Options
Cyber security audit cert
hey all - has anyone done the above new cert from isaca? Wanted to find out if it’s for juniors or more advanced workers.
thanks in advance
thanks in advance
AWS, Azure, GCP, ISC2, GIAC, ISACA, TOGAF, SABSA, EC-Council, Comptia...
Comments
-
Options
stryder144
Member Posts: 1,684 ■■■■■■■■□□
I have never heard of it. For those interested, here is the link. After a quick glance, it looks like a stepping stone to the CISA. Price for the online class isn't too spendy but a bit out of my current, personal training budget.
The easiest thing to be in the world is you. The most difficult thing to be is what other people want you to be. Don't let them put you in that position. ~ Leo Buscaglia
Connect With Me || My Blog Site || Follow Me -
Options
Info_Sec_Wannabe
Member Posts: 428 ■■■■□□□□□□
stryder144 said:I have never heard of it. For those interested, here is the link. After a quick glance, it looks like a stepping stone to the CISA. Price for the online class isn't too spendy but a bit out of my current, personal training budget.
After taking a peek at the link, it does resemble CISA with a bit of hands on and cloud (at least IMHO).X year plan: (20XX) OSCP [ ], CCSP [ ] -
Options
mahd559
Member Posts: 14 ■■■□□□□□□□
Does it expire? Or you have to maintain it by certain number of CPEs? -
Options
banzay
Member Posts: 1 ■■□□□□□□□□
Just passed today. Was bored. Spent one day to prepare. If you are already have a CISA, doth waste your time. I'm not sure what is the value of this certificate. -
Options
UnixGuy
Mod Posts: 4,564 Mod
scac: i looked at it, it looks like an entry level cert not an advanced one
-
Optionseshomsho
Member Posts: 1 ■■□□□□□□□□
I took the test today using the book and self paced study materials and none of the questions from the book or the study materials were on the exam. I have CISA and CRISC and regret registering for this prior to them developing better study guides. With only 75 questions asked, you have to be prepared to answer most of them correctly. The format resembles CISA but again I did not need to spend a $1000 for materials that were useless.
-
Options
LordQarlyn
Member Posts: 693 ■■■■■■□□□□
Or if you don't have the CISA, skip this one and go straight for the CISA if that's your career path. I think the real purpose is to collect money from those who can't quite qualify for the CISA but ISACA still wants their money.banzay said:Just passed today. Was bored. Spent one day to prepare. If you are already have a CISA, doth waste your time. I'm not sure what is the value of this certificate.
-
OptionsThe_AM
Member Posts: 10 ■■■□□□□□□□
IMO, When it comes to IS Auditing; CISA is and will be the gold standard for the foreseeable future.
ISACA's Cybersecurity Audit Certificate is a sort of "good to have" credential if you want to highlight and emphasize on your cybersecurity audit skills more from a visibility perspective (for hiring managers) than the knowledge perspective. -
Options
yoba222
Member Posts: 1,237 ■■■■■■■■□□
How can you have a cert without an acronym?A+, Network+, CCNA, LFCS,
Security+, eJPT, CySA+, PenTest+,
Cisco CyberOps, GCIH, VHL,
In progress: OSCP -
Options
HAGUILARO Member Posts: 1 ■□□□□□□□□□
eshomsho said:I took the test today using the book and self paced study materials and none of the questions from the book or the study materials were on the exam. I have CISA and CRISC and regret registering for this prior to them developing better study guides. With only 75 questions asked, you have to be prepared to answer most of them correctly. The format resembles CISA but again I did not need to spend a $1000 for materials that were useless.HelloI totally agree with what you say, I studied all the material that was provided to me, but it did not help me to pass the exam, how did you pass? Do you have any guide or test exams? I would really appreciate it if you help me !! my mail aguilar.osores@gmail.com -
Optionsmcc39817
Member Posts: 20 ■■■□□□□□□□
TL:DR: you're better off getting a CISA and then hands on experience with tools and processes like identifying threats, gaining a better handle on the command prompt... all of which can be utilized to be able to provide a clear picture of the actual cyber-risks.After reading the comments here, I'm pretty happy I did not ever pursue this certificate. What I will say though, for solid hands on that is directly transferable to security audits (i.e. NIST, etc.), I've been pretty happy with my CISA | CySA+ and Cybrary Subscription. While the CySA+ focuses on incident response and hands on with things like logs and firewalls, tools, identifying threats, etc. as far as being able to analyze and review, and respond. This has been useful to structure audits to go beyond "SOX" and look at the holistic security risk to the organization. Plus, this combo has given me the means to move forward in developing my cybersecurity auditing skills. Further, I've been able to utilize labs from Cybrary to obtain the hands-on experience, as well as utilize review tools for the CySA+ exam. It's still interesting that you don't see more companies asking for the CySA+ in light of the current global environment. But I guess I'm bias as a career IT auditor.Certs: CISA, CDPSE | Pentest+, SEC+, CySA+Planned: CASP+, CISSP, CISM, eJPT, eWPT (2023)
