As we become more dependent on technology the proper security of our data is more important than ever been before. It’s no surprise that the demand for competent IT auditors is at an all time high. The need for enterprises to evaluate the processes and policies they use to secure their data will only continue to grow in the future. One of the primary criteria organizations look for when hiring an IT Auditor is CISA (Certified Information Systems Auditor) certification. As of this writing, there are currently over 106,000 CISA certified professionals worldwide.

Why is the CISA Certification so Popular?

Earning the CISA certification is a very rigorous and intensive process. The cert gives the holder more recognition and higher visibility throughout the job application process. CISA professionals are well equipped with the necessary skills, knowledge and expertise to identify and manage vulnerabilities, evaluate the compliance of processes, implement solutions to rectify any detected risks, employ control mechanisms and consequently, add value to an organization. This certification is often a mandatory requirement for professionals involved in the auditing, monitoring, control and assessment of the Information Technology within the business processes of an enterprise. Most recruiters not only prefer, but specifically keep an eye out for IT auditors with the CISA qualification.

Average remuneration for CISA-certified IT Auditors

As you can see in the image below, the average salary range for a professional holding the CISA certification ranges approximately from $52,459 to $122,326.

cisa salary1

Relevant experience of less than a year will have those wanting to make a breakthrough in this field obtain a starting salary at the lower end of this spectrum (as should be expected), however, hard work and a solid execution of projects will certainly boost the chances of IT Auditors climbing the corporate ladder. A six figure salary is very likely for those who have experience of 10 years or more.

The job titles most frequently associated with CISA cert are IT Auditor, Senior IT Auditor, Information Technology Manager, Information Security Auditor or Manager, Internal Auditing Manager, Information Systems Auditor or Audit Manager and Internal Audit Director. Managerial positions in Internal Auditing and Information Security garner a pay starting at the higher end of the salary spectrum. One of the highest-paying positions with a CISA certification is that of Internal Audit Director, where the pay package starts well into six figures. City- wise, the highest remuneration for IT Audit positions is offered at Boston; followed by Massachusetts, New York, Washington DC, Chicago and Dallas.

According to a survey by Global Knowledge titled “15 Top-Paying Certifications for 2014″, CISA is ranked as the third highest-paying certification out of their list of 15. The IIA (Institute of Internal Auditors) survey of 2012 showed that IT Auditors with a CISA certification earn a higher salary than those with the CIA (Certified Internal Auditor) certification. The main reason behind this being the CISA goes into greater technical detail and is more geared towards information technology in comparison to the CIA.

cisa salary

Conclusion

Certified Information Security Auditors possess a fine mix of technical knowledge in IT domain as well as a deep understanding of business processes. Almost all companies believe that hiring a CISA certified IT auditor is a safer bet compared to hiring non-certified professionals. For more information on how you can start the certification process, fill out the form below for pricing information and a course syllabus on our award winning training.

If you’re looking to get your hands dirty and start prepping for the exam, our Senior Instructor Kenneth Magee has put together several free training resources (found below) to get you started.

Overview

Domain 1: The Process of Auditing Information Systems

Domain 2: Governance and Management of IT

Domain 3: Information Systems Acquisition, Development and Implementation

Domain 4: Information Systems Operations, maintenance and Support

Domain 5: Protection of Information Assets 

References:

http://www.isaca.org/About-ISACA/Press-room/Pages/CISA-Fact-Sheet.aspx

http://www.infosecinstitute.com/courses/cisa_bootcamp_training.html

http://www.payscale.com/research/US/Certification=Certified_Information_Systems_Auditor_(CISA)/Salary

http://itauditsecurity.wordpress.com/2013/03/04/cisa-vs-cia-certification/