Duration: 5 days
Time: 9am to 5.30pm

What Will Be Taught For This Certified Information Systems Auditor Course?

In today’s fast-paced and ever-more complex business environment, information has become the most valuable currency for enterprises around the globe. Information systems professionals play vital roles in leveraging the value, and assuring the security and integrity of the massive volumes of information that drive business. For those professionals and the enterprises they serve the world over, the CISA®—Certified Information Systems Auditor®—is recognized as proof of competency and experience in providing assurance that critical business assets are secured and available.

Since 1978, the ISACA Certified Information Systems Auditor (CISA) program, has been the globally accepted standard of achievement among information systems (IS) audit, control and security professionals. The technical skills and practices that CISA promotes and evaluates are the building blocks of success in the field. Possessing the CISA designation demonstrates proficiency and is the basis for measurement in the profession.

This five day course will prepare participants to sit for the CISA certification examination.

Module 1: Information Systems Audit Process

  • ISACA IS Auditing Standards, Guidelines
  • Fundamental Business Processes
  • Systems Audit Strategy
  • Plan an Audit
  • Conduct an Audit
  • The Evidence Life Cycle
  • Communicate Issues, Risks, and Audit Results
  • Support the Implementation of Risk
  • Management and Control Practices

Module 2: IT Governance

  • Evaluate the Effectiveness of IT Governance
  • Evaluate the IT Organization Structure and HR Management
  • Evaluate the IT Strategy and Direction
  • Evaluate the Effectiveness of Quality Management Systems
  • Evaluate IT Management and Monitoring Controls
  • IT Resource Investment, Use and Allocation Practices
  • Evaluate IT Contracting Strategies and Policies
  • Evaluate Risk Management Practices
  • Performance Monitoring and Assurance Practices
  • Evaluate the Organizations Business Continuity Plan

Module 3: Information Systems Acquisition, Development and Implementation

  • Evaluate the Business Case for Change
  • Evaluate Project Management Framework and Governance Practices
  • Development Life Cycle Management
  • Perform Periodic Project Reviews
  • Evaluate Control Mechanisms for Systems
  • Evaluate Development and Testing Processes
  • Evaluate Implementation Readiness
  • Evaluate a System Migration
  • Perform a Post-Implementation System Review

Module 4: Information Systems Operations, Maintenance and Support

  • Perform Periodic System Reviews
  • Evaluate Service Level Management Practices
  • Evaluate Third-Party Management Practices
  • Evaluate Operations and End User Management Practices
  • Evaluate the Maintenance Process
  • Evaluate Data Administration Practices
  • Evaluate the Use of Capacity and Performance Monitoring Methods
  • Evaluate Change, Configuration, and Release Management Practices
  • Evaluate Problem and Incident Management Practices
  • Evaluate the Adequacy of Backup and Restore Provisions

Module 5: Protection of Information Assets

  • Information Security Design
  • Encryption Basics
  • Evaluate the Functionality of the IT Infrastructure
  • Evaluate Network Infrastructure Security
  • Evaluate the Design, Implementation, and Monitoring of Logical Access Controls
  • Risks and Controls of Virtualization
  • Evaluate the Design, Implementation, and Monitoring of Physical Access Controls
  • Evaluate the Design, Implementation, and Monitoring of Environmental Controls

Assessment Format & Duration (only applicable for learner taking SF grant)

Assessment Format Duration
Written Assessment 1 Summative, open ended questions 60 mins
Written Assessment 2 Summative, case studies 30 mins
Total 90 mins

Who Should Attend This Certified Information Systems Auditor Training?

  • IS audit, Control, Assurance, and Security Professionals, including IT consultants, Auditors, Managers, Security Policy Writers, Privacy Officers, Information Security Officers, Network Administrators, Security Device Administrators, and Security Engineers, who have five years of experience with Audit, IT systems, and Security of information systems.
  • This course will also be beneficial for the following IT professionals:
    • Who have been performing the role of Internal IT Auditor for at least 5 years.
    • Who are seeking to enhance their knowledge into the areas of IT Information Systems Management and Audit.
  w/o GST w GST
Course Fee $2,000 $2,140
Singapore Citizen & PR aged ≥ 21 years $1,520 $1,660
Singapore Citizen aged ≥ 40 years
(SkillsFuture Mid-Career Enhancement Funding)
$400 $540
Singapore Citizen aged ≥ 35 years with earning ≤ $2,000/month
(WTS Scheme)
$304 $444
  w/o GST w GST
Course Fee $2,000 $2,140
Singapore Citizen & PR aged ≥ 21 years $1,520 $1,660
Singapore Citizen aged ≥ 40 years
(SkillsFuture Mid-Career Enhancement Funding)
$400 $540
Singapore Citizen aged ≥ 35 years with earning ≤ $2,000/month
(WTS Scheme)
$304 $444
  w/o GST w GST
Course Fee $2,000 $2,140
Singapore Citizen & PR aged ≥ 21 years $400 $540
Singapore Citizen aged ≥ 40 years
(SkillsFuture Mid-Career Enhancement Funding)
$400 $540
Singapore Citizen aged ≥ 35 years with earning ≤ $2,000/month
(WTS Scheme)
$304 $444


Individual Sponsored

  • Eligible Singapore Citizens can use their SkillsFuture Credit to offset course fee payable after funding.
  • This course is supported under UTAP funding.
  • This course is eligible for using PSEA funds.

Company Sponsored

  • Absentee Payroll claimable by SMEs: Up to 80%of hourly basic salary capped at $7.50/hr
  • Absentee Payroll claimable by Non-SMEs: Up to 80% of hourly basic salary capped at $4.50/hr
  • Absentee payroll claimable by companies (SMEs and Non-SMEs) sponsoring candidates under WTS Scheme: Up to 95% of hourly basic salary (no dollar cap)

Terms & Conditions

  • All prices stated above are in Singapore Dollars (SGD). This funding support is only applicable for Singapore Citizen and Permanent Residents.
  • Trainee must attained minimum 75% attendance and pass all assessment within 3 months to qualify for SF Funding.
  • Trainee undertakes to reimburse ST Electronics (e-Services) FULL course fees should he/she be ineligible for course fee grant. ST Electronics (e-Services) is not liable for any other funding not approved by WSG.
  • Trainees must be competent for all assessments before they are eligible for SF funding.
  • ST Electronics (e-Services) reserves the right to change the date or venue without prior notice.
  • ST Electronics (e-Services) reserves the right to cancel or reschedule the course due to class size or unforeseen circumstances.

Please click on the course date to enrol.