Exam Registration & Administration
Certification Requirements | Exam Content | Other
Exam Registration & Administration
To provide you with an immediate response to your inquiry, we are using this automated response that addresses the most frequently asked questions (FAQs) we are receiving at this time. We hope that your question is answered below, and if so, you will not be receiving a further response from ISACA. If not, your inquiry will be answered as quickly as possible.
PLEASE DO NOT RESEND YOUR MESSAGE.
- When will I receive my September 2016 exam results?
- Why does it take 5 weeks to process CISA/CISM exam results and 8 weeks to process the CGEIT and CRISC exam results?
- How is the exam scored?
- How do I provide comments on testing conditions?
- What is the date of the next exam administration?
- When does registration begin for the December exams?
- What are the exam deadlines?
- Can I take the CISA, CISM, CGEIT and CRISC exams on the same day?
- Can I change my exam site or language?
- Can I defer my exam?
- Where can I find CISA/CISM/CGEIT/CRISC applications for certification?
- What are the requirements for CISA/CISM/CGEIT/CRISC certification?
1. When will I receive my September 2016 exam results?
The CISA and CISM exam results will be released approximately five (5) weeks from the date of the exam. When released, they will be released by hard copy result letter and a one-time email notification to those who consented to receiving the result notification via email during the registration process and do not have a balance due on their exam fee. To ensure the confidentiality of scores, exam results will not be reported by telephone, fax or email other than the one-time notification email.
2. Why does it take 5 weeks to process CISA/CISM exam results and 8 weeks to process the CGEIT and CRISC exam results?
ISACA takes the processing of exam results very seriously. Best practice dictates that item performance be carefully reviewed after each exam administration to ensure that items performed in a fair and consistent manner. Also, ISACA’s policy is to release the results of all of our exams together, rather than individually as they are processed. CISA and CISM exam results will be released within 5 weeks of the exam administration (in place of the 8 weeks as currently exists for CGEIT and CRISC). This change was viable due to the maturity of the respective exams and item pool.
ISACA works with its testing agency to administer our exams in over 250 locations worldwide. The first step in the grading process is the review of the preliminary statistical analysis, which begins when a majority of answer sheets are returned. This usually occurs a week or two after the exam administration date. This preliminary analysis is conducted on each exam item in every language that the exam item is offered. Currently, ISACA offers 4 different exams, in up to 10 languages. This step is essential because it identifies items that did not perform well based on statistics. Items with poor statistics are reviewed by the members of the respective certification working group. If an error or inconsistency is discovered within an item, the answer key is adjusted to ensure candidates are not penalized for the error.
Items with performance statistics on translated exams are also reviewed to determine if errors in translation occurred, impacting the candidate’s ability to answer an item correctly. This review is performed by multilingual ISACA members who hold the respective certifications.
Once the answer keys are finalized, a passing point is determined and approved by the Certification Working Group for each certification. At this point, the testing agency processes each of the exam candidate’s final grades by converting it into a score between 200 and 800.
ISACA and our testing agency are dedicated to the efficient processing of exam results. We are also committed to performing the proper due diligence so that test results are reliable.
3. How is the exam scored?
ISACA uses a 200-800 point scale with 450 as the passing mark for the exams. A scaled score is a conversion of the raw score on an exam to a common scale. It is important to note that the exam score is not based on an arithmetic or percent average. For example, the scaled score of 800 represents a perfect score with all 200 questions answered correctly; a scaled score of 200 is the lowest score possible and signifies that only a small number of questions were answered correctly.
A candidate must receive a scaled score of 450 or higher to pass the exam. A score of 450 represents a minimum consistent standard of knowledge as established for the exam by the respective ISACA Certification Committee. The passing score of 450 represents the minimum number of questions that must be answered correctly by the candidate in order to demonstrate practical application of the job task and knowledge statements. A candidate receiving a passing score may then apply for certification if all other requirements are met.
4. How do I provide comments on testing conditions?
Candidates who wish to address any additional comments or concerns about the examination administration, including site conditions or the content of the exam, should contact ISACA international headquarters by letter or by email (email@example.com). Please include the following information in your comments: exam ID number, testing site, date tested and any relevant details on the specific issue. Only those comments received by ISACA during the first 2 weeks after the exam administration will be considered in the final scoring of the exam. Appeals undertaken by a certification exam taker, certification applicant or by a certified individual are undertaken at the discretion and cost of the exam taker, applicant or individual
5. What is the date of the next exam administration?
The next opportunity to sit for the exam is 10 December 2016 for all ISACA exams (CISA, CISM, CGEIT, CRISC) at all locations.
To find an exam locations go to www.isaca.org/examlocations.
6. When does registration begin for the December exams?
Registration for the 10 December 2016 exams is now open. You can register for either exam at www.isaca.org/examreg.
CISA Chinese Simplified, German, Hebrew and Italian languages are not available at the December 2016 exam administration.
CISM Japanese and Korean languages are not available at the December 2016 exam administration.
Information on the available languages by exam administration is available in our Exam Guide at www.isaca.org/examguide, page 3.
7. What are the exam deadlines?
10 December 2016
Early registration deadline: ended.
Final registration deadline: 21 October 2016
For more details please visit www.isaca.org/examguide
Candidates can save US $75 on the exam registration fee by registering online.
8. Can I take the CISA, CISM, CGEIT and CRISC exams on the same day?
The CISA, CISM, CGEIT and CRISC exams are given simultaneously in a 4 hour time frame. It is not possible to take multiple exams on the same day.
9. Can I change my exam site or language?
Yes, changes to the exam site, language, exam type or name changes are permitted per administration **. Exam registration changes are subject to the following charges:
10 December 2016
- On or before 21 October 2016…………no charge
- 22 October and 28 October 2016……$50
No exam registration changes will be granted after 28 October for December Exam.
**Please note that all deadlines are based on Chicago, Illinois, USA 5PM Central Time.
For name, exam site, language or exam type changes, please send an email to firstname.lastname@example.org. These changes do not include deferrals.
10. Can I defer my exam?
Candidates unable to take the exam can request a deferral of their registration fees to the next exam date. To learn more about deferring your exam, including deferral deadlines and costs, please visit www.isaca.org/examdefer.
11. Where can I find CISA/CISM/CGEIT/CRISC applications for certification?
CISA applications are located at www.isaca.org/cisaapp.
CISM applications are located at www.isaca.org/cismapp.
CGEIT applications are located at www.isaca.org/cgeitapp.
CRISC applications are located at www.isaca.org/criscapp.
12. What are the requirements for CISA/CISM/CGEIT/CRISC certification?
CISA requirements for certification: www.isaca.org/cisarequirements.
CISM requirements for certification: www.isaca.org/cismrequirements.
CGEIT requirements for certification: www.isaca.org/cgeitrequirements.
CRISC requirements for certification: www.isaca.org/criscrequirements.
Certification Requirements | Exam Content | Other
- What do I need to do if I've received a revocation notice?
- Where can I find the CISA application for certification?
- Is there a fee to apply for certification?
- What are the qualifications to earn the CISA credential?
- What does the CISA continuing professional education program require?
- Do I need to submit documentation for my CPE hours?
- How do I renew my certification and/or report my CPE?
- Does ISACA provide discount on certification maintenance (renewal) fees if I have multiple certifications?
1. What do I need to do if I've received a revocation notice?
If you have received a revocation notice, please contact email@example.com.
2. Where can I find the CISA application for certification?
CISA applications are located at Apply for Certification.
3. Is there a fee to apply for certification?
For certification applications received on 1 June 2012 and forward, an application processing fee of US $50 will be required to apply for certification. The application processing fee will support our dedication to efficient and proper processing of certification applications according to industry standards. The fee will also help support the integrity of the application process, which in turn reinforces the strength and reputation of the overall certification programs.
Payment for the CISA application processing fee can be made online at www.isaca.org/cisapay.
4. What are the qualifications to earn the CISA credential?
The CISA designation is awarded to individuals with an interest in Information Systems auditing, control and security who meet the following requirements:
- Earn a passing score on the CISA exam
- Adhere to the ISACA Code of Professional Ethics
- Commit to abide by the CISA Continuing Professional Education Policy
- Acquire a minimum of 5 years of professional information systems auditing, control or security work experience (as described in the job practice areas). Substitutions and waivers of such experience may be obtained if certain education and general IS or audit experience requirements are met.
- Comply with Information Systems Auditing Standards
For further details, click here.
5. What does the CISA continuing professional education program require?
In order to become and remain a CISA an individual must agree to comply with the CISA continuing professional education program. This program requires an individual to earn a minimum of 20 hours annually and 120 hours every 3 years of continuing professional education. In addition, an annual maintenance fee of US $45 ISACA member and US $85 non-member is required.
Download CPE policy
6. Do I need to submit documentation for my CPE hours?
Documentation of CPE hours does not need to be provided to ISACA unless you are selected for an audit of your CPE hours.
7. How do I renew my certification and/or report my CPE?
To renew the certification requires earning and reporting CPE hours annually and over a fixed 3-year cycle period and paying an annual certification maintenance fee.
Our CPE reporting system has recently been enhanced and certified individuals are now able to report CPE as they are earned.
CPE Reporting FAQs
How to report your CPE:
Log in at www.isaca.org
- Click on MY ISACA
- Click on MY CERTIFICATIONS
- Click on Manage My CPE
- Scroll down, then click on Add CPE button
- Enter CPE activity information and click Save.
To pay the annual maintenance fee:
8. Does ISACA provide a discount on certification maintenance (renewal) fees if I have multiple certifications?
Yes, for those individuals who renew 3 or more ISACA certifications, ISACA offers a discount on the 3rd and 4th renewal fees of $20 for members and $35 for nonmembers.
Exam Registration & Administration | Exam Content | Other
- How long is the exam?
- What does the CISA exam cover?
1. How long is the exam?
A candidate is given 4 hours to complete a 150-question multiple-choice exam.
2. What does the CISA exam cover?
The CISA exam covers 5 IS audit, control or security areas, each of which is further defined and detailed through task and knowledge statements. For details, please go to CISA Job Practice Areas.
Exam Registration & Administration | Certification Requirements | Other
- How do I request additional information or report an issue regarding a current or past credential holder?
- How can I become a CISA Exam Item Writer?
1. How do I request additional information or report an issue regarding a current or past credential holder?
To request additional information or to report an issue regarding a current or past credential holder, please contact the CISA certification department:
2. How can I become a CISA Exam Item Writer?
Apply online to become a CISA Exam Item Writer.
Exam Registration & Administration | Certification Requirements | Exam Content