CISA Exam Preparation Course

CISA Exam Preparation Course prepares professionals for the CISA® certification exam through a structured review of information systems auditing, control and assurance topics. The training consolidates audit concepts, methodologies and practices, based on Behaviour®’s own content and aligned with the domains publicly indicated by the certification body.

CISA® and ISACA® are registered trademarks of ISACA®. This training is developed and delivered by Behaviour® with its own content, as an independent preparation course for the CISA® exam.

Register
Companies: request a proposal

Quick Access:  Introduction· Why this course exists· What this course enables· Topics and areas· Value· Objectives· Target audience· Prerequisites· Programme· Exam & Certification· Other information· Benefits· Logistics· FAQs· Registration

Upcoming dates

Confirmed dates.
Synchronous, live training. Interaction with the trainer and the group.

15 June 2026
Live Online • next edition
7 September 2026
Live Online • base price
Duration: 5 days / 40h
Language: available in Portuguese or English
Training: review + original exercises by thematic area
Certification exam: 4h (150 questions) • not included
PROFESSIONAL LEVEL — practical application of methods in a professional context

Why this course exists

To develop IS/IT audit skills with method, a common language and execution capability, while also supporting preparation for the certification exam.

Many organisations depend on critical digital systems and services but fail to ensure consistent audits and robust evidence regarding control, governance, lifecycle and protection of information assets.

The CISA® exam is associated with information systems audit competencies. The course helps participants consolidate knowledge and practice in the main areas assessed, through a structured preparation approach.

What this course enables you to do

Audit

Conduct information systems audits aligned with criteria, evidence and recognised practices.

Assess governance

Assess IT governance and management, policies, controls, responsibilities and monitoring mechanisms.

Cover the lifecycle

Audit acquisition, development, testing, implementation, maintenance and decommissioning of systems.

Protect assets

Assess controls for confidentiality, integrity and availability and support audits in current environments.

Topics and competence areas addressed throughout the course

Exam areas publicly indicated by the certification body
IS audit process
Governance and management of IT
Acquisition, development and implementation
Operations and business resilience
Protection of information assets (CIA)
Emerging technologies in audit (cloud, AI, blockchain, SOAR, quantum cryptography)

Value for the organisation

  • Greater consistency and credibility in IS/IT auditing through language, method and evidence.
  • Stronger governance, control and monitoring in critical digital environments.
  • Practical capability to audit current systems, including cloud environments and AI-based solutions, reducing ambiguity.
  • Better preparation for third-party audits and assurance requirements from clients and suppliers.

Introduction

The CISA Exam Preparation Course is professional training in information systems auditing, intended for auditors and information security professionals who wish to prepare for the CISA® certification exam.

Develop a structured view of information systems auditing, oriented towards audit, control, assurance, risk assessment and professional reporting, while supporting preparation for the CISA® exam. The course strengthens the ability to audit, control and assess information systems, while also integrating current topics that impact modern audits, including cloud, artificial intelligence, blockchain, SOAR and quantum cryptography.

The CISA Exam Preparation Course addresses the main areas assessed in the exam, including Information Systems Auditing Process, Governance and Management of IT, Information Systems Acquisition, Development and Implementation, Information Systems Operations and Business Resilience and Protection of Information Assets. Consolidation is carried out through guided discussion, original exercises by thematic area and Behaviour® simulation, aimed at transforming knowledge into exam performance.

The training includes proprietary support resources, guided discussion, exercises by thematic area and a final exam simulation.

This Training Plan and the associated documents are Behaviour®’s own content, protected by Copyright and registered as a literary work with IGAC.

General Objectives

At the end of this course, participants will be able to:

  • Conduct IS audits aligned with criteria, evidence and internationally recognised practices.
  • Assess IT governance and management, policies, control and monitoring.
  • Audit the systems lifecycle: development/acquisition, testing, implementation, maintenance and decommissioning.
  • Assess IS operations, resilience, continuity and recovery.
  • Assess the protection of information assets, considering confidentiality, integrity and availability.
  • Follow new practices and technologies to audit modern critical systems.
  • Reach the exam with structured preparation in the areas publicly indicated by the certification body.

Target Audience

  • IS/IT auditors.
  • IS/IT consultants.
  • IS/IT audit managers.
  • Security professionals.
  • Non-IT auditors who need to strengthen their skills in IS auditing.
  • Candidates for the certification exam.

Prerequisites

To attend this course, participants are recommended to:

  • Have fundamental knowledge of information systems auditing, control, risk management and the areas assessed in the exam, as well as understanding of English to follow the associated terminology.
  • Other specific requirements may apply, where relevant, depending on the quotation or proposal presented (please consult the proposal).

Programme

Review by competence areas
  1. Introduction and Course Plan
  2. The Information Systems Auditing Process
  3. Governance and Management of IT
  4. Information Systems Acquisition, Development and Implementation
  5. Information Systems Operations and Business Resilience
  6. Protection of Information Assets
Exam Preparation (simulation)
  • Exam preparation: Behaviour® simulation
  • Original practical questions, with correction and explanation of reasoning

Exam(s) and Certification

Certification exam

The certification exam is not included in the course price. Registration, scheduling, delivery, eligibility requirements, certification decision and issuance of the certification are managed directly by the certification body, in accordance with its rules in force. The course does not include the exam, voucher, official materials or certification application process.

Certification requirements
To achieve certification, candidates must successfully take the exam and meet the remaining requirements defined by the certification body, including the formal certification application process. The exam is not included.

Other Information

General Information
  • Training available in Portuguese or English.
  • Behaviour® proprietary support materials, made available online, with original exercises by thematic area and consolidation resources, according to the awarded conditions.
  • Behaviour® exam simulation on the last day of training.
  • Behaviour® digital Training Attendance Certificate, with indication of 40 CPD/CPE credits awarded by Behaviour®.
Trainer(s)
Learn with senior consultants and auditors, with practical experience in implementation, auditing, risk management, information security and professional training, including experience in international references relevant to the area.

Benefits

View benefits
  • Normalisation of language, criteria and practices in Information Systems auditing, reducing ambiguity and increasing consistency in assessment and reporting.
  • Strengthened professional and organisational credibility with clients, suppliers, external audits and governance functions.
  • Development of practical capability to audit Information Systems in current technological contexts, including cloud environments, AI-based solutions and modern digital architectures.
  • Structured preparation for the certification exam, with review by competence areas and Behaviour® simulation.
  • Pedagogical model oriented towards effective competence acquisition, active participation and meaningful learning, with simultaneous focus on certification and professional applicability.

Logistics

Useful information
  • Live Online (synchronous time): 09h30–17h30 (Lisbon time), with lunch break and short breaks.
  • Classroom (synchronous time): 09h30–17h30 (Lisbon time), with lunch break and short breaks.
  • 35 hours of synchronous training, distributed across 5 consecutive days.
  • Estimated 5 hours of guided autonomous work, intended for content consolidation, carried out flexibly outside the synchronous sessions.
  • Requirements: computer with stable internet, browser, PDF reader, audio/video.
  • After-hours Live Online (synchronous time): 18h15–21h45 (Lisbon time), with a short break.
Hotels in Lisbon

Find out where you can stay in Lisbon, near Behaviour, for classroom training.

Frequently Asked Questions

Objective answers to common questions about this CISA Exam Preparation Course.

Is this course suitable for professionals coming from internal or financial audit who want to deepen IS auditing?
Yes. The course helps bridge general audit experience with the specificities of information systems, technological control, IT governance and evidence in a digital context.
Does the course help identify study gaps by area before scheduling the exam?
Yes. The structured review of the assessed areas, the original exercises and the Behaviour® simulation help participants understand where they are stronger and where further study and practice are needed.
Can information security professionals benefit from this course even if they do not hold formal audit roles?
Yes. The course strengthens the ability to understand audit criteria, controls, evidence and the assurance perspective, improving interaction with internal, external and client audits.
Is the course relevant for audits in cloud, hybrid and emerging technology environments?
Yes. The course is relevant for audits in cloud, hybrid and emerging technology environments because it prepares professionals to audit modern systems and frames the impact of technologies such as cloud, AI, blockchain and SOAR on risk, controls, evidence and audit assessment. For specific deepening, Behaviour offers two complementary paths: the CCSP Exam Preparation Course, more oriented towards cloud security, covering architecture and design, data security, platform and infrastructure, applications, operations, as well as legal, risk and compliance topics; and the Cloud Computing Auditor Course, focused on auditing cloud environments, with emphasis on service and deployment models, shared responsibility, risk assessment, contracts and SLA, evidence, findings and professional reporting.
Does this course help improve audit reasoning and reporting quality, beyond exam preparation?
Yes. Preparation by competence areas helps organise analysis, substantiate conclusions and communicate results with greater consistency in a professional context.

For general questions about registration, delivery modes, exams, certification and recertification, please consult the BEHAVIOUR® FAQs.

Registration

Complete the form to request your registration for the preferred edition. Check the upcoming dates.

Contact name
=

Training delivered by a certified training provider (processes and quality). See DGERT framework.

Request more information

If you would like help to frame the course within your professional or organisational context, contact us and we will indicate the most suitable path.

Request Information

Companies: request a proposal

For team registrations, we provide volume conditions and a proposal tailored to the organisational need.

Request Proposal

This course may be attended by individual professionals. It may also be integrated into preparation paths for professionals with responsibilities in information systems auditing.