Certification in Risk Management Assurance® (CRMA®)
Earning a professional credential from The IIA is the best way to demonstrate your commitment to advancing in this competitive niche and communicating your breadth of knowledge.
If your goal is to become a trusted advisor to the audit committee and executive management in the critical areas of risk assurance, governance processes, quality assurance, or control self-assessment, the CRMA designation is for you.
Be a Key Advisor to the Audit Committee and Executive Management for Risk Management
Job analysis and stakeholder surveys have indicated a key element to unlocking internal audit’s full potential can be found in a professional’s ability to provide advice and assurance on risk management to audit committees and executive management. In response, The IIA developed the CRMA designation.
The standard CRMA Core Exam will be a 100-question, multiple-choice exam, with a seat time of two hours. These exams will be instantly scored like all of the other IIA exams, and will be administered at Pearson VUE testing centers around the world. All Certification in Risk Management Assurance (CRMA®) eligibility requirements will apply.
The CRMA: Your Key to Career Success
The CRMA is designed for internal auditors and risk management professionals with responsibility for and experience in providing risk assurance, governance processes, quality assurance, or control self-assessment (CSA). It demonstrates an individual’s ability to evaluate the dynamic components that comprise an organization’s governance and enterprise risk management program and provide advice and assurance around these issues.
The CRMA is one more mark of professional distinction for internal audit practitioners. Earning the CRMA will assist you in demonstrating your ability to:
- Provide assurance on core business processes in risk management and governance.
- Educate management and the audit committee on risk and risk management concepts.
- Focus on strategic organizational risks.
- Add value for your organization.
The CRMA exam is available through computer-based testing, allowing you to test year-round at more than 500 locations worldwide. Candidates are able to sit for exams at any IIA-authorized Pearson VUE testing center worldwide, regardless of whether the testing center is located in your hometown or country. To locate the testing centers nearest you, visit thePearson VUE website. You must apply and register in The IIA’s Certification Candidate Management System (CCMS) prior to scheduling an exam.
The CRMA exam includes two sections: Part 1 of the CIA exam and a separate CRMA exam, which consists of 100 multiple-choice questions covering four domains. The CRMA exam requires a completion time of two hours.
Candidates who have already passed Part 1 of the CIA exam may advance directly to the CRMA core exam, having fulfilled that eligibility requirement.
All content covered in the four domains of the CRMA exam will be tested at the proficiency level (P). This means that candidates must exhibit proficiency (thorough understanding and the ability to apply concepts) in these topic areas.
Standards tested on the CRMA exam:
- CIA exam Part 1 topics tested include aspects of the IPPF, responsibilities of the internal audit activity, independence and objectivity, governance concepts, risk identification and management, management controls, and audit planning.
- The CRMA exam topics tested include governance aspects and principles of risk management assurance in addition to appropriate assurance and consulting roles for internal audit professionals.
The CRMA exam is a non-disclosed examination, which means that current exam questions and answers will not be published or divulged.
NOTE: Exam topics and/or format are subject to change as approved by The IIA’s Professional Certification Board (PCB).
CRMA Exam Domains
The CRMA exam core content covers four domains:
Domain I: Organizational governance related to risk management (25-30%)
Domain II: Principles of risk management processes (25-30%)
Domain III: Assurance role of the Internal Auditor (20-25%)
Domain IV: Consulting role of the Internal Auditor (20-25%)