Skip Ribbon Commands
Skip to main content
The Institute of Internal Auditors North AmericaBreadcrumb SeparatorCertificationBreadcrumb SeparatorCRMA CertificationBreadcrumb SeparatorExam Syllabus Domain 1
Certifications & Qualifications
Expand/CollapseNew to Certification?

Expand/CollapseCurrently Enrolled?

Expand/CollapseAlready Certified?

Expand/CollapseCIA Certification

Expand/CollapseQIAL Qualification

Expand/CollapseCGAP Certification
Expand/CollapseCFSA Certification
Expand/CollapseCCSA Certification
Expand/CollapseCRMA Certification
Get Started
Eligibility Requirements
Exam Syllabus
CPE Requirements
Exam Preparation Resources
Expand/CollapseCPSA and CPEA Certification

Access CCMS & User Guide
Administrative Directives
CBT Exam Tutorial
CCMS Single Sign On
Certification Corner News
Certifications Merchandise
Candidate Eligibility Extension
Document Upload Portal
Download Handbook
Exam Language Offerings
Exam Security
Pricing Structure
Recognized CPE Providers
Social Media & Open Badging
Certification FAQ

​Certification in Risk Management Assurance™ (CRMA®) Exam Syllabus — Domain I

Organizational governance related to risk management (25-30%)

A. Assess risk management processes in the context of alignment with strategic imperatives

  1. Objectives of risk management processes
  2. Organization's risk culture
  3. Risk capacity, appetite, and tolerance of organization

B. Assess the processes related to the elements of the internal environment in which organizations seek to manage risks and achieve objectives

  1. Integrity, ethical values, and other soft controls
  2. Role, authority, responsibility, etc., for risk management
  3. Management's philosophy and operating style
  4. Legal/Organizational structure
  5. Documentation of governance-related decision-making
  6. Capabilities, in terms of people and other resources (e.g., capital, time, processes, systems, and technologies)
  7. Management of third party business relationships
  8. Needs and expectations of key internal stakeholders
  9. Internal policies

C. Assess the processes related to the elements of the external environment in which organizations seek to manage risks and achieve objectives

  1. Key external factors (drivers and trends) that may impact the objectives of the organization
  2. Needs and expectations of key external stakeholders (e.g., involved, interested, influenced)

IMPORTANT! CCMS users go here to prepare for Single Sign On.

Access CCMS

Candidates from the following countries must refer to their local IIA Institute web-site or contact their local representative for more information about local certification processes:

The information contained on this website pertains to all other countries.