Monday, October 29, 2007

CISA Exam Scaled Score System

There was a question about CISA scaled score system.
Here is an excerpt from ISACA's explanations:

"...Beginning with the June 2007 exam administration, exam scores are being reported on a scale from 200-800. This is a change from the 1-100 point scale that was used previously. Regardless of the scoring scale, the overall exam pass/fail results are the same. In other words, no more, or fewer candidates pass or fail the exam under the 200-800 scale scoring as did under the 1-100 scale scoring....

...A scaled score of 450 or higher is required to pass, which represents the minimum consistent standard of knowledge as established by ISACA's CISA Certification Board...."

According to isaca.org CISA exam is divided into 6 areas:

  • IS Audit Process - 10%

  • IT Governance - 15%

  • Systems and Infrastructure Life Cycle - 16%

  • IT Service Delivery and Support - 14%

  • Protection of Information Assets - 31%

  • Business Continuity and Disaster Recovery - 14%


Each area of exam is assessed by the scale from 200 to 800. Total score is calculated accrording to the numbers above. And if it is 450 or higher, you should open a bottle of fizz :)

UPD: I received following info from ISACA Certification Department:

"The web site location for the CISA job practice areas that you have looked at is correct. The percentages that are listed there are indicating the percentage of questions in a particular job practice area that are on the exam itself. The percentage of questions in each area is not considered when the exam is scored by us."

Thursday, October 11, 2007

CISA Exam Preparation

Well this year deadline has passed. Those who were in time for registration should begin the preparation. Others who decided not to attend this year exam have chance to do preparation without rush.

Let me share some experience in my approach to CISA exam preparation.

First of all you need to read latest CISA Review Manual.

In second place you need the questionary. I browsed ISACA bookstore and found that they issued highly interesting product - CISA Practice Question Database v7 English Edition (web site download). It inlcudes all questions of this and previous year questionary (825 questions). But I should warn you that only small amount of these questions will be inlcuded in your CISA exam.

It is why whe main purpose of the questionary is to give confidence that you mastered "right common sense" feature (I mentioned this in my previous article).

My approach was very simple. I red CISA manual step by step, and practised each area of exam with the questionary until I got acceptable results 95-99% right answers in each area.

Unfortunately i had no time to participate in any additional CISA training courses. But if you have extra time and money why not. It is a good opportunity to summarize your knowledge after reading CISA manual. Another option is to read additional books.
I chose some for you:

CISA Certified Information Systems Auditor All-in-One Exam Guide

CISA Exam Cram 2

CISA: Certified Information Systems Auditor Study Guide

CISA Exam Prep (ACM Press)

Next time I want to discuss the similarity and difference between Internal and External IT Audit.

Please stay in touch I decided to publish the articles every week. :)