An Information Systems Security Auditor has a deep understanding of information systems from both hardware and software stand points. This understanding, paired with knowledge of corporate structure ensures that the C)ISSA can accurately examine an information system. Additionally, an auditor utilizes an extra skill set that includes, investigative techniques, report writing, and problem solving to not only identify potential areas of weakness, but also offer remedies.