CISA Preparation Course

Gain the knowledge and hands-on preparation required to audit, control and assess information systems, covering the 5 CISA® domains and integrating current topics (cloud, AI, blockchain, SOAR and quantum cryptography), with full focus on the CISA® exam.

Enroll
Companies: request a proposal

Quick Access:  Introduction· Why this course exists· What this course enables you to do· Frameworks and models· Value· Objectives· Target audience· Prerequisites· Programme· Exam & Certification· Other information· Benefits· Logistics· Enrolment

Upcoming dates

Confirmed dates.
Live, real-time training. Interaction with the instructor and the group.

20-Jan-2026
Live Online • next edition
25-May-2026
Live Online • base price
Duration: 5 days / 40h
Language: available in PT or ENG
Training: Review + hands-on exercises per domain
Exam: 4h (150 questions) • not included
PROFESSIONAL level – Practical application of methods in a professional context. Practical competence

Why this course exists

To raise IS/IT audit maturity and, with a structured approach, build exam-ready performance for CISA.

Many organisations rely on critical digital systems and services, yet fail to ensure consistent audits and robust evidence on control, governance, lifecycle and protection of information assets.
CISA® exists to standardise professional practice, language and method — and this course prepares you to audit modern systems, including the impact of cloud, AI and other emerging technologies, while keeping full focus on the exam’s 5 domains.

What this course enables you to do

Audit

Conduct information systems audits aligned with recognised standards and best practices.

Assess governance

Assess IT governance and management, policies, control and monitoring.

Cover the lifecycle

Audit acquisition/development, testing, implementation, maintenance and system retirement.

Protect assets

Assess controls for confidentiality, integrity and availability, and support audits of modern environments.

Frameworks, models and structures covered throughout the course

CISA domains and professional practice
IS audit process
IT governance and management
Acquisition, development and implementation
Operations and business resilience
Protection of information assets (CIA)
Emerging technologies in auditing (cloud, AI, blockchain, SOAR, quantum cryptography)

Value for the organisation

  • Greater consistency and credibility in IS/IT auditing (recognised language and method).
  • Strengthened governance, control and monitoring in critical digital environments.
  • Practical capability to audit modern systems (incl. cloud and AI), reducing ambiguity.
  • Better preparation for third-party audits and assurance requirements, across clients and suppliers.

Introduction

The CISA® — Information Systems Auditing training is designed for auditors and information security professionals who intend to sit the Certified Information Systems Auditor (CISA) exam. The curriculum covers the exam’s five key domains: Audit Process, IT Governance and Management, Acquisition/Development/Implementation, Operations and Business Resilience, and Protection of Information Assets.

Prepare for one of the most valued certifications in IS/IT auditing. This course is designed to audit, control and assess information systems based on ISACA® best practices, while also integrating emerging technologies that impact today’s audits: cloud, AI, blockchain, SOAR and topics such as quantum cryptography. Everything is oriented to turn knowledge into exam performance.

Resources, topics, discussion, domain-based exercises and a final mock exam.

This Training Plan and all associated documents are protected by Copyright and registered as a literary work with IGAC.

General objectives

By the end of the course, participants should be able to:

  • Conduct IS audits aligned with internationally recognised standards and best practices.
  • Assess IT governance and management, policies, control and monitoring.
  • Audit the systems lifecycle: development/acquisition, testing, implementation, maintenance and retirement.
  • Assess IS operations and resilience, continuity and recovery.
  • Protect information assets (confidentiality, integrity, availability).
  • Keep up with new practices and technologies to audit modern critical systems.
  • Reach the CISA exam prepared for the updated domains.

Target audience

  • IS/IT auditors.
  • IS/IT consultants.
  • IS/IT Audit Managers.
  • Security professionals.
  • Non-IT auditors (from other areas) who need to strengthen their skills in IS auditing.
  • Candidates for the CISA® exam.

Prerequisites

To attend this course, it is recommended that participants:

  • Have foundational knowledge of the CISA domains and a good command of English (exam terminology and materials).
  • If in doubt about readiness level, contact Behaviour to align expectations and define a study plan.

Programme

Domain-based review (CISA)
  1. Introduction and Course Plan
  2. The Information Systems Audit Process
  3. IT Governance and Management
  4. Acquisition, Development and Implementation of Information Systems
  5. Information Systems Operations and Business Resilience
  6. Protection of Information Assets
Exam preparation (simulation)
  • Exam preparation: Mock Exam
  • Exam-style questions, with marking and explanation of the reasoning

Exam(s) and Certification

“CISA®” exam
The CRISC certification exam is not included in the course price. Book the exam directly on the ISACA® website.
Format: multiple choice.
Number of questions: 150 questions.
Duration: 4 hours.
Passing score: 450 points (scale 200 to 800).
Certification (requirements)
To achieve certification, candidates must pass the CISA® exam and meet the remaining requirements defined by ISACA, including the formal certification application process.

Other information

General information
  • Training delivered in Portuguese or English.
  • Online training materials with online access, in English, with domain-based exercises, according to the agreed conditions.
  • Mock exam on the last day of training.
  • Behaviour digital Certificate of Attendance with 24 CPD/CPE credits.
Instructor(s)
Learn with senior consultants and auditors with hands-on experience in implementation, audit and training, and certifications such as CISA, CISM, CRISC, CGEIT, COBIT, CISSP, Project Management, ISO 27001/27005/22301, among others. Some specialists participate in technical committees that evolve international standards and frameworks.

Benefits

See benefits
  • Standardisation of IS audit language and practice, reducing ambiguity and increasing consistency in assessment and reporting.
  • Strengthened professional and organisational credibility with clients, suppliers, external audits and governance functions.
  • Practical capability to audit information systems in current contexts, including cloud environments, AI-based solutions and modern digital architectures.
  • Solid preparation to apply the CISA domains in real audit contexts, going beyond theory and exam memorisation.

Logistics

Useful information
  • Live Online (synchronous time): 9:30–17:30 (Lisbon, GMT 0), with lunch break and short breaks.
  • In-person (synchronous time): 9:30–17:30 (Lisbon, GMT 0), with lunch break and short breaks.
  • Duration: 21h of live sessions + 3h of guided self-study (exercises and content consolidation).
  • Requirements: computer with stable internet, browser, PDF reader, audio/video.
Hotels in Lisbon
Find out where to stay in Lisbon, near Behaviour, for in-person training.

Enrolment

Complete the form to enrol in your preferred edition. Check the upcoming dates.


Nome pessoa contacto

Request more information

If you want help positioning this course in your context (professional or organisational), contact us and we will recommend the most appropriate pathway.
Request information

Companies: request a proposal

For team enrolments, we provide volume conditions and a proposal tailored to organisational needs.
Request a proposal