2008年6月17日 星期二

CISA國際電腦稽核師證照

中華專業認證學會 » Blog Archive » CISA國際電腦稽核師證照

« CFE舞弊稽核師證照CMA美國管理會計師證照╱CFM合格財務長證照 »CISA國際電腦稽核師證照
作者:羅梅英,「Career就業情報雜誌」授權刊載
在資訊化的時代,過去以人力或書面進行的會計及稽核作業,也轉為電腦化作業。因此,結合「稽核」與「資訊」兩種專業的國際電腦稽核師(CISA)證照,近年引起大型企業、金融業、資訊安全顧問公司及會計師事務所的重視。

在國外擁有CISA證照的行情約年薪8萬美元,而台灣有些大型企業在召募稽核人員時,也開始特別指名需具備CISA證照。大陸工程總稽核戴龍強調,「現在沒有CISA的話,連qualification(資格)都沒有。」通常考取CIA(內部稽核師)證照者,多會以CISA為下一張證照的目標。

去年考取CISA的勤業眾信會計師事務所企業風險管理副理陳晞涵表示,「在同儕們都考照的壓力下,不考也不行!」以勤業眾信的資訊安全服務部門來說,超過一半以上擁有CIA、CISA等證照。在面對客戶時,除了拿出做過的專案實績之外,「你有什麼證照,也是取信客戶的好方法,」陳晞涵說。

在資訊安全領域裡的CISA、CISM(資訊安全經理人)、CISSP(資訊系統安全專家)等三張證照,究竟有什麼不同?

考取全台灣第一張CISM證照的徐文清分析,CISA偏重於資訊稽核面,有助於熟悉稽核流程;CISM側重資訊安全管理面,強調安全規劃的觀念;CISSP證照則比較偏資訊安全技術面。

CISA考試範圍包括:資訊系統稽核流程、資訊技術基礎架構、資訊資產保護、災害復原、企業流程評估及風險管理等。考題多數涉及實務應用面,因此,具備相關工作經驗者較容易通過考試,平均來說,台灣的錄取率介於10%至20%之間。

陳晞涵表示,考CISA最難的是,「答案不是only-answer,而是要選best-answer,」也就是要在4個都正確的選項中,選出一個最好的答案。題目多達200題,每道題目只有1分多鐘做答時間,必須快速回答,否則絕對寫不完。

戴龍建議,在準備應試時,會計背景的考生應多熟讀資訊管理的專有名詞及流程管控措施;資訊背景者則應在稽核、會計領域多下功夫。

CISA國際電腦稽核師
發照單位 美國電腦稽核協會(ISACA)
報考資格 考試資格並無限制。但通過筆試,還需具備5年專業資訊系統稽核、控制或安全等相關工作經驗,並遵守ISACA的「職業道德準則」
報名單位 需直接向ISACA報名
考試資訊 1.考試日期在每年6月份,全球同步舉行考試,自今年起增加12月考試
2.6月份考試有中文版考題可供選擇,12月份考試初期尚未提供
3.題型為4小時之內回答200道選擇題
4.每3年要繼續接受120小時的教育課程

此篇文章發表於 2005年 11月 22日(星期二) 9:16 pm ,分類是「證照介紹, 會計證照」。 你可用 RSS 2.0 追蹤此篇的留言回應。 留言回應功能已關閉,但你仍可發送引用通告。

1 則留言:

匿名 提到...

Important types of Sampling for CISA Exam

CISA Quick Point 17

Sampling could be of many types. For the preparation of CISA Exam you should know the the types of sampling (I think indepth knowledge about each is not always needed. the basics should do)

Important types of sampling are


1. Simple Random sampling
2. Stratified Random Sampling
3. Multistage Cluster Sampling
4. Purposive sampling.


Simple Random sampling, Stratified Random Sampling & Multistage Cluster Sampling are the types of
Probability Sampling/Mathematical sampling/Statistical sampling

Whereas Purposive Sampling which is also known as Judgmental Sampling is Nonprobability sampling.



CISA Type Question 17


Which of the following sampling method is likely to LEAST represent a population


1. Simple Random sampling
2. Stratified Random Sampling
3. Multistage Cluster Sampling
4. Purposive sampling.



Answer to CISA Type Question 16

So far, I have received almost five emails and two comments suggesting answer to CISA Type Question 16.

Other than one all suggested 1. Physical Layer as answer.I do agree with them.Not only hybrid type of firewall but I believe no firewall can work and protect Physical layer. So, the correct answer is definitely 1. Physical layer.





I encourage all of you to post your comment or write to us as sharing of knowledge will make you successful in CISA Exam. Remember the purpose of this blog is to promote CISA and ISACA by motivating every CISA aspirants. As soon as you decide for taking CISA exam, I recommend to take membership of ISACA at http://www.isaca.org. The Control Journal given to members is one of the best IS related journal of present era.I very eagerly wait for this Journal every two months.This magazine will be beneficial for your CISA preparation as well.Beside this you will get discounts for CISA Exam and CISA Review Manual and many other benefits.



Again all the best for your CISA ambition.

Posted by PassCISA at 10:01 PM 2 comments Links to this post

Labels: IS Audit Process

Source CISA Preparation Blog http://passcisa.blogspot.com