CISA INTRODUCTION
Reza Aminy
reza.aminy@gmail.com
Daftar Isi
Pendahuluan
Persiapan ujian
–
–
–
–
–
informasi yang harus diketahui
biaya, waktu pendaftaran, dan lokasi ujian
area yang akan diujikan (job practice areas)
materi yang dipelajari
target, strategi belajar, teknik belajar
Setelah ujian
– applying for CISA certification
– maintaining CISA
Pendahuluan
ISACA
1969: EDP Auditors Association (EDPAA) from a group of
individuals working on auditing controls in computer
systems
1994: The association became the Information Systems
Audit and Control Association (ISACA)
2008: the organization had dropped its long title and
branded itself as ISACA to reflect the broad range of IT
governance professionals it serves
ISACA Certifications
ISACA Certificate Programs
CISA
Certified Information
Systems Auditor (CISA) is a
globally recognized
certification in the field of
audit, control and security
of information systems
The American National
Standards Institute (ANSI)
has accredited the CISA
certification under ISO/IEC
17024:2003.
Persiapan Ujian
Informasi yang Harus Diketahui
ISACA Certification
Exam Candidate Guide
di situs ISACA
(www.isaca.org)
Biaya Ujian
ISACA nonmember $760
ISACA member $765
(Exam $575, ISACA
membership $135, ISACA
ID membership $45, new
member if online $10)
Cek jika ada program
diskon
Pendaftaran Ujian
Pendaftaran melalui situs ISACA
Exam registration is continuous; candidates can register
any time, no restrictions
Candidates can schedule a testing appointment as early as
48 hours after payment of exam registration fees
Upon registration, exam candidates have a twelve (12)
month eligibility period to take their exam
Rescheduling an Exam
You can reschedule your exam anytime, without penalty, during your eligibility
period if done a minimum of 48 hours prior to your scheduled testing
appointment. If you are within 48 hours of your scheduled testing appointment,
you must take the exam or forfeit the registration fee
You will forfeit your fees if you do not schedule and take the exam during your
twelve-month eligibility period. No eligibility deferrals or extensions are
allowed
If you fail to arrive for a testing appointment due to a personal hardship you
may be able to reschedule without forfeiting your exam registration fee:
–
–
contact PSI no later than 72 hours following the scheduled appointment
provide documentation to PSI to confirm the reason for absence.
ISACA Exam
1.
2.
3.
•
•
•
•
•
Buat akun ISACA
Bayar pendaftaran
Pilih online remote proctoring (jangan pakai KTP-e yang ada masa berakhirnya)
atau ujian di testing center, pilih lokasi, tanggal, dan jam ujian
Andalan Nusantara Teknologi, Intiland Tower, Jl. Jend. Sudirman Kav 32, Jakarta
Duta Kuningan, Sovereign Plaza 2nd floor, Jl. TB Simatupang no. 36, Cilandak,
Jakarta
Multimatics, AXA Tower 37th Fl., JI. Prof. Dr. Satrio Kav. 18, Jakarta
Trainocate, Jl. HR Rasuna Said Kav 20, The H Tower 17th Floor, Jakarta
Cornell Language Center, Jl. Raya Manyar Blok C No. 8, Kapuk Muara,
Penjaringan, Jakarta Utara
https://isacaavailability.psiexams.com/
ISACA Exam
The exam eligibility and registration fees will be forfeited if the
testing appointment is missed or if the candidate is more
than 15 minutes late for a testing appointment.
Computer-based test
Soal pilihan ganda 150 soal
Waktu empat jam
There are no penalties for incorrect answers
Area yang akan Diujikan & Prioritas
Domain 1— Information System
Auditing Process (21%)
Domain 2—Governance and
Management of IT (17%)
Domain 3—Information Systems
Acquisition, Development and
Implementation (12%)
Domain 4—Information Systems
Operations and Business Resilience
(23%)
Domain 5—Protection of
Information Assets (27%)
Materi yang HARUS Dipelajari
1.
CISA Review Manual, twelvemonth digital eBook
subscription (bisa diperpanjang
tanpa biaya tambahan) atau
cetak
2.
CISA Review Questions,
Answers & Explanations
Manual/12 month subscription
untuk pemahaman terhadap
buku
CISA Review Manual dan CISA Review
Questions, Answers & Explanations
Manual dapat dipesan di
www.isaca.org. Biaya tambahan oleh
kurir.
Materi yang BOLEH Dipelajari
3. Kemudian: COBIT,
articles & journals dari
ISACA
4. Opsional: referensi nonISACA
Jika ada perbedaan,
materi yang dipakai
sebagai acuan adalah
materi dari ISACA karena
ini adalah sertifikasi
mereka
Target (1)
Candidate scores are reported as a scaled score. A scaled
score is a conversion of a candidate’s raw score on an exam
to a common scale. ISACA uses and reports scores on a
common scale from 200 to 800. For example, the scaled
score of 800 represents a perfect score with all questions
answered correctly; a scaled score of 200 is the lowest score
possible and signifies that only a small number of questions
were answered correctly.
A candidate must receive a score of 450 or higher to pass
the exam.
Target (2)
Exam outcome is based on total score only
Sub-domain scores are reported only to provide a
relative performance in each area
It is possible to achieve low scores in multiple domains
and still pass and high scores in certain sub-domains
but still fail
Target (3)
Skor lulus minimal: 450 scaled score.
Tentukan target. Percent correct: 90%. Target harus
tinggi karena...
Scaled score: (X - M)/SD*, dan karena...
Tercantum dalam surat hasil ujian
* X = skor peserta, M = skor rata-rata, SD = standard deviation/
simpangan baku
Strategi Belajar
Bahan yang harus dikuasai: buku dan soal
Persiapan dalam dua-tiga bulan:
– membaca bukunya dua sampai tiga kali
– mengerjakan semua soal latihan dan membaca semua
penjelasannya
– mencoba latihan 150 soal dalam empat jam
Cramming will definitely not work! → sumber
kegagalan
Teknik Belajar
Pemahaman yang baik plus hafalan, terutama hafalan untuk
membantu pemahaman
Logika berdasarkan hafalan dan pemahaman yang baik
Jawaban mencoba menjebak tester agar memilih jawaban yang paling
bagus; jawaban yang benar adalah jawaban yang paling sesuai dengan
soal
STM → LTM, elaborasi dan repetisi
https://www.isaca.org/credentialing/write-an-exam-question
Pentingnya Feedback
Mencoba latihan soal adalah penting:
– mengindikasikan penguasaan materi secara
keseluruhan dan per area
– menunjukkan area-area yang perlu diperdalam
(!!!)
Setelah Ujian
Setelah Ujian
Candidates will receive a preliminary score report
at the conclusion of their exam
“A preliminary analysis of your responses
indicates that you have PASSED/FAILED the CISA
Examination”
Official scores will be sent to candidates via email
within 10 working days of their exam.
You have PASSED the CISA
Examination
1.
Lulus ujian → CISA candidate
2.
Harus punya lima tahun “professional information
systems auditing, control or security work
experience”
3.
Meng-upload formulir aplikasinya (sebaiknya awal
tahun) dalam lima tahun sejak lulus ujian
4.
Membayar application processing fee $50
Applying for CISA Certification (2)
Lima tahun “professional information systems auditing,
control or security work experience”. Pengalaman harus dalam
10 tahun terakhir.
Substitutions and waivers of such experience, to a maximum
of 3 years:
– “information systems experience OR non-IS auditing experience” =
satu tahun
– “120 completed university semester credit hours (the equivalent of a
4-year degree) not limited by the 10-year preceding restriction” =
dua tahun
– “A master's degree in information security or information
technology from an accredited university” = satu tahun
Sertifikat
Download, dan cetak jika perlu
Maintaining CISA
Membayar certification maintenance fee
Setiap tahun mengumpulkan minimal 20 jam continuing
professional education (CPE), lapor via situs web ISACA
Setiap tiga tahun mengumpulkan minimal 120 jam CPE
untuk perpanjangan sertifikat
Jika terpilih sebagai sampel untuk diaudit, kirim bukti-bukti
CPE
Mematuhi Code of Professional Ethics
CPE
ISACA & non-ISACA meetings/activities
ISACA quiz → journal atau web
Teaching/lecturing/presenting
Publishing articles/books
Exam writing/review
Passing related professional examinations, dll.
Satu jam CPE = 50 menit
Sesi tanya-jawab
Silakan bertanya untuk hal-hal yang
berkenaan dengan strategi belajar untuk
CISA exam dan sertifikasi
Pertanyaan juga bisa disampaikan via e-mail:
reza.aminy@gmail.com
Terima kasih