Examination Structure
The CISA program is designed to assess and certify individuals in the IS audit, control and security professionals who demonstrate exceptional skill and judgment in IS audit. The CISA credential measures expertise in the areas of:
| Domain | Content Weight |
| Information System Auditing Process | New: 21% |
| Governance and Management of IT | New: 17% |
| Information Systems Acquisition, Development and Implementation | New: 12% |
| Information Systems Operations and Business Resilience | New: 23% |
| Protection of Information Assets | New: 27% |
Scoring the Exams: Candidate scores are reported as a scaled score. A scaled score is a conversion of a candidate's raw score on an exam to a common scale. ISACA uses and reports scores on a common scale from 200 to 800. A candidate must receive a score of 450 or higher to pass the exam. A score of 450 represents a minimum consistent standard of knowledge. A candidate receiving a passing score may then apply for certification if all other requirements are met.