Cyber security audit cert

scascscasc Member Posts: 461 ■■■■■■■□□□
hey all - has anyone done the above new cert from isaca? Wanted to find out if it’s for juniors or more advanced workers.

thanks in advance 
AWS, Azure, GCP, ISC2, GIAC, ISACA, TOGAF, SABSA, EC-Council, Comptia...

Comments

  • stryder144stryder144 Member Posts: 1,684 ■■■■■■■■□□
    edited January 2019
    I have never heard of it.  For those interested, here is the link.  After a quick glance, it looks like a stepping stone to the CISA.  Price for the online class isn't too spendy but a bit out of my current, personal training budget.
    The easiest thing to be in the world is you. The most difficult thing to be is what other people want you to be. Don't let them put you in that position. ~ Leo Buscaglia

    Connect With Me || My Blog Site || Follow Me
  • Info_Sec_WannabeInfo_Sec_Wannabe Member Posts: 428 ■■■■□□□□□□
    edited January 2019
    I have never heard of it.  For those interested, here is the link.  After a quick glance, it looks like a stepping stone to the CISA.  Price for the online class isn't too spendy but a bit out of my current, personal training budget.

    After taking a peek at the link, it does resemble CISA with a bit of hands on and cloud (at least IMHO).
    X year plan: (20XX) OSCP [ ], CCSP [ ]
  • mahd559mahd559 Member Posts: 14 ■■■□□□□□□□
    Does it expire? Or you have to maintain it by certain number of CPEs?
  • banzaybanzay Member Posts: 1 ■■□□□□□□□□
    Just passed today. Was bored. Spent one day to prepare. If you are already have a CISA, doth waste your time. I'm not sure what is the value of this certificate. 
  • EFFAHPOKUEFFAHPOKU Member Posts: 1 ■■□□□□□□□□
    mahd559 said:
    Does it expire? Or you have to maintain it by certain number of CPEs?
    No it does not expire
  • UnixGuyUnixGuy Mod Posts: 4,564 Mod
    scac: i looked at it, it looks like an entry level cert not an advanced one
    Certs: GSTRT, GPEN, GCFA, CISM, CRISC, RHCE

    Check out my YouTube channel: https://youtu.be/DRJic8vCodE 


  • eshomshoeshomsho Member Posts: 1 ■■□□□□□□□□
    edited December 2019
    I took the test today using the book and self paced study materials and none of the questions from the book or the study materials were on the exam.  I have CISA and CRISC and regret registering for this prior to them developing better study guides.  With only 75 questions asked, you have to be prepared to answer most of them correctly.  The format resembles CISA but again I did not need to spend a $1000 for materials that were useless.  
  • LordQarlynLordQarlyn Member Posts: 693 ■■■■■■□□□□
    banzay said:
    Just passed today. Was bored. Spent one day to prepare. If you are already have a CISA, doth waste your time. I'm not sure what is the value of this certificate. 
    Or if you don't have the CISA, skip this one and go straight for the CISA if that's your career path. I think the real purpose is to collect money from those who can't quite qualify for the CISA but ISACA still wants their money.
  • The_AMThe_AM Member Posts: 10 ■■■□□□□□□□
    IMO, When it comes to IS Auditing; CISA is and will be the gold standard for the foreseeable future.

    ISACA's Cybersecurity Audit Certificate is a sort of "good to have" credential if you want to highlight and emphasize on your cybersecurity audit skills more from a visibility perspective (for hiring managers) than the knowledge perspective. 
  • yoba222yoba222 Member Posts: 1,237 ■■■■■■■■□□
    How can you have a cert without an acronym?
    A+, Network+, CCNA, LFCS,
    Security+, eJPT, CySA+, PenTest+,
    Cisco CyberOps, GCIH, VHL,
    In progress: OSCP
  • beadsbeads Member Posts: 1,531 ■■■■■■■■■□
    EFFAHPOKU said:
    mahd559 said:
    Does it expire? Or you have to maintain it by certain number of CPEs?
    No it does not expire

    Then the cert is neither ANSI or ISO certified and should be discounted in value, right there.

    - b/eads
  • HAGUILAROHAGUILARO Member Posts: 1 ■□□□□□□□□□
    eshomsho said:
    I took the test today using the book and self paced study materials and none of the questions from the book or the study materials were on the exam.  I have CISA and CRISC and regret registering for this prior to them developing better study guides.  With only 75 questions asked, you have to be prepared to answer most of them correctly.  The format resembles CISA but again I did not need to spend a $1000 for materials that were useless.  
    Hello

    I totally agree with what you say, I studied all the material that was provided to me, but it did not help me to pass the exam, how did you pass? Do you have any guide or test exams? I would really appreciate it if you help me !! my mail aguilar.osores@gmail.com
  • mcc39817mcc39817 Member Posts: 20 ■■■□□□□□□□
    TL:DR: you're better off getting a CISA and then hands on experience with tools and processes like identifying threats, gaining a better handle on the command prompt... all of which can be utilized to be able to provide a clear picture of the actual cyber-risks.

    After reading the comments here, I'm pretty happy I did not ever pursue this certificate. What I will say though, for solid hands on that is directly transferable to security audits (i.e. NIST, etc.), I've been pretty happy with my CISA | CySA+ and Cybrary Subscription.  While the CySA+ focuses on incident response and hands on with things like logs and firewalls, tools, identifying threats, etc. as far as being able to analyze and review, and respond.  This has been useful to structure audits to go beyond "SOX" and look at the holistic security risk to the organization.  Plus, this combo has given me the means to move forward in developing my cybersecurity auditing skills. Further, I've been able to utilize labs from Cybrary to obtain the hands-on experience, as well as utilize review tools for the CySA+ exam.  It's still interesting that you don't see more companies asking for the CySA+ in light of the current global environment.  But I guess I'm bias as a career IT auditor.
    Certs: CISA, CDPSE | Pentest+, SEC+, CySA+
    Planned: CASP+, CISSP, CISM, eJPT, eWPT (2023)

Sign In or Register to comment.