What do you think?
Rate this book
CISA Official Review Manual, 28th Edition
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 of 1 review
September 1, 2025
"I liked it." - 3 out of 5 star rating.
For a vendor provided review manual on the Certified Information System Auditor (CISA) examination - it was decent.
The quality of the book itself is noteworthy, with thin yet durable pages, full of high resolution imagery and a great gloss finish.
I actually finished this book a few weeks ago, but have just taken a break from Goodreads and reading in general, as I study for this exam. CISA is tricky, as regardless of my 19 years experience in the industry, you have to shift your mindset on how you respond to questions - not as a cybersecurity professional, but as an auditor.
The questions are intentionally difficult as well, with the classic situation where two answers could be right - from a certain point of view. You really have to understand the auditor role versus whatever experience/duties you are accustomed to in the real world. Also, a single word such as "best" or "from a business perspective" or "post implementation"... will throw off your answer if you immediately go with your cyber gut instinct.
Now that the books are complete (I read the Sybex one as well), it is time now to lock in to grinding questions and flipping flashcards.
September 2025 - the month I hard dedicated to CISA studying so I can pass this exam.
Let's go.
For a vendor provided review manual on the Certified Information System Auditor (CISA) examination - it was decent.
The quality of the book itself is noteworthy, with thin yet durable pages, full of high resolution imagery and a great gloss finish.
I actually finished this book a few weeks ago, but have just taken a break from Goodreads and reading in general, as I study for this exam. CISA is tricky, as regardless of my 19 years experience in the industry, you have to shift your mindset on how you respond to questions - not as a cybersecurity professional, but as an auditor.
The questions are intentionally difficult as well, with the classic situation where two answers could be right - from a certain point of view. You really have to understand the auditor role versus whatever experience/duties you are accustomed to in the real world. Also, a single word such as "best" or "from a business perspective" or "post implementation"... will throw off your answer if you immediately go with your cyber gut instinct.
Now that the books are complete (I read the Sybex one as well), it is time now to lock in to grinding questions and flipping flashcards.
September 2025 - the month I hard dedicated to CISA studying so I can pass this exam.
Let's go.
Displaying 1 of 1 review