CISA passed, what next?
Hurray, I’ve passed CISA exam today! Well, at least preliminary pass, but that is pretty much a pass. Getting actually certified shall be walk in a park.
I’ve mostly used DB questions to understand the ISACA auditor logic and good old internet to search & learn ambiguous terms. Studied for
about month and half, however auditing, security and risk management is my daily
task and hobby.
Questions is….I am not really sure where to go from there? I already have CISM & CISSP and couple other certs.
I believe CISA/CISM/CISSP is a golden standard for security management. I have combined experience as an IT administrator, security consultant, security program manager (fortune 500) and currently as CISO for smaller organization.
Do you guys see any additional certification that would bring additional value? I was thinking CRISC, however it is not really sought after that much. I am paying my certifications myself, so don't want to waste money on something that doesn't bring much ROI. Obviously it is not just about "job hunt" ROI as such, but any cert that would increase my knowledge about GRC/management domain overall is helpful.
I was thinking CPP? Any thoughts?
My goal is to find a job in information security management, however in different country, hence I am trying my best to raise my chances. As you might know overseas job hunt is quite a challenge