Posting this on the list since it might be useful
On Sunday 15 May 2005 19:10, Trevor Warren wrote:
Evening JTD,
Thanks for the frank info. I have a lot of questions for you. Please help me decipher the answers when you have time on hand dear.
What would you suggest as the best possible way to get through?.
The general pattern is that You need to read the study material from CISA. It includes Q & A at the end of every chapter which gives you a feel of the questions.
Is there some specific study pattern you think should be adopted?.
Read up the CISA material and practice the sample questions. Generate your own questions and answers. DO NOT MUG the CISA MATERIAL. 2 hrs a day for a month should be enough. But I know of quite a large number "studying" for 3+ hrs for 4 months and failing (i think due to fatigue).
Please note that i read the boring stuff cause my CA wanted me to help him and we spent 2 hrs a day for about a 2 months on alternate days. I also attended a few classes conducted by the CISA Mumbai chapter, which i found mostly to be "a general intro to IT by the clueless for the clueless". The questions are multiple choice types, mostly wordplay, twisting simple facts into convoluted statements. The result is that you can't guess answers. And the exam is easy (should be considering that i passed it first shot).
Also, has the certification benefitted you in any way?.
since i never planned a career in IT audit, i never attempted to use it in any way. But imo it would help (particularly to members on this list since they are clued in to "real" IT), since most financial institutions respect the certification and most banks sponsor candidates for the exam. But one needs to pay extortion fees every year in order to remain a member of the "oh so elite CISA club". In return they offer discounts on some books and periodicals, IT Audit tools etc.
Would you recommend any other certification other than a
CISA/CISSP that would help boost a career from a Techno Managerial point of view
Both would be useful. CISA focuses on general IT infrastructure and CISSP on IT security. Both follow the same principles of audit but in completely different directions. Since RBI has mandated IT audit for banks (and more recently SEBI for companies), It would be a fair guess that demand for these certifications will be high. Competition comes from ICFAI which is offering a similiar certification program. BTW i have been thinking of a CISSP certification since it is considerd to be tough and would love to prove em wrong.
rgds jtd
Thanks and take care JTD.
Trevor
On 5/14/05, sherlock@vsnl.com sherlock@vsnl.com wrote:
On Saturday 14 May 2005 09:39, Trevor Warren wrote:
Sirji,
Me needs some info and books on cisa/cissp. Any idea whom to turn to?.
Cisa is utterly different from CISSP. I took the CISA test for fun (my CA said it was very tough) 4 yrs ago and passed first shot (most take at least two attempts). So it's quite easy. I think i have photocopies of typical questions and answers for CISA. http://www.isacamumbai.org should help.
rgds jtd