Program areas at ISACA
Information Systems Audit and Control Association's (ISACA) primary purpose is to serve its members and their organizations. One way ISACA does so is by helping members do their jobs better, offering them pragmatic guidance on how to safely and effectively implement technology. ISACA annually produces hundreds of knowledge assets in various formats, including print, digital, interactive (tools, audit programs), video and audio. In 2022, ISACA hosted a combination of in-person (ISACA Conference North America in New Orleans, USA, and ISACA Conference Europe in Rome, Italy) and virtual events. The association offers member benefits in the areas of professional development, community, mentoring and leadership and volunteer opportunities, and continually reviews and expands its portfolio of benefits to address the changing needs of members. Many member benefits are documented and further explained within the other responses on this form. More than 33,000 new members joined the ISACA professional community in 2022. ISACA has 225 local chapters in 98 countries.
In 2022, the ISACA education roster included virtual and in-person ISACA conferences in several regions covering a range of topics such as IT audit, IT governance, risk management, cybersecurity and data privacy. This was in addition to week-long training events focusing in-depth on one or two topics. ISACA is dedicated to monitoring the professional environment and developing new programs as needed to complement its established portfolio of events. The association has focused a considerable amount of effort on digital learning platforms, as it provides a way to cover emerging topics on a timely basis and offer low-cost education to a globally dispersed audience.
Information technology (IT) is a rapidly changing industry, and it demands a commitment on the part of its practitioners to learn continuously and master new skills. Certification is one way to expand one's skill set and be recognized for doing so. Holding an ISACA professional certification demonstrates excellence in the topic and a commitment to remaining current and informed; it distinguishes an individual from his/her peers. ISACA offers several certification exams: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC), Certified Data Privacy Solutions Engineer (CDPSE) and CSX Practitioner (CSX-P) designations. More recently, ISACA introduced stackable certificates that add up to a full certification for the Certified in Emerging Technology (CET) and Information Technology Certified Associate (ITCA) credentials. More than 189,000 CISAs have been certified since its inception in 1978; more than 78,000 CISMs have been certified since its inception in 2002; more than 10,000 CGEITs have been certified since its inception in 2007, more than 36,000 CRISCs have been certified since its inception in 2010 and more than 19,000 CDPSES have been certified since its inception in 2020. ISACA, in collaboration with the Cloud Security Alliance, also offers a Certificate of Cloud Auditing Knowledge (CCAK), and in 2022, put forward a new IT Audit Fundamentals Certificate. Additionally, ISACA offers a Cybersecurity Audit Certificate.
ISACA targets two goals with its activities: helping professionals realize the positive potential of technology and inspiring confidence that enables innovation through technology. The association achieves those activities by providing information, standards, publications, and academic guidance (in addition to the items noted in the descriptions of program achievements 1, 2 and 3). The ISACA Journal is ISACA's official magazine. Issued bimonthly, and supplemented in the off months by online articles, the Journal seeks to enhance the proficiency and competitive advantage of its international readership by providing peer-reviewed managerial and technical guidance from experienced global authors. It is available in digital format on the website and via mobile app. In 2022, the ISACA Journal celebrated its 50th anniversary. ISACA also produces @ISACA, a weekly electronic newsletter dedicated to ISACA news. The ISACA Bookstore offers a selection of peer-reviewed publications on professional topics of interest to ISACA members, at discounted prices. New selections are added regularly, to ensure the catalog remains current with changing trends and member needs. ISACA continues to expand the platforms and languages in which its content is available to its professional community. The Publications team provided translations of many of its publications, including certification exams, study aids, ISACA Journal articles, COBIT 2019 and other research publications. Languages included Chinese (simplified and traditional), French, German, Italian, Japanese, Korean, Portuguese, Spanish and Turkish. ISACA issues Information Systems Auditing Standards, Guidelines and Procedures, which provide prescriptive or suggested guidance on how audits should be undertaken. The standards, guidelines and procedures are continually reviewed to ensure that new ones are developed or existing ones are revised as needed to align with new regulations or technologies.