ISACA, the leading global professional association helping individuals and organisations in their pursuit of digital trust, is proud to announce that its Certified Information Systems Auditor (CISA) credential has been officially recognised by the United Kingdom’s National Cyber Security Centre (NCSC) as a key standard for companies conducting assurance reviews of government organisations under the new GovAssure regime.
The CISA certification, known worldwide for its rigorous standards in auditing, control, monitoring, and assessment of IT and business systems, now stands as a qualifying criterion for companies seeking to provide independent assurance reviews. This recognition comes as part of the UK Government’s rollout of its innovative ‘GovAssure’ regime, a cornerstone of its 2022-2030 Cyber Strategy aimed at enhancing the cyber security assurance of official government systems through an outcomes-based approach.
Under GovAssure, organisations with CISA-certified auditors will have the opportunity to assess government systems against the NCSC’s Cyber Assessment Framework (CAF) at regular intervals. This initiative is designed to provide the UK’s security functions with a more effective mechanism for understanding and improving cyber resilience across the government’s full ecosystem.
The independent assessments conducted by CISA-certified professionals will lead to the development of targeted improvement plans. These plans will serve as invaluable tools for government organisations, aiding them in maturing their resilience protocols and embarking on a journey of continuous improvement.
“ISACA is honoured by this recognition from the NCSC and is committed to supporting the UK Government’s efforts to enhance its cyber security posture,” said Chris Dimitriadis, Global Chief Strategy Officer at ISACA. “The inclusion of CISA as a qualifying standard for conducting GovAssure reviews not only underscores the certification’s value and relevance in today’s digital world, but also opens new avenues for CISA-certified professionals and their organisations to contribute to national security efforts.”
“ISACA looks forward to continuing its collaboration with the UK Government, the NCSC and all stakeholders involved in the GovAssure regime,” said Sergio Tringali, Advocacy Manager at ISACA. “Together, we can work towards a more secure and resilient digital future for government organisations and the citizens they serve.”
For more information about ISACA’s CISA certification, visit https://www.isaca.org/cisa. Additional information on the GovAssure regime is available at https://www.security.gov.uk/guidance/govassure/becoming-an-independent-assurance-reviewer.