A year of impact, innovation and growth
2016 Annual Report

A Letter from the ISACA Board of Directors Chair and the ISACA CEO

I

n a year shaped by unusual events occurring within an unsettled geopolitical landscape, the ISACA® professional community came together in 2016 with vigor to navigate the risks and challenges of turbulent times. Throughout the

year, ISACA’s 215 Chapters and nearly 160,000 professionals worked tirelessly, both locally and across the globe, to increase ISACA’s visibility, influence and impact, and to help those working within our fields of interest to realize the positive potential of technology. This dedicated effort is easy to explain: our work in IT Audit, Cyber and Information Security, Risk Management, and the overall Governance of Enterprise Technology has never been more important to helping enterprises innovate and improve business performance by optimizing their use of technology.

In a year shaped by unusual events occurring within an unsettled geopolitical landscape, the ISACA professional community came together in 2016 with a vigor to navigate the risks and challenges of turbulent times. Throughout the year, ISACA’s 215 Chapters and nearly 160,000 professionals worked tirelessly, both locally and across the globe, to increase ISACA’s visibility, influence and impact, and to help those working within our fields of interest to realize the positive potential of technology. This dedicated effort is easy to explain: our work in IT Audit, Cyber and Information Security, Risk Management, and the overall Governance of Enterprise Technology has never been more important to helping enterprises innovate and improve business performance by optimizing their use of technology.

Notable accomplishments of 2016 include a continued, significant investment in cybersecurity. Because of this work, ISACA has increased our organization’s standing and credibility as a reliable, impartial adviser to those responsible for crafting technology and public policy. By the close of 2016, ISACA had actively engaged with national officials in the governments of the United States, Singapore, China, the United Kingdom and India. That engagement occurred in all of ISACA’s fields of interest, and has been a vital component of our ongoing efforts within the public and private sectors of those nations.

In April 2016, at ISACA’s Global Leadership Summit, our volunteer leadership engaged in some of its most important work of the year. More than 400 Chapter leaders gathered in Lisbon, Portugal, to provide their input on how best to shape ISACA’s future. Their collective expertise and shared viewpoints have been key insights in the ongoing improvement efforts taking place across ISACA’s community and operations.

Much of 2016, in fact, was focused on building ISACA’s future. By mid-year, ISACA had completed its acquisition of CMMI Institute, and begun the planning necessary to further extend and enhance ISACA’s visibility, influence and impact in swiftly developing economies, particularly in Asia, and with a focus on delivering solutions to enterprises. We launched ISACA’s Connecting Women Leaders in Technology program, which has already earned praise throughout the professional community, and have now started to explore opportunities to increase the program’s reach in the years ahead. The ISACA Customer Experience Center made its debut in the closing months of 2016. In just two short months, the Center managed to decrease the processing time for certification applications by nearly two-thirds, as well as the response time for all incoming email inquiries.

Established ISACA efforts also advanced in 2016. Our conferences saw marked growth overall. We held our first Africa CACS conference in Kenya in August, and two new cybersecurity conferences—CSX Asia Pacific and CSX Europe—made their debuts in November in Singapore and London, UK, respectively. ISACA also took stock of its core certifications, and completed the development efforts needed to transition all certification examinations from paper-based to computer-based testing in 2017.

While these efforts contribute to a strong operational future for ISACA, this is complemented by our community’s work in increasing ISACA’s global engagement with enterprises and governments throughout Europe, Asia, Africa, the Middle East and the United States. We expect to see many more strategic partnerships in 2017 because of this important work.

These are all exceptional strides forward, made possible through the shared commitment and support of ISACA members, volunteers and our professional staff. This Annual Report contains much more about the successes realized by ISACA throughout 2016. As ISACA moves forward into 2017 and the years beyond, it does so on a solid foundation of accomplishment and in pursuit of its purpose to help you realize the positive potential of technology.

Read More
Christos K. Dimitriadis, Ph.D., CISA, CISM, CRISC
Chair of ISACA’s Board of Directors
Matthew S. Loeb, CGEIT, CAE, FASAE
Director and CEO, ISACA

About ISACA

Established 1969
215
Chapters
130,000+
Members
188
Global association of members
in 188 countries
520,000+
Engaged Professionals

ISACA (isaca.org) advances global business leaders and technology professionals in assurance, information and cyber security, governance, risk and innovation. The association helps professionals around the globe realize the positive potential of technology. By offering industry-leading knowledge, standards, credentialing and education, ISACA enables professionals to apply technology in ways that instill confidence, address threats, drive innovation and create positive momentum for their organizations.

Established in 1969, ISACA is a global association with more than 130,000 members. For nearly 50 years, ISACA has helped enterprises develop strong IT workforces by inspiring and equipping individuals to be more capable, valuable and successful in the fast-changing world of information technology and business.

ISACA is characterized by its diversity. Members live and work in 188 countries, in a variety of professional IT-related positions, including IS auditor, consultant, educator, IS security professional, regulator, chief information officer and internal auditor, to name a few.

Through its Cybersecurity Nexus™ (CSX), ISACA helps organizations develop skilled cyber security workforces and enables individuals to grow and advance their cyber careers. The acquisition of CMMI Institute accelerated ISACA’s reach in fast-growing global economies and provided new solutions for enterprises. ISACA also recently launched its Connecting Women Leaders in Technology program to support women in the field.

3701 Algonquin Road, Suite 1010
Rolling Meadows, IL 60008 USA
PHONE: +1.847.253.1545
FAX: +1.847.253.1443
info@isaca.org
www.isaca.org
The IT Governance Institute (ITGI) was established in 1998 as a nonprofit, independent research entity that provides guidance for the global business community on issues related to the governance of enterprise technology.

PHONE: +1.847.660.5673

Our Purpose.

To help you realize the positive potential of technology

Our Promise.

To inspire confidence that enables innovation through technology

Our Values.

We are ONE
We are ACCOUNTABLE
We are DEDICATED
We are AUTHENTIC
We are INNOVATIVE
Learn More

Growth in 2016

340 Volunteer Speakers
3 new conferences around the world
520,000+
Engaged Professionals
(includes 130,000 members)
215 chapters in 188 countries
400+ women attended
Acquisition of CMMI

Listen to Christos Dimitriadis, Chair of ISACA’s Board of Directors, speak about 2016 highlights.

Board of Directors
Christos K. Dimitriadis
Ph.D., CISA, CISM, CRISC
Chair, Greece
Theresa Grafenstine
CISA, CGEIT, CRISC, CIA, CGAP, CGMA, CPA
Vice-Chair, USA
Robert Clyde
CISM
Director, USA
Leonard Ong
CISA, CISM, CRISC, CGEIT, CPP, CFE, PMP, CIPM, CIPT, CISSP ISSMP-ISSAP, CSSLP, CITBCM, GCIA, GCIH, GSNA, GCFA, COBIT 5
Implementer and Assessor
Director, Singapore
Andre Pitkowski
CGEIT, CRISC, OCTAVE, CRMA, ISO27kLA, ISO31kLA, COBIT 5 Foundations Trainer
Director, Brazil
Eddie Schwartz
CISA, CISM, CISSP-ISSEP, PMP
Director, Abu Dhabi
Jo Stewart-Rattray
CISA, CISM, CGEIT, CRISC, FACS CP
Director, Australia
Tichaona Zororo
CISA, CISM, CGEIT, CRISC, Certified
COBIT 5 Assessor, CIA, CRMA
Director, South Africa
Zubin Chagpar
CISA, CISM, PMP
Director, UK
R.V. Raghu
CISA, CRISC
Director, India
Jeff M. Spivey
CRISC, CPP
Director, USA
Robert E Stroud
CGEIT, CRISC
Past Chair, USA
Tony Hayes
CGEIT, AFCHSE, CHE, FACS, FCPA, FIIA
Past Chair, Australia
Greg Grocholski
CISA
Past Chair, Saudi Arabia
Matthew S. Loeb
CGEIT, FASAE, CAE
Director and CEO, USA

Membership

Connecting a global community of distinguished peers provides unparalleled opportunities for professional growth.

130,822
Total membership at year-end
188
Countries with ISACA members
84
Student groups
81.7%
2016 renewal rate

ISACA’s global professional community offers a remarkable breadth of expertise, experience, educational resources and networking opportunities to elevate technology professionals’ capabilities. ISACA members leverage their knowledge and skills gained every day, in the enterprises and communities they serve. ISACA also lays the foundation for workforce growth by connecting with student groups.

ISACA’s membership footprint, more than 130,000 strong, expanded in 2016, thanks to aggressive outreach to technology professionals around the globe. Even at a time when many organizations are seeing declines in membership, ISACA experienced 5 percent growth, and 81.7 percent retention.

According to ISACA’s 2016 Membership Survey, members indicated that – relative to other associations to which they belong – ISACA is the best value for membership, professional best practices, cyber security programs, professional research, networking opportunities, training and education, and local chapter experience. Additionally, ISACA is seen as well-respected, trustworthy, reliable and accessible, compared to other organizations, according to 2016 Market Monitor research.

The Member Get a Member campaign brought in 1,491 new members, a 15 percent year-over-year increase. Members from 185 ISACA chapters participated in the effort. ISACA also continues to cultivate the next wave of skilled technology professionals, upping its number of officially recognized student groups to 84.

Learn More

Chapters

Connecting locally with like-minded peers provides the ideal opportunity to build a stronger professional network.

Listen to Christos Dimitriadis speak about the strength of ISACA's global chapter partnerships.

3
New chapters formed in 2016:
1. Astana (Kazakhstan)
2. Casablanca (Morocco)
3. Windhoek (Namibia)
2,600+
Volunteer chapter leaders
215
ISACA chapters at close of 2016
93
Countries with ISACA chapters

At the end of 2016, ISACA’s reach included 215 local chapters in 93 countries. The chapters conduct regular meetings, sponsor educational seminars and workshops, provide career resources, engage in research projects, and provide additional support to members of ISACA’s professional community.

ISACA’s robust network of global chapters expanded with the formation of new chapters in Namibia, Morocco and Kazakhstan.

The year was highlighted by ISACA’s first Global Leadership Summit, with more than 400 chapter leaders from around the world gathering in Lisbon, Portugal. Over the three days, chapter leaders discussed a variety of new plans and initiatives to help energize ISACA’s professional community on a local level.

Chapters also worked to promote adoption of the Cybersecurity Fundamentals Career Starter program by students and faculty in academic institutions worldwide.

Learn More

Enterprise Business Development

Engaging directly with enterprises extends the opportunity to better serve industry professionals.

32
Cyber Security Channel Partners added around the world in 2016
Launched ISACA’s China Board of Advisors
12 Banks & Financial Institutions
to participate in China banking seminar

ISACA launched enterprise business development in 2016 to provide added value to the enterprises and professionals we serve.

Enterprise business development saw remarkable growth in 2016, which demonstrated the demand for ISACA solutions throughout the world.

Through this engagement, ISACA strengthened its reputation as a leading provider of resources and solutions in cyber security, IT governance and enterprise training programs. ISACA filed documentation for its first Wholly Foreign-Owned Enterprise (WFOE) in China, forged partnerships with Chinese universities, conducted CSX boot camps in India and Africa and engaged with new business partners throughout the world.

440 CBS Corporation team members
will have CSX Fundamentals delivered through new agreement

CMMI Institute

Advancing the state-of- the-practice helps organizations elevate their performance and capability.

100
number of countries in which CMMI capability maturity models are used
16%
global increase in the number of completed appraisals
2,237
organizations that earned a CMMI appraisal

ISACA acquired CMMI Institute in 2016 to raise enterprise-wide performance for existing and prospective members and customers. CMMI Institute is the home of the Capability Maturity Model Integration (CMMI®).

CMMI Institute enjoyed a record year in 2016, highlighted by a 16 percent global increase in completed appraisals. The Institute launched the CMMI Certified Professional, a new practitioner certification for individuals focused on operational excellence. Other major achievements included the release of A Guide to Scrum and CMMI, helping organizations benefit from agile implementations.

CMMI Institute represented ISACA’s first acquisition. The organizations worked to leverage each other’s strengths, and to deliver greater value to stakeholders, including launching the COBIT 5/CMMI Practices Pathway Tool. The tool is designed for organizations to use resources more effectively, measure performance more accurately and lower costs through stronger governance.

Learn More

Cybersecurity Nexus™ (CSX)

As organizations digitally transform, cyber security challenges demand the expansion of cyber awareness skills, training and risk management.

73%
Percentage of organizations with a high rate of unknown malware occurrences among those that do not prioritize security in the hardware life cycle, according to a CSX white paper on firmware security
2 new CSX Conferences
debuted in Europe and Asia-Pacific, building upon the existing CSX North America event
15 October
Launch date of CynjaSpace K-12 cyber education app that featured CSX Fundamentals knowledge

ISACA’s Cybersecurity Nexus™ (CSX) is a holistic resource providing cyber security guidance, career development, education and community for professionals and enterprises.

CSX tools, training opportunities and guidance developed in 2016 provided cyber security professionals and their enterprises with an array of new resources to meet their challenges.

ISACA unveiled the CSX Career Roadmap Tool, an interactive tool that allows users to learn about jobs for which they are qualified and define their developmental goals and aspirations. Based on user inputs, the tool outputs certification, educational and soft-skill learnings users can leverage to meet those goals. ISACA also released the CSX Threats & Controls tool, which allows users interactively to pinpoint specific threats and the corresponding controls needed to mitigate.

ISACA developed and delivered the CSX Practitioner Boot Camp program, debuted the CSX Lab Bonanza, piloted three CSX Specialist online training courses, and published research on topics such as firmware security, Amazon Echo device vulnerabilities and new adware hacker techniques. ISACA partnered with the founders of the National Collegiate Cyber Defense Competition to bring its capture-the-flag-style games to the 2016 CSX North America and Europe conferences.

Listen to Christos Dimitriadis speak about ISACA's approach to effective cyber security.

Learn More

Advocacy and Public Affairs

Global cooperation and influence are required to effectively address challenges and opportunities that impact technology professionals.

ISACA leverages its global perspective, diversity and collective knowledge to provide meaningful perspectives to policy makers whose decisions deeply impact the audit and assurance, governance, risk and information security professions.

ISACA worked to build its impact and influence through strategic global advocacy and public affairs outreach.

In 2016, those efforts were highlighted by working with the first U.S. Federal Chief Information Security Officer, (Ret.) Brigadier General Gregory Touhill, to advance bolstering the cyber security workforce and raise awareness about cyber security in the federal government. Other major efforts included collaborating with the United Kingdom Cabinet Office responsible for leading the National Cyber Security Strategy, as well as outreach with key policy-makers and ministries in Australia, China, India, Israel, Nigeria, Singapore and the European Union.

Given the convergence of risks and fading boundaries between physical, cyber and information security, ISACA began creating a Security Awareness American National Standard in conjunction with ASIS International and (ISC)2.

In a bid to combat the cyber security skills shortage, ISACA began creating a long-term road map for cyber security skills development in India with the Data Security Council of India (DSCI) and Sector Skills Council National Association of Software and Services Companies (SSC NASSCOM).

Volunteer Engagement

Nothing unleashes the power of a professional community like a global network of passionate and engaged volunteers.

ISACA’s ability to deliver its Purpose and Promise depends on the expertise and experience of volunteers across the globe who are willing to give their time and talents to a wide array of important volunteer opportunities.

ISACA is expanding its presence across its domains with a flexible, responsive engagement model for volunteer service. ISACA’s volunteer engagement now relies less on annual commitments and committee hierarchies, and more on the goal of matching volunteers’ expertise and interests with ISACA’s strategic priorities and local opportunities. Commitments may be from a few hours to a full year, and each opportunity has a specific directive with measurable outcomes.

ISACA volunteer efforts spanned a wide range of activities. In April, we convened more than 400 chapter leaders at the Global Leadership Summit, in Lisbon, Portugal, to chart the future of ISACA’s local engagement. Additional volunteer contributions included the translation of certification exams, COBIT® and ISACA® Journal materials into several languages, and the launch of ISACA’s Connecting Women Leaders in Technology program.

More than 1,200 people
served in 58 different types of volunteer opportunities
66 Volunteers
signed up for GaggleAMP, a new tool to share ISACA news through social media
340 Volunteer Speakers
who participated in ISACA’s CACS and CSX conferences
340 Volunteer Speakers
participated in ISACA’s CACS and CSX conferences
Learn More

Connecting Women Leaders in Technology

Women, underrepresented in technology leadership, have opportunities to develop skills and talents for career growth.

More than 400 women
attended Connecting Women Leaders in Technology networking events at ISACA conferences worldwide
20+
networking and educational opportunities provided across the globe

ISACA is committed to providing the training, networking and educational resources needed to develop a more robust pipeline of skilled technology professionals. Placing special emphasis on cultivating women leaders in technology is a natural fit for ISACA to enhance the global professional community and deliver on its Purpose and Promise.

The Connecting Women Leaders in Technology Program, launched in 2016, provides key educational and programming opportunities to advance and sustain women’s careers. ISACA’s CSX North America, CSX Europe and CSX Asia Pacific conferences included special networking opportunities for women.

ISACA created its Women’s Leadership Council and conducted proactive outreach to raise awareness about the need to bring more women into the field, and to encourage women to engage in their local communities as advocates of our new initiative. The program gained a digital footprint with the launch of sheleadsIT.org.

Learn More

Customer Experience Center

A focus on the customer journey leads to continuous improvements and provides an incredible experience.

Response time for email/web requests has gone from an average of 2 weeks to 3 days
First contact resolution up from 65% to 75%
Overall customer satisfaction up from 73% to 80%

ISACA understands the challenges its customers face in their roles and the value of their time. In 2016, ISACA launched initiatives designed to create more personalized service, reduce response times and better satisfy customer needs.

The Customer Experience Center (CEC) functions as the frontline for customer support and relations. Providing customers with an incredible experience is the first step toward continued trust in, and loyalty to the ISACA organization and brand. By centralizing inquiries regarding the major products and services ISACA offers, it is easy for customers to get the information they need.

In 2016, ISACA launched its Customer Experience Center (CEC) to centralize all customer-facing and back-office operational staff and activities into one effective team that provides incredible experiences and interactions.

Optimizing the customer journey involved shifting organizational processes, culture and mind-sets to redesign the experience and strategically transform engagement with the front line.

ISACA implemented multiple new technologies and deployed revamped processes to ensure customer requests are received and handled in the most efficient manner, and that all of ISACA’s customer interactions are recorded in one location.

ISACA now has tracking and reporting to better understand the customer experience and make the necessary changes to improve it.

Training & Education

Transformed learning is changing how education materials are shared and accessed.

Today’s professionals rely on face-to-face training and networking opportunities to increase knowledge, maintain certifications and remain current in skills. Additionally, professionals increasingly use technology to assist in everyday learning.

Providing world-class training and education is central to ISACA’s role. Whether through global conferences, training courses or an increasing array of flexible, online learning options, ISACA provides the opportunities technology professionals need to expand their knowledge, expertise and professional networks.

8
Conferences (3 new) held around the world
65
on-site training programs
68,215
Webinar registrations
1,012
record number of paid attendees at North America CACS
13
Training Week events (including 10 courses presented in cooperation with Deloitte LLP)

ISACA’s conferences reached professionals in new ways, and in new geographic regions, in 2016. The inaugural Africa CACS conference took place in Kenya, while the cyber security focused CSX conference expanded into Europe and Asia Pacific. And the introduction of wellness activities, a mobile app and the Connecting Women Leaders in Technology networking events represented additional new approaches for ISACA conferences.

The new touches did not detract from ISACA’s core focus areas; according to a post-conference survey, the North America CACS conference set a new high-satisfaction bar for ISACA conference attendance.

ISACA diversified its learning delivery options by implementing a new Learning Management System, launching virtual instructor-led training, and more live webinar and virtual conference programming events. New certification exam prep materials also were introduced. ISACA also launched 4 CPE On Demand recorded video bundles and the COBIT video series. In 2016, ISACA also provided 65 on-site training programs, up more than 15 percent over last year.

Learn More

Certification

With career opportunities expanding around the globe, business technology professionals need proven knowledge and world-class credentials.

The business technology landscape is evolving rapidly – creating new challenges and opportunities. ISACA’s globally recognized certifications allow professionals and their enterprises to successfully navigate this fluid landscape

129,462
34,050
21,023
7,176
certified professionals totals since inception

ISACA’s certifications expanded in reach and global recognition in 2016.

Chinese simplified-translated versions of the CISM, CGEIT and CRISC exams were offered for the first time.

6 consecutive years
the CISA and CISM certifications have been named finalists for Best Professional Certification Program in the SC Magazine Awards

The fast-growing CRISC certification surpassed the 20,000 milestone of certified professionals. CGEIT achieved 20 percent in market growth for the year, according to the Foote Partners IT Skills and Certifications Pay Index. The CSX Practitioner (CSXP) cyber security certification burst onto the scene by winning Best Professional Certification Program in the 2016 SC Magazine Awards.

All the while, a foundation was laid for future progress, as the final round of pencil-and-paper certification exams for CISA, CISM, CRISC and CGEIT took place in advance of the transition to Computer-Based Testing (CBT) in 2017.

132,681
Current Certifications
Learn More

Research

Digital disruption creates new challenges that can be addressed more effectively by expanding industry knowledge and insights.

2016 marked COBIT’s 20th anniversary
Created 8 White papers, 5 Audit Programs and 2 Books in 2016

Tapping into the collective knowledge and expertise of technology leaders worldwide, ISACA produces a wide array of resources and research materials that provide the global professional community with tools and strategies to navigate the fast-moving business landscape. COBIT® 5 represents the leading framework for the governance and management of enterprise IT.

2016 marked COBIT’s 20th anniversary. Highlights of the year-long celebration included a series of posters spotlighting elements of COBIT most useful to practitioners, an introduction to a COBIT video series and a global social media campaign.

ISACA’s white papers continued to provide timely and practical guidance on technology topics important to audit and assurance, governance, risk and information security professionals. In 2016, white papers explored topics of core interest to the ISACA global community, such as internal controls, advancements in mobile payment technology and application containerization. ISACA audit programs were redesigned to utilize a more practical and convenient format based on user feedback. Five new audit programs were created, including a cyber security audit program based on the NIST Cybersecurity Framework. The year’s research materials also included books about business benefit realization through COBIT 5 and how to get started implementing governance of enterprise IT (GEIT).

Learn More

Content

Technology professionals need expert content aligned with their specialized interests to become leaders in their enterprises.

ISACA develops periodicals and books that help professionals expand their bodies of knowledge and enhance their skills.

The visibility of the ISACA Journal spread as a go-to source for leading industry knowledge, drawing well over a million page views in 2016. The ISACA Journal’s editorial calendar also was aligned with an overarching, organization-wide calendar to drive additional content on areas of high impact to its readers. Other ISACA publications also thrived. The Nexus enewsletter doubled its subscriber list, reflecting a continued surge of interest in cyber security news among ISACA’s global community. COBIT Focus, highlighting case studies and practical guidance for COBIT users, transitioned from a quarterly to a monthly enewsletter, while the @ISACA enewsletter grew in circulation to more than 136,000.

In 2016, the ISACA Bookstore expanded its certification resources to include CISA, CISM, CRISC and CGEIT review manual ebooks, alleviating the high cost of shipping and improving the customer experience.

Learn More

Translations

Sharing knowledge across languages and cultures drives growth and success across the global technology community.

75 translated versions of COBIT 5-related publications
14
non-English languages to which ISACA items and publications were translated
300+
volunteers who helped translate and review ISACA items and publications

With members and certification holders residing across the globe, ISACA serves a richly diverse professional community, and is committed to providing access to educational resources in a wide array of languages.

Thanks to the diligence of hundreds of volunteers living in non-English speaking countries, ISACA in 2016 provided translations of 164 items and publications, including certification exams, study aids, ISACA Journal and COBIT Focus articles, and various research reports. Languages included Arabic, Chinese (simplified and traditional), French, German, Hebrew, Italian, Japanese, Korean, Lithuanian, Portuguese, Russian, Spanish and Turkish.

2016 Financials

Independent Auditor's Report

Board of Directors

ISACA, Inc. and Affiliates

Report on Financial Statements

We have audited the accompanying consolidated and combined financial statements of ISACA, Inc. and Affiliates (collectively, the “Organization”), which comprise the consolidated and combined statements of financial position as of 31 December 2016 and 2015, and the related consolidated and combined statements of activities and cash flows for the years then ended, and the related notes to the financial statements.

Management’s Responsibility for the Financial Statements

Management is responsible for the preparation and fair presentation of these consolidated and combined financial statements in accordance with accounting principles generally accepted in the United States of America; this includes the design, implementation, and maintenance of internal control relevant to the preparation and fair presentation of consolidated and combined financial statements that are free from material misstatement, whether due to fraud or error.

Auditor’s Responsibility

Our responsibility is to express an opinion on these consolidated and combined financial statements based on our audits. We conducted our audits in accordance with auditing standards generally accepted in the United States of America. Those standards require that we plan and perform the audit to obtain reasonable assurance about whether the consolidated and combined financial statements are free from material misstatement.

An audit involves performing procedures to obtain audit evidence about the amounts and disclosures in the consolidated and combined financial statements. The procedures selected depend on the auditor's judgment, including the assessment of the risks of material misstatement of the consolidated and combined financial statements, whether due to fraud or error. In making those risk assessments, the auditor considers internal control relevant to the entity's preparation and fair presentation of the consolidated and combined financial statements in order to design audit procedures that are appropriate in the circumstances, but not for the purpose of expressing an opinion on the effectiveness of the entity's internal control. Accordingly, we express no such opinion. An audit also includes evaluating the appropriateness of accounting policies used and the reasonableness of significant accounting estimates made by management, as well as evaluating the overall presentation of the consolidated and combined financial statements.

We believe that the audit evidence we have obtained is sufficient and appropriate to provide a basis for our audit opinion.

Opinion

In our opinion, the consolidated and combined financial statements referred to above present fairly, in all material respects, the financial position of ISACA, Inc. and Affiliates as of 31 December 2016 and 2015, and the changes in their net assets and their cash flows for the years then ended in accordance with accounting principles generally accepted in the United States of America.

View Full Financial Report
Chicago, Illinois
19 April 2017
2016 Donors. Members
Platinum
Isnaeni Achdiat
Marios Damianides
John Lainhart
Lynn Lawton
Robert A. Micek
Leonard Ong
Lily Shue
Katie Stewart
Gold
Markus Heinen
Jeffrey Patubo
Martin Schlaeppi
Paul Toye
Kenneth Vander Wal
Daniel Wiechec
Silver
Abdul Hamid Abdullah
Bandar Abdulrahman Alkhaleel
David Applebaum
Cheryl Barker
Garry James Barnes
Damien Bertero
Richard Chia
Rajeev Ramchand Chugh
Adnan Khaliq Chughtai
Helene Demoulin
Anthony DeVito
Koke Diarra
Kieran Doorley
Gert Thomas Du Preez
Zea Du Preez
Concepcion Fermin
Urs Fischer
Ashok Ghosh
Hubert Darnell Glover
Ron Hale
Aris Budiman Hartono
Johan Hermans
Shankar Iyer
Allan Jagath Monesh Jinadasa
Guy Jordan
Vijay Karayi
Vijaykumar Kasaram
Iftikhar Fazlehussain Kathawala
Tomohide Kawawaki
Tina Kay
Rabia Khanfir
Raymond Anthony Krygsman
Emiko Kurihara
Malorie Lanthier
Lori Joan Lefebvre
Arturo Jose Lopez
Bryan McAtee
Robert Mcfarland
Yasushi Miyamoto
Thomas Mockbee
Willem Ewoud Modderman
Charlie Moraza
Paul Neff
Francis Nemia
Young Seok Ock
Sandra Parras
Roman Pendzey
Hugh Henning Penri-Williams
Tajjud-deen Phillipps
Andre Pitkowski
Swami Ramachandran
Daniel Fernando Ramos
David George Reinhold
Jack Riegel
Charles Kendall Roberts
Rafael Roldos
Vijayakumar S.R.
Diana Salazar
Mugdha Satish Satarkar
Jose Saucedo
Christodoulos Seferis
Edward Joseph Slusarski
Arkady Sokolov
Mark Stanley
Dirk Steuperaert
Hamilton Michael Stewart
Jo Stewart-Rattray
Mohan Kumar Sundaram
Lennard-Peter Abdun-Nur Sutherland
Ichiro Tabata
Alexandru Tasca
Mladen Tercelj
Karen Sands Tinucci
Lisa Toro
Martin Urban
Vatsaraman Venkatakrishnan
Prafull Verma
Ming Wu
Mahmoud Mohamed Yousef
Carlos Zamora
Donors
Paul Rudolph Aaron
Zoran Abraham
Shawn Acker
Catherine Adler Marks
Friday Obukohwo Agillo
Asaf Zaki Ahmad
Imran Ahmed
Azubike Edward Ahubelem
Ignacio Alamillo
Greg Albinowski
Faisal Al-Homodi
Shirley Anne Allen
Ali Fathi Al-Shaikh Ahmed
Sulaiman Abdalla Alzarooni
Brian David Andersen
Ngozi Nwamaka Anigbogu-Nwankwo
Henri Arendsen
Robert Arnold
Luis Adrián Arroyo
Sam Arthur
Toshihide Atsumi
Albert Aubry
Jackson Audi
Anna Mmanoko Badimo
Christopher Bagot
Ajay Bahri
David Balodis
Enrique Barroso
Alvin Bedgood
Luis Sean Beltran Dooly
Douglas Bencomo
Rob Benjamin
Mustapha Benmahbous
Paul Berkebile
Gayle Berkeley
Glauco Bertocchi
Timothy Bever
Ramesh Bhat
Milind Madhav Bhide
Stuart Birkett
Sixten Björklund
Jody Edward Boelkes
Robert Boere
Khaled Bohsali
Benjamin Boi-Doku
Diego Angelo Angelo Bolatti
Richard Bonello
Lyne Bouchard
Edwin Bowden
David Brachio
Ian Bradbrook
Diana Bradshaw Hester
Brenda Kay Brigman
Alain Brisy
Douglas Brown
Richard Brunner
Shamaeen Marie Burnett
Phil Joseph Patrick Burns
Theresa Malone Burrell
Mark Alexander Butzke
Eric Caldwell
Gary Campbell
Cynthia Cannaday
Lawrence Capuder
Paul Casey
Walter Matthew Cekala
Victor Sze-Tin Chan
Nik Charlson
Steve Chazan
Sarat Chandrakumar Chegu
Wei Chen
Melanie Cheong
James Cheyne
Sandra Choyce
Art Christofferson
Mark Cioni
James Collins
Kevin Gerald Conlon
Mark Connelly
Jose Antonio Costa
Brian Coutanche
Georges Crampette
Lilliam Cruz
Szabolcs Csontos
Gordon Curtis
Bernard Czaja
John Joseph Czaplewski
Kishor Jagannath Dandeker
Sabyasachi Dash
William Davidson
Adriana Debatin
Donna Degenhart
Umberto DeLucilla
John Bernard Dempsey
James Wayne DeVaul
Patricia Giovanna Diaz Tori
Valeria Dineva
Larry Keith Dinsmore
Michael Dorn
Dhvani Doshi
Kevin Dunphy
Salih Ali Durul
Newman Hugo Emeanaa
David Empey
Koji Enjo
Rob Epskamp
Mary Erlanger
Devinabye Essoo
John Kenji Eto
Tomoyasu Eto
Agu Ets
Stephen Craig Evans
Rebecca Evans
Dieter Fabritius
J. Ruben Fajardo
Gregory Oluremilekun Falowo
Ahmad Mohammad Faqieh
Siawyan Faun
Tao Feng
Alexander Ferguson
Chi Kwong Fong
Janet Fonseca
Andrew Forster
Joji Fortin
Gregory Fouquet
Dan French
John Frisken
Lorraine Frost
Takenao Fujino
Yoshio Fukasawa
Hirofumi Fukura
Arief Gaffar
Andre Gagnon
Ramses Gallego
Fredrik Galtung
Luis Enrique Garcia de Paredes
Eduardo Garcia Martinez
Guangdong Ge
John Generelli
Francesco Gerbino
Niklas Gerdin
William Gessner
Evangelia Gialamboukis
Khristian Gibson
Anthony John Gilli
Paul Danlami Gimsay
Gustavo Enrique Gomez
Fernando Gomez Alfonso
David Goodwin
Ajit Vasant Gore
Thomas Goss
Lawrence Wayne Gourley
Kumararaj Govindaswamy
Roger Scott Greenwell
Gerd Karl Grimberger
Stefan Gross
Heather Dawn Mitchell Groves
Marisol Guasca Barragan
Peter Guentert
Catherine Addabbo Guice
Manuel Guillen Garzaro
Jose Pascual Gumbau Mezquita
Tod Gene Gunther
Michael Robert Guthrie
Walid Halik
Husni Loutfi Hammoud
Jason Harrell
James Griffith Harries
Alun Harris
Michael Hartigan
Glenn-Edward Willem Harwood
Bassam Farid Hassan
Prachit Hawat
Patricia Henderson
Kenneth Henry
Brian Herr
Jose Francisco Herrera
Stephen Martin Hinton
Igor Hitrec
Donald Hoffman
Felipe Andres Hott
Michael John Hughes
Janette Shaheen Hussain
Ilka Ilieva
Patrick Intiso
Jose Isebia
Jun Iwata
Alirio Fernando Izquierdo
Caryn Jackson
John Jarvis
Hazel Dale Jennings
Michael Jimenez
Nelson Rodolfo Jimenez
Charles Jimerson
Glenn Johnson
Scott Johnson
Luciano Johnson
Geogy George Joseph
Rohini Joshi
Carlos Justiniano
Ghassan Kabbara
Masatoshi Kajimoto
Suzanne Kampa
Jacqueline Kapres
Parikshat Kapur
Spiros Karasavvidis
Yasushi Kasahara
Eldon Kativu
Ravi Shankar Balakrishnan Kavaseri
Nada Khatib
William Frederick King
Yoshihiro Kitsutaka
Robert Thomas Klein
Terje Klepp
Petr Knize
Ram Prasad Kodukulla
Praseth Kong
Ivo Koppelmaa
Funda Korkut
Panagiotis Korologos
Denis Krauss
Unni Krishnan
Shinji Kumada
Machiko Kumagai
Chi Choi Kuok
Mathew Kuriakose
Russell Lamosek
Kimberley Laris
Tak Wa Lau
Mark Paul Lavoie
Colm Noel Lawlor
Jacinthia Lawson
Gil-Chin Lee
Peter Leitch
Siew Kheen Leng
Leyon Li
Katherine Lidgard
Tamara Lilly
Albert Lima
Ku-Chuan Lin
Marc Sheldon Loewenthal
Terrane Lom
Randy Glenn Lutic-Hotta
Christina MacGregor
Frederick George Mackaden
Bob Madderra
George Kenneth Madzy
Nilanjan Majumdar
Michael Gregory Malcolm
Eric John Malmgren
Veronica Mancho
Avinash Sureshchandra Manorkar
Charles-Robert Manterfield
Peter Manzo
Steven Marco
Christopher Marshall Martin
Garrett Edward Martin
Sergey Martinov
Alfonso Mateluna Concha
Eiichi Matsubara
Adrian Mayers
John Mayor
Marguerite McCarthy
Vickie LaVern McCray
Joseph Mcginley
Rudy Meert
Ralf Mekelberger
Jorge Merida Munoz
Andrea Merry
Michael Meyer
Jean Milzi
Thomas Josef Moellers
Holly Moldaver
William Montague
Elizabeth Moorhead
Joel Moreno
Rick Moreno
Michelle Ann Morris
Chris Moschovitis
Adel Ilyas Moubarak
Mario Fernando Mourino Diaz
Peter Wambua Mumo
Farit Muzipov
Sudeep Nair
Somashekar Nalla
Vijaya Kumar Navoor
James Willis Neill
Renee Nelson
Theodora Nerodea
Gertjan Nickolson
Stephen Norkunas
Stephen Nthenge
Hazel Nyathi
Ben Nyongesa
Andrew Odendaal
Adedoyin Adebola Odunfa
Andrew Okada
Omobolaji Gani Oladipo
Albert Olafsson
Jesus Esahu Olea Mendez
Nosa Omoma
Marcelino Eiji Oshima
Elena Ouklonskaia
Sujeewa Umendra Padmasiri
Trudy Anne Page
Pramod Shashikant Paranjape
Hugh Parkes
Sean Pascoe
Keyur Patel
Paul Edward Patterson
Vincent Pearce
Jose Maria Pedro
Vicente Peirats
Fei Peng
Robert Walter Peterson
Carl Phillips
Kirsten Pielstrom
Teeva Rajen Pillay Valoo
Joseph Ponnoly
Sorin Alexandru Popa
Mihaela Popescu
Roberto Porras Leon
Marlene Portalatin
Andreas Postl
Sundaram Prabhu
William Prado
Dicky Indra Prasetia
Paul Praveen
John Premanath
Keith Douglas Price
Marin Prisacaru
John William Pritchard
Wagner Roberto Pugliese
Neel Pujara
Robert John Puppa
Rajesh Kantesh Purohit
Kishor Rabi
Jeffrey Clayton Rademaker
R.V. Raghu
Basuki Rahmad
Susheel Dinkar Raje
Srinivasan Raman
Rafael Ricardo Ramirez
Francisco Vicente Ramon-Mira
N. Ramu
Sree Krishna Rao
Abdulla Rasheed
M Ravi Narayan Reddy
Salomon Rico
Kees Riemens
Kim Ries
Cristina Rivero Ortiz
Charles Kendall Roberts
Kathy Lee Robertson
Marie Ghislaine Robinson
Oscar Robledo
Luis Fernando Rodriguez Munoz
Zulma Rodriquez Costa
Facundo Rojo Gil
William Rollinger
Kathysue Rose
Patricia Aneta Rowe-Seale
Patrick Rozario
Gretchen Ruck
Daniel Rueckert
Cristina Ruiz
Diana Salazar
Milton Eric Sambolin
Merve Sarac
Anthony Saranchak
Gautam Sarnaik
Timur Sarymsakov
Jagadish Sathaye
John Robert Savageau
Aditya Saxena
Martin Schlaeppi
Joshua James Schmidt
Mario Schneider
Ekkehard Scholz
Volker Schoratti
Robert Schwind
Tony Scott
Paul Scott
Daniel Seider
Lakshminarayanan Ramaswamy Sekharipuram
Jorge Serrano Rodriguez
Robert Young Shaw
Aravinda Shenoy
Makoto Shibata
Peter Shillito
Takashi Shimada
Brent Shirley
Takashi Shitamichi
Ryan Showley
Pablo Silberfich
Christian Simatos
Andrea Caroline Simmons
Anand Singh
Thomas Sinnott
Richard John Sittema
Mahadevan Sivaramakrishnan
Marek Skalický
Angus John Smith
Randall Smith
Carolyn Smith
Peter Smithson
Folarin Sogeke
Ivan Stanchin
Jonathan Mark Staniforth
Achim Michael Stein
Carnella Stephens
Stephen Stewart
Richard George Stohner
Charles Stuart
Vaclav Stverka
Luis Suarez
Vilvanathan Subramanian
Christian Sullivan
Stig Jarle Sunde
Charles Surendranath
Hartono Ari Susetyo
Leonard Sutton
Chandra Sekaran Swaminathan
Ganesh Swaminathan
Toshimitsu Tachibana
Daniel Talbot
Kim Hwee Tan
Richard Tannhauser
Yoshito Tashiro
James Taylor
Peter Francis Taylor
Teruo Tazaki
Jeremy Tedes
Hiroshi Terai
David Terpening
Ajit Thankappan
Tina Thompson
Horst Tisson
Jacqueline Todd
Isaac Toee
Esa Toivonen
Scott Tompkins
Javier Torner
Thomas Gerard Totton
Mark Lester Townsend
Paul Toye
Daniella Traino
Rod Troutman
Eduardo Ng Tsang
Giancarlo Turati
Martin Unterberger
Martin Urban
Luis Uria
Fumio Utsumi
Michiel Van Hulsteijn
Bartholomeus van Lodensteijn
Gary Van Prooyen
Loree Vandenberg
Udaya Vangipurapu
Enrique Vasquez Granados
Stanley Velando
Kumanan Chakravarthy Vetrivel
Sylvain Viau
Ronald Allan Viera
Jason Edward James Viola
Jon Voiculescu
James Muresia Wafula
Christopher David Wagner
Walter Walker
Xiangpu Wang
Jian Qiang Wang
Millie Shelton Washburne
Shinichi Watanabe
Andrew Watson
Richard Lawrence Way
Ian Lawrence Webster
Esper Boutros Wehbe
Marcellinus Wendra
Colin Wheatley
Robert Philip White
Dan Wilder
Tammy Lynn Wollersheim
Trevor Andre Wood
Shou-Hsin Mark Wu
Takumi Yabuki
Kenichi Yamashita
Li-Jen Lyaw Yang
Reza Yarifard
Jason Chee-Mun Yuen
Gustavo Mariath Zeidan
Hong Amberina Zhang
Chingis Zhumanov
Douglas Ziegenfuss
Roman Zillek
2016 Donors. Chapters
Platinum
Chicago Chapter
Los Angeles Chapter
New York Metropolitan Chapter
Toronto Chapter
Gold
Birmingham Chapter
Detroit Chapter
Greater Kansas City Chapter
New Jersey Chapter
Sacramento Chapter
South Africa Chapter
South Carolina Midlands Chapter
Winnipeg Chapter
Silver
Greater Hartford Chapter
Middle Tennessee Chapter
Puget Sound Chapter
Springfield Chapter
Western Michigan Chapter
Donors
Ankara Chapter
Coimbatore Chapter
Edmonton Chapter
Hudson Valley Chapter
Minnesota Chapter
Mount Rainier Chapter
San Salvador Chapter