Meet the Challenges of Today’s Modern Enterprise

CISA

The Certified Information Systems Auditor^® certification is world-renowned as the standard of achievement for those who audit, control, monitor and assess an organization’s information technology and business systems. The recent quarterly IT Skills and Certifications Pay Index (ITSCPI) from Foote Partners ranked CISA among the most sought-after and highest-paying IT certifications. This certification is a must have for mid to advanced-career IT professionals looking for leverage in career growth.

US$149,000+ average annual salary | 151,000+ professionals hold CISA

AAIA

ISACA's Advanced in AI Audit™ (AAIA™)certification empowers IT professionals to confidently navigate the complexities of AI, equipping them with the skills to assess risks, identify opportunities, and ensure compliance while safeguarding organizational integrity. Built on ISACA’s trusted expertise in IT Audit and the rigorous standards behind renowned credentials like CISA, CIA, and CPA, this certification validates expertise in conducting AI-focused audits, addressing AI integration challenges, and enhancing audit processes through AI-driven insights.

CISM

ISACA’s Certified Information Security Manager^® certification indicates expertise in information security governance, program development and management, incident management and risk management. If you are a mid to advanced-career IT professional aspiring to senior management roles in IT security and control, CISM can get you the visibility you need.

US$149,000+ average annual salary | 48,000+ professionals hold CISM

AAISM

ISACA's Advanced in AI Security Management™ (AAISM™) certification validates the experience and knowledge of CISM and CISSP holders regarding AI specific security issues, while leveraging AI's transformative opportunities internally for growth and innovation. This credential builds upon existing security management best practices and focuses on the associated threat landscape to best manage the risk profile and effectively leverage AI into security operations.

CRISC

Our Certified in Risk and Information Systems Control™ certification indicates expertise in identifying and managing enterprise IT risk and implementing and maintaining information systems controls. You’ll gain instant recognition and credibility with CRISC and boost your career. If you are a mid to advanced-career IT professional with a focus on IT and cyber risk and control, CRISC can get you the leverage you need to grow in your career.

US$151,000 average annual salary | 30,000+ professionals hold CRISC

AAIR

ISACA’s Advanced in AI Risk™ (AAIR™) certification expands and applies the existing expertise of IT risk management professionals, equipping you to confidently assess and manage AI risk across the enterprise, navigate evolving AI risk and regulation, and move the enterprise forward with clarity, control and confidence. With practical governance techniques and continuous professional growth, you can turn AI risk into a leadership capability.

CGEIT

ISACA's Certified in the Governance of Enterprise IT^® is unique and framework agnostic. It is the only IT governance certification that can give you the mindset to assess, design, implement and manage enterprise IT governance systems aligned with overall business goals. You’ll gain visibility at the executive level with CGEIT.

US$141,000 average annual salary | 8,000+ professionals hold CGEIT

CDPSE

Modern privacy laws and regulations require organizations to implement privacy by design and by default into IT systems, networks, and applications. To do so, privacy professionals must partner with software developers, system and network engineers, application and database administrators, and project managers to build data privacy and protection measures into new and existing technology environments.

US$150,000 average annual salary | 16,000+ professionals hold CDPSE

CCOA

ISACA’s Certified Cybersecurity Operations Analyst™ (CCOA™) certification focuses on the technical skills to evaluate threats, identify vulnerabilities, and recommend countermeasures to prevent cyber incidents. As emerging technologies like automated systems using AI evolve, the role of the cyber analyst will only become more critical in protecting digital ecosystems. Analysts specialize in understanding the what, where and how behind cybersecurity incidents. By identifying patterns, anomalies and indicators of compromise, you become the eyes and ears of your organization’s defense.

CMMC Certified Professional (CCP)

The CMMC Certified Professional (CCP) is the foundational certification for professionals entering the Cybersecurity Maturity Model Certification (CMMC) ecosystem. CCP holders understand CMMC requirements, governance, and assessment procedures, enabling them to support organizations preparing for CMMC assessments and participate on certified assessment teams.

CMMC Certified Assessor (CCA)

The CMMC Certified Assessor (CCA) certification prepares experienced cybersecurity and compliance professionals to conduct formal CMMC Level 2 assessments. CCAs evaluate security practices, review evidence and documentation, and determine whether organizations handling controlled unclassified information meet required CMMC cybersecurity standards.

Lead CMMC Certified Assessor (LCCA)

The Lead CMMC Certified Assessor (LCCA) credential represents the highest level of expertise in the CMMC assessment pathway. LCCAs lead assessment teams, oversee evaluation activities, and make final compliance determinations for organizations undergoing CMMC Level 2 assessments.

Yes, You Do Need a Badge

ISACA’s digital badges are managed by Acclaim (Credly)—an enterprise-class badging platform, providing security and protection to your credentials. Once you achieve certification status, you can display your abilities securely online, share your verifiable achievement with peers and prospective employers, and export them for display on other platforms and social media.