Information security awareness amongst end-users is an imperative, because 'people' are the weakest link in the information security chain. Essentially, information security is a 'people issue'. End-user awareness is vital in the work place because well-designed information security policies are, by themselves, of little use unless all users are fully aware of the need for maintaining the security of corporate and personal information assets.

The CISAU certification aims at creating committed end-users, aware about the importance of IS security in their workplace and its implementation in day-to-day activities.

CII offers security courses that assist end-users in obtaining this certification. Being certified means they have passed stringent tests and are alert end-users, well aware of Information Security Controls, IT Laws, and Security Policies and Compliance.