ISACA Practice Exams

Validates foundational knowledge of artificial intelligence, covering AI concepts, principles, potential uses, essential algorithms and software for AI applications, and AI-associated risks and ethical requirements.

Validates foundational knowledge of blockchain technology, covering blockchain history, principles, processes, and infrastructure, as well as real-world applications, implementation challenges, deployment best practices, encryption, and consensus mechanisms.

Validates technical cybersecurity skills across five domains: technology essentials, cybersecurity principles and risk, adversarial tactics and techniques, incident detection and response, and securing assets, combining knowledge-based and hands-on performance-based questions.

Validates the technical skills and knowledge to assess, build and implement comprehensive data privacy measures across privacy governance, risk management, data lifecycle, and privacy engineering.

Validates expertise in IT risk management across governance, risk assessment, risk response and reporting, and technology and security domains.

Validates expertise in governance of enterprise IT across four domains: organizational structure and IT frameworks, resource allocation, benefits realization, and risk optimization.

Validates expertise in information security governance, risk management, program development, and incident management for experienced security professionals.

Validates expertise in auditing, controlling, monitoring, and assessing an organization's information technology and business systems. The gold standard for IT audit professionals.

Validates foundational knowledge of cloud computing, covering cloud architecture, deployment models, security, risk assessment, and the ability to optimize cloud potential for business services across cloud concepts, governance, and service support.

Validates the ability to design and implement IT governance systems using the COBIT framework, covering governance implementation lifecycle, system design workflow, design factors, and governance improvement programs for enterprise information and technology.

Validates foundational knowledge of the COBIT 2019 framework, covering framework components, governance and management principles, performance management, governance objectives, tailored system design, and alignment of IT goals with strategic business objectives.

Validates the ability to evaluate cybersecurity risk and audit organizational cybersecurity controls, covering cybersecurity operations, technology topics, governance, the audit role in cybersecurity, security frameworks, threat assessment, and regulatory requirements.

Validates foundational cybersecurity knowledge across four domains: information security fundamentals, threat landscape, securing assets, and security operations and response, covering core security concepts, threat identification, data protection, and incident detection.

Validates foundational knowledge of data science, covering data management, the data science process, and data science concepts including data analysis, visualization, management systems, and the ability to extract meaningful insights for informed business decisions.

Validates knowledge of the Digital Trust Ecosystem Framework (DTEF), covering culture, emergence, human factors, architecture, and enabling and support domains with the concepts, principles, and best practices for implementing a digitally trustworthy organization.

Entry-level certification that validates fundamental knowledge in cybersecurity concepts, one of five certificates in the ITCA program.

Validates foundational knowledge of Internet of Things technology, covering IoT network components, sensors and actuators, middleware, physical security systems, data authentication and protection methods, and IoT architecture elements.

Validates the ability to audit AI systems across three domains: AI governance and risk management, AI operations and lifecycle risks, and AI auditing tools and techniques, covering AI model assessment, algorithm development oversight, and AI-enhanced audit processes.

Validates expertise in managing AI-related risks across three practice areas: AI risk governance and framework integration, AI risk program management, and AI lifecycle risk management, covering AI vulnerability evaluation, impact assessment, and risk lifecycle navigation.

Validates the ability to manage AI security across three domains: AI governance and program management, AI risk management including threats and supply chain issues, and AI technologies and controls, covering security architecture design and model lifecycle management.

Validates foundational IT audit knowledge, covering audit performance, IT environment and components, specific audit subjects, newer technologies, controls and risk, and the audit function, including IT audit terminology, concepts, and general practices.

Validates foundational IT risk knowledge, covering risk governance and management, risk identification, risk assessment and analysis, risk response, and risk monitoring, reporting, and communication, including IT risk terminology and general risk management practices.