Skip Ribbon Commands
Skip to main content

Certified Internal Auditor® (CIA®) Exam Syllabus

The Certified Internal Auditor (CIA) exam tests a candidate’s knowledge of current internal auditing practices and understanding of internal audit issuers, risks, and remedies.

If you plan to take a CIA exam part in Arabic, Chinese Simplified, Chinese Traditional, French, German, Italian, Japanese, Korean, Portuguese, Russian, Spanish, Thai, or Turkish, view the syllabi.

Exam Non-disclosure

The CIA exam is a non-disclosed examination, which means that current exam questions and answers will not be published or divulged.

NOTE: Exam topics and/or format are subject to change as approved by The IIA’s Professional Certification Board (PCB).

Part 1 – Essentials of Internal Auditing

125 questions I 2.5 hours (150 minutes)

The CIA exam Part 1 is well aligned with The IIA’s International Professional Practices Framework (IPPF) and includes six domains covering the foundation of internal auditing; independence and objectivity; proficiency and due professional care; quality assurance and improvement programs; governance, risk management, and control; and fraud risk. Part one tests candidates’ knowledge, skills, and abilities related to the International Standards for the Professional Practice of Internal Auditing, particularly the Attribute Standards (series 1000, 1100, 1200, and 1300) as well as Performance Standard 2100.

Part 2 – Practice of Internal Auditing

100 questions I 2.0 hours (120 minutes)

The CIA exam Part 2 includes four domains focused on managing the internal audit activity, planning the engagement, performing the engagement, and communicating engagement results and monitoring progress. Part 2 tests candidates’ knowledge, skills, and abilities particularly related to Performance Standards (series 2000, 2200, 2300, 2400, 2500, and 2600) and current internal audit practices.

Part 3 – Business Knowledge for Internal Auditing

100 questions I 2.0 hours (120 minutes)

The CIA exam Part 3 includes four domains focused on business acumen, information security, information technology, and financial management. Part Three is designed to test candidates’ knowledge, skills, and abilities particularly as they relate to these core business concepts.

Sample CIA Exam Questions

The IIA provides a limited number of sample CIA exam questions (with answers) to give candidates an understanding to the types of questions that typically appear on the exams.

Access CCMS

Candidates from the following countries must refer to their local IIA Institute web-site or contact their local representative for more information about local certification processes:


The information contained on this website pertains to all other countries.