Certified Information Systems Auditor (CISA) is a globally recognized certification in the field of audit, control and security of information systems. Being CISA-certified showcases one’s audit experience, skills and knowledge, and demonstrates he/she is capable to manage vulnerabilities, ensure compliance and institute controls within the enterprise. Vacancies in the areas of IT security management, IT audit or IT risk management often ask for a CISA certification. The certification is extremely challenging and is associated with a high failure rate. CISA is awarded by the Information Systems Audit and Control Association.