Demonstrated value for your enterprise.

Trust in, and Value From Information Systems

With the complexity of information systems (IS), increased risks, and the need for compliance, it is more
important than ever that organizations develop, recruit and retain employees who can take a comprehensive
view of IS and their relationship to organizational success.

Many enterprises and government agencies around the world recognize About ISACA
ISACA’s credentials as the standard and/or requirement for IS audit and
governance professionals. As an independent, nonprofit, global membership
association, ISACA engages in the development,
ISACA certified professionals bring demonstrated knowledge and experience adoption and use of globally accepted, industry-leading
to your enterprise and drive solutions to business challenges such as: knowledge and practices for information systems.
ISACA helps its members achieve individual and
• Confidentiality organizational success, resulting in greater trust in,
• Enterprise Risk Management and value from, information systems. ISACA is credible,
• Emerging Technology relevant, capable and current. Its members and
• Organizational Change certification holders are qualified and skilled
• Value from IT Investments professionals who make a difference. For more
• IT Assurance Requirements information, visit www.isaca.org.
• And Many Others
 Hire and Retain ISACA® Certified Professionals

Résumés and CVs may list experience, but an ISACA designation proves it. Including a requirement or preference for the CISA ®,
CISM®, CGEIT®, or CRISCTM designations in your staff development and recruitment efforts ensures that job candidates have the
type of experience and knowledge you are seeking.

By hiring or retaining the services of an ISACA certified

professional an enterprise has invested in an expert who: • Has met the stringent requirements of a globally recognized
credential including passing a rigorous exam

• Demonstrates IT audit, security, governance, risk and

control knowledge and skills

• Has acquired and provided evidence of appropriate IT

work experience

• Commits to ongoing professional development

ISACA certified professionals bring demonst • Adheres to the ISACA Code of Professional Ethics
rated
knowledge and experience to your enterpris
e.
• Is committed to providing your enterprise with
trust in and value from your information systems

www.isaca.org/certification-value
Certified Information Systems Auditor® (CISA®) Certified Information Security Manager ® (CISM®)
“The world of technology is ever-changing, and I need to know that my “Having a CISM certification offers credibility, not only for my job,
employees are prepared to face such challenges. The CISA designation not only for my work—Having a CISM brings credibility to
is an excellent indicator of proficiency in technology controls.” the company that I’m working for.”

— Marios Damianides, CISA, CISM, Partner, — Marcello Melro, CISA, CISM, Business Solutions Consultant,
Ernst and Young LLP, USA Siemens Enterprise Communications

Since 1978, the CISA certification has been the globally accepted standard of The CISM certification is a leading credential in information security
achievement among IS audit, control and security professionals. With a growing management. CISMs differentiate themselves from traditional information
demand by enterprises to hire professionals possessing IS audit, control and security certification holders through their demonstrated business and security
security skills, the CISA designation: management experience. CISMs have experience and knowledge:

• Demonstrates competence in five domains, including the process of auditing • Aligning information security strategies with business objectives
information systems; governance and management of IT; information and managing an information security program
systems acquisition, development and implementation; IS operation
• Identifying and managing information security risks to achieve
maintenance and support and protection of information assets.
business objectives
• Is the basis for measurement in the profession
• Overseeing and directing information security activities
• Signifies commitment to serving an organization and the
• Developing and managing an incident response and
IS audit, control and security industry with distinction
recovery program

www.isaca.org/cisa-value www.isaca.org/cism-value
Certified in the Governance of Enterprise IT® (CGEIT®)
“As an IT governance professional, it's my responsibility to ensure that the
organization understands the part that IT plays in the achievement of the
organization’s objectives, and to ensure that the IT strategic plan is aligned with the
business plan. As a CGEIT, I believe that opportunities are endless. It's an incredibly
valuable certification and well-recognized within my organization. The level of
knowledge and experience that the CGEIT demonstrates that I have is well respected
by the organization and particularly by the executive management.”
— Howard Nicholson, CISA, CGEIT, Business Analyst, Risk and Audit,
City of Salisbury (South Africa)
Savvy companies know that IT governance is a key component of enterprise
governance and an enabler of enterprise success. It can create competitive
advantage through operational efficiencies, better business information and
time-to-market. An employee with the CGEIT designation:
• Supports the growing business demands related to the
governance of enterprise IT
• Increases the awareness and importance of
IT governance good practices and issues
• Defines the roles and responsibilities of the professionals
performing IT governance work
www.isaca.org/cgeit-value
Certified Risk Information SecurityTM (CRISCTM)
“Enterprises around the world are continuing to become more
risk-aware, and the CRISC designation will provide assurance to
employers that professionals who earn and maintain a CRISC
certification are experienced in identifying and evaluating the risks
unique to their specific organization.”
— Urs Fischer, chair of ISACA’s CRISC Certification
Committee, CISA, CRISC
With the complexity of information systems, increased risks, and the need for
compliance, it is more important than ever that organizations develop, recruit
and retain employees who can take a comprehensive view of information
systems and their relationship to organizational success. Employers can be
assured that CRISC-certified professionals have the proven experience and
knowledge to help enterprises accomplish business objectives such as:
• Effective and efficient operations
• Effective risk management
• Effective and efficient information systems controls
• Compliance with regulatory requirements
www.isaca.org/crisc-value
3701 Algonquin Road, Suite 1010
Rolling Meadows, Illinois 60008 USA
www.isaca.org

Sample Name
Address Line One
City, State, Zip

For details, visit Encourage Certification

www.isaca.org/certification-value
When developing staff, encourage employees to strive for the CISA, CISM, CGEIT, or CRISC designation.
2011 Exams: Their professional development will pay dividends well into the future as they demonstrate and apply
Registration deadline: 6 April 2011 6 October 2011 their skills and knowledge to your organization. If a member of your staff would be a good candidate for
Exam Administration: 11 June 2011 10 December 2011 ISACA certification, please direct them to www.isaca.org/certification-value.