+ Reply to Thread
Results 1 to 16 of 16
  1. Junior Member Registered Member
    Join Date
    Feb 2018
    Posts
    5
    #1

    Post Attempting CISA with no IT Security or Audit background.

    I'm currently working as a web developer in an IT firm for the last 7 months. I am an engineering graduate(2017) in Computer Science. The thing is that I've got zero knowlege in IT Security or Audit background. I'm attempting CISA in June. I already bought the CRM and QAE(hardcopy). As I do not have any background, what precautions or steps I should take while studying?
    Reply With Quote Quote  

  2. SS
  3. Senior Member
    Join Date
    May 2006
    Posts
    2,159

    Certifications
    CISSP, CCSP, CCNA Cyber Ops, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #2
    Quote Originally Posted by fallen_warrior View Post
    I'm currently working as a web developer in an IT firm for the last 7 months. I am an engineering graduate(2017) in Computer Science. The thing is that I've got zero knowlege in IT Security or Audit background. I'm attempting CISA in June. I already bought the CRM and QAE(hardcopy). As I do not have any background, what precautions or steps I should take while studying?
    You should pray more and evaluate the reasons you are taking the CISA. Do you need it for your job? Will it make you a better developer? Will it add any value to you as a person? People with aspirations to work as IT Auditors usually try the CISA.
    Reply With Quote Quote  

  4. Junior Member
    Join Date
    Apr 2015
    Posts
    27

    Certifications
    CISSP, SSCP, HCISPP, COBIT 5 Foundation, COBIT 5 Implementation
    #3
    If you are looking to move into security try the SSCP or security+. ISC2 offers experience waivers for the SSCP if you have a 4 year degree. Again, I would concur with the previous post. Security or auditing is not necessarily the career to take "just because". However, try the lower certs to get you in the mindset of certification exams. Also do some research on information security and audit careers. Maybe request to shadow an auditor or Info sec analyst for a few hours to determine if it's something you want to do as a career.
    Reply With Quote Quote  

  5. Senior Member E Double U's Avatar
    Join Date
    Apr 2014
    Location
    The Netherlands
    Posts
    1,346

    Certifications
    CISSP, CISM, CISA, GPEN, GCIA, GCIH, C|EH, and more.
    #4
    Quote Originally Posted by fallen_warrior View Post
    The thing is that I've got zero knowledge in IT Security or Audit background. I'm attempting CISA in June. As I do not have any background, what precautions or steps I should take while studying?
    I really do not understand why you are attempting this exam.
    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Apr 2015
    Location
    UK
    Posts
    127

    Certifications
    CISSP, CISM
    #5
    Doesn’t make much sense to me either.
    Reply With Quote Quote  

  7. Senior Member za3bour's Avatar
    Join Date
    Mar 2010
    Location
    Santa Cruz, USA
    Posts
    1,062

    Certifications
    BS:Electrical Engineering,CISM, DRE, AMBCI, MCITP-EA,SA, MCP, CCNA
    #6
    I wouldn't take the exam, you could pass but then what? I see it as a waste of money and time in my opinion
    Reply With Quote Quote  

  8. The ceiling is glass. PJ_Sneakers's Avatar
    Join Date
    Nov 2014
    Location
    169.254.0.1
    Posts
    791

    Certifications
    AccessData, Cellebrite, CompTIA, EC-Council, IACRB, (ISC)˛, Microsoft, MSAB
    #7
    Cut the guy some slack, maybe he wants to get into auditing. You will need to demonstrate a certain number of years of experience before you will become fully certified though, even if you pass the CISA exam. Just keep that in mind.
    Reply With Quote Quote  

  9. Junior Member Registered Member
    Join Date
    Feb 2018
    Posts
    5
    #8
    Guys, right now I'm a web developer. But this is not what I want to be. My brother works as a cpa in one of the big fours. So he has got the connections to get me a job there. But one thing he asked me to do is to pass the CISA exam. Some inspirations please guys..hahaha
    Reply With Quote Quote  

  10. Member
    Join Date
    Dec 2015
    Posts
    30
    #9
    Quote Originally Posted by fallen_warrior View Post
    Guys, right now I'm a web developer. But this is not what I want to be. My brother works as a cpa in one of the big fours. So he has got the connections to get me a job there. But one thing he asked me to do is to pass the CISA exam. Some inspirations please guys..hahaha
    I graduated from an MIS program and was able to pass the CISA with a few months of study. If I was able to pass the exam, so can you! Just go over the CISA manual and research the topics you aren't familiar with. Do the database questions until you hit the 90s for each domain and get into the ISACA mindset. You'll do fine. You are lucky to have connections in a firm. I looked for an entry level IT audit position for a very long term. Very hard get in.
    Reply With Quote Quote  

  11. Junior Member Registered Member
    Join Date
    Feb 2018
    Posts
    5
    #10
    Yeah.. That's what. I'm trying to take my career forward as an IS Auditor. If not, why would I waste this much money and time on this. Web Development is an area where you can make money if you are really good at it. Guess what, I suck at programming. Lmao... And my brother can land me a job pretty easily after passing CISA. Atleast, that's what he says....hahaha....So how early should I start and how many hours a day should I study. Preparation tips are much appreciated..
    Reply With Quote Quote  

  12. Senior Member
    Join Date
    May 2006
    Posts
    2,159

    Certifications
    CISSP, CCSP, CCNA Cyber Ops, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #11
    Quote Originally Posted by fallen_warrior View Post
    Yeah.. That's what. I'm trying to take my career forward as an IS Auditor. If not, why would I waste this much money and time on this. Web Development is an area where you can make money if you are really good at it. Guess what, I suck at programming. Lmao... And my brother can land me a job pretty easily after passing CISA. Atleast, that's what he says....hahaha....So how early should I start and how many hours a day should I study. Preparation tips are much appreciated..
    If you are not passionate about something it doesn't matter if someone can help you find an IS Audit job.

    IS Audit jobs are extremely boring, lots of write ups and reports. Read the manual and come back to tell us if the material excited you.

    The point is you gotta find something YOU like not go into a role because your brother can find you a job.
    Reply With Quote Quote  

  13. Junior Member Registered Member
    Join Date
    Feb 2018
    Posts
    5
    #12
    I'm really into Computer Networks and Security. I was working with a team in setting a parallel computing environment in college. Yeah, when I went through the manual, the first two domains were not that appealing to me. But I really dig the domains dealing with security,firewall,protection etc. And yeah, he had mentioned that documentation and report making takes up 80% of the audit process and its really boring. Real auditing happens only for 2 weeks in a 2 month audit he said. So yeah, I've thought about it and I've decided to take up IS Auditing as a career. Now I hope everybody will stop criticizing me about my choice and will provide some useful information.
    Reply With Quote Quote  

  14. Junior Member
    Join Date
    Apr 2015
    Posts
    27

    Certifications
    CISSP, SSCP, HCISPP, COBIT 5 Foundation, COBIT 5 Implementation
    #13
    My older brother told me I couldn't do IT because I am a girl. I was a manicurist at the time. I created a custom multiple user database with client profiles to manage my spa at the time. I found a new love. I decided to take the network+, A+, server+, Linux+, security+ and passed. I began my IT career as a developer. Then a compliance analyst. Then went into security operations. Laterally governance, risk management, and audit. I began my career on a dare from my older brother. The best way to get me to something is tell me I can't. I absolutely love what I do, but not without struggles. I do have some friends who see the money I make and jumped on the bandwagon instead of wanting the career as a desire.

    However, gather materials on ISACA website, like ITAF, audit and assurance programs, COBIT 4 and 5 manuals (free if you're a member). I took the COBIT 5 foundation and implementation exams. The CISM was much easier. But I also had a SSCP, HCISPP, and CISSP. The CISSP materials may help. I found ISACA CISM and CISA material dry. But it may work for you. Join a study group.
    Reply With Quote Quote  

  15. Senior Member
    Join Date
    May 2006
    Posts
    2,159

    Certifications
    CISSP, CCSP, CCNA Cyber Ops, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #14
    Quote Originally Posted by fallen_warrior View Post
    I'm really into Computer Networks and Security. I was working with a team in setting a parallel computing environment in college. Yeah, when I went through the manual, the first two domains were not that appealing to me. But I really dig the domains dealing with security,firewall,protection etc. And yeah, he had mentioned that documentation and report making takes up 80% of the audit process and its really boring. Real auditing happens only for 2 weeks in a 2 month audit he said. So yeah, I've thought about it and I've decided to take up IS Auditing as a career. Now I hope everybody will stop criticizing me about my choice and will provide some useful information.
    No one is criticizing you about your choice. We are just giving our opinions of which you asked by posting here.
    Learn to accept both positive criticism and negative if any and make your own decisions based on your research and due diligence. A very valuable skill to have as an IS Auditor.
    Reply With Quote Quote  

  16. Senior Member E Double U's Avatar
    Join Date
    Apr 2014
    Location
    The Netherlands
    Posts
    1,346

    Certifications
    CISSP, CISM, CISA, GPEN, GCIA, GCIH, C|EH, and more.
    #15
    Quote Originally Posted by talbert80 View Post
    My older brother told me I couldn't do IT because I am a girl.
    Gotta love big brothers lol
    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
    Reply With Quote Quote  

  17. Senior Member roxer's Avatar
    Join Date
    Jan 2018
    Location
    Some dark place in the universe...
    Posts
    130

    Certifications
    CISSP, CISA, CRISC, CISM, CSAE, CASP, CySA+, SEC+, CCSKv4, TOGAF 9, COBIT5 Foundation
    #16
    The.ISACA.question.bank - gets you in the mindset to understand the way ISACA words their questions. Wording in everything. I am studying for CISM right now and must tell you that I had to switch gears after the CISA. Know how EDI works--all of it and realize what a bastion host is and how it works.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks