3=Grady M.|title=Auditing & systems: objective questions and explanations|url=https://books.google.com/books?id=CwS490_StAgC|edition=6|series=1|volume=6 |date=June 1995|publisher=Accounting Publications|location=Gainesville, Florida|isbn=9780917537745|page=37|quote=In 1994, the association changed its name to the Information Systems Audit and Control Association. }}

{{as of | 2008 | alt = By 2008}} the organization had dropped its long title and branded itself as ISACA.{{cite book|last1=Verschoor|first1=Curtis C.|title=Audit Committee Essentials|url=https://books.google.com/books?id=FpGyf67SzHYC|year=2008|publisher=John Wiley & Sons|isbn=9780470337073 |page=205|quote= [...] ISACA - previously known as the Information Systems Audit and Control Association [...]}}

In March 2016, ISACA bought the CMMI Institute, which is behind the Capability Maturity Model Integration.{{cite web|last1=Loeb|first1=Matt|title=ISACA Acquires CMMI Institute|url=http://www.isaca.org/about-isaca/pages/cmmi.aspx|website=ISACA|access-date=1 June 2017|archive-date=8 November 2019|archive-url=https://web.archive.org/web/20191108102729/http://www.isaca.org/About-ISACA/Pages/CMMI.aspx|url-status=dead}}

In January 2020, ISACA updated and refreshed its look and digital presence, introducing a new logo.{{cite web|last1=Samuelson|first1=David|title=New Look Marks a New Era for ISACA|url=https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2020/new-look-marks-a-new-era-for-isaca|website=ISACA|access-date=9 June 2020}}

Current status

ISACA currently serves more than 170,000 constituents (members and professionals holding ISACA certifications) in more than 180 countries.{{cite web |title=History of ISACA |url=https://www.isaca.org/why-isaca/about-us/history |website=ISACA |access-date=9 June 2020}} The job titles of members are such as IS auditor, consultant, educator, IS security professional, regulator, chief information officer, chief information security officer and internal auditor. They work in nearly all industry categories. There is a network of ISACA chapters with more than 225 chapters established in over 180 countries. Chapters provide education, resource sharing, advocacy, networking and other benefits.{{Cite web|title=About Our Chapter – Isaca|url=http://www.isacalahore.org/our-chapter/|access-date=2020-12-08|language=en-US}}

Major publications

  • [https://www.isaca.org/resources/cobit COBIT ISACA Framework]
  • [https://www.isaca.org/resources/frameworks-standards-and-models Frameworks, Standards and Models]
  • [https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004Ko8bEAC Blockchain Framework and Guidance]
  • [https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004Ko9VEAS Risk IT Framework]
  • [https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004Ko91EAC IT Audit Framework - (ITAF™): A Professional Practices Framework for IT Audit, 4th Edition]
  • [https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004Ko8cEAC Business Model for Information Systems (BMIS])
  • [https://cmmiinstitute.com/ Capability Maturity Model Integrated(CMMI])
  • [https://www.isaca.org/resources/isaca-journal Information System Control Journal]
  • [https://www.isaca.org/resources/insights-and-expertise Insights and Expertise]
  • [https://www.isaca.org/resources/insights-and-expertise/audit-programs-and-tools Audit Programs and tools]
  • [https://www.isaca.org/resources/insights-and-expertise/publications#sort=%40searchdate%20descending&layout=card Publications - over 200 professional publications and Guidance on Audit & Assurance, Emerging Technology, Governance, Information Security, Information Technology, Privacy, Risk]. Some of the topics include:
  • Artificial Intelligence
  • Blockchain
  • Certification Exam Prep Guides for CISA, CRISC, CISM, CGEIT, CDPSE, CET and several Certificate Courses
  • Cloud Computing
  • COBIT
  • Compliance
  • Cybersecurity
  • Data Governance
  • Data Science
  • Internet of Things
  • Network Infrastructure
  • Software Development
  • Threats and Controls
  • Vendor Management
  • Young Professionals
  • [https://www.isaca.org/resources/insights-and-expertise/white-papers#sort=%40searchdate%20descending&layout=card White Papers - Over 200 white papers on a range of contemporary topics]
  • [https://www.isaca.org/resources/news-and-trends News and Trends]

Certifications

  • Certified Information Systems Auditor (CISA,1978)https://www.isaca50.org/files/images/ISACA50_Story_Gallery_Making_the_Mark-Importance_of_Certifications_website%20version.pdf {{Webarchive|url=https://web.archive.org/web/20200615213222/https://www.isaca50.org/files/images/ISACA50_Story_Gallery_Making_the_Mark-Importance_of_Certifications_website%20version.pdf |date=15 June 2020 }} {{Bare URL PDF|date=March 2022}}
  • Certified Information Security Manager (CISM, 2002)
  • Certified in the Governance of Enterprise IT (CGEIT, 2007)
  • Certified in Risk and Information Systems Control (CRISC, 2010)
  • Cybersecurity Practitioner Certification (CSX-P, 2015){{Cite web|url=https://www.isaca.org/credentialing/csx-p|title = CSX-P | Cybersecurity Practitioner}}
  • Certified Data Privacy Solutions Engineer (CDPSE, 2020){{Cite web|url=https://www.isaca.org/credentialing/certified-data-privacy-solutions-engineer|title = Certified Data Privacy Solutions Engineer}}
  • Information Technology Certified Associate (ITCA, 2021){{cite web |title=Shift Your Career into Higher and Higher Gear |url=https://www.isaca.org/credentialing/itca |website=Information Technology Certified Associate |publisher=ISACA |access-date=4 May 2021}}{{cite web |title=New ISACA certification to help upskill IT professionals |url=https://www.technologydecisions.com.au/content/it-management/news/new-isaca-certification-to-help-upskill-it-professionals-1477834769 |website=Technology Decisions |publisher=Westwick-Farrow Pty Ltd |access-date=4 May 2021}}
  • Certified in Emerging Technology (CET, 2021){{cite web |title=Fast Track Your Career in Emerging Technology |url=https://www.isaca.org/credentialing/cet |website=Certified in Emerging Technology |publisher=ISACA |access-date=4 May 2021}}{{cite web |last1=Barth |first1=Bradley |title=New certification program trains cyber pros in cloud, IoT and other emerging tech |url=https://www.scmagazine.com/home/security-news/cloud-security/new-certification-program-trains-cyber-pros-in-cloud-iot-and-other-emerging-tech/ |website=SC |date=21 April 2021 |publisher=CyberRisk Alliance, LLC |access-date=4 May 2021}}
  • Certified Cybersecurity Operations Analyst (CCOA, 2025)
  • AI Audit certification (Beta 2025)

The CSX-P, ISACA's first cybersecurity certification, was introduced in the summer of 2015. It is one of the few certifications that require the individual to work in a live environment, with real problems, to obtain a certification. Specifically, the exam puts test takers in a live network with a real incident taking place. The student's efforts to respond to the incident and fix the problem results in the type of score awarded.{{Cite web|url=http://www.darkreading.com/isaca-is-first-to-combine-skills-based-cybersecurity-training-with-performance-based-exams-and-certifications-to-address-global-cyber-talent-shortage/d/d-id/1319987|title = ISACA is First to Combine Skills-based Cybersecurity Training with per|date = 16 April 2015}}

=Certificates=

  • IT Audit Fundamentals Certificate
  • IT Risk Fundamentals Certificate
  • Certificate of Cloud Auditing Knowledge
  • Cybersecurity Audit Certificate
  • Computing Fundamentals Certificate
  • Networks and Infrastructure Fundamentals Certificate
  • Cybersecurity Fundamentals Certificate
  • Software Development Fundamentals Certificate
  • Data Science Fundamentals Certificate
  • Cloud Fundamentals Certificate
  • Blockchain Fundamentals Certificate
  • IoT Fundamentals Certificate
  • Artificial Intelligence Fundamentals Certificate
  • COBIT Design and Implementation
  • Implementing the NIST Cybersecurity Framework Using COBIT 2019
  • COBIT Foundation
  • COBIT 5 Certificates

See also

References

{{Reflist}}

External links

  • [https://www.isaca.org/ ISACA official webpage]
  • [https://www.isaca.org/training-and-events/cybersecurity Official ISACA CSX webpage]
  • [https://www.uky.edu/~gmswan3/575/KM_and_OL.pdf Knowledge Management and Organizational Learning] )(Framework)

{{Authority control}}

{{DEFAULTSORT:Information Systems Audit And Control Association}}

Category:Information technology organizations

Category:Computer security organizations

Category:Auditing organizations

Category:Organizations established in 1967

Category:Professional accounting bodies