CIA· IIA
Certified Internal Auditor (IIA, 3 Parts)
The IIA CIA certification covers this concept in Part 1 (framework, IPPF) and Part 2 (audit practice). 60+ lessons and 1,258 original questions.
Term DefinitionAudit
Internal Audit
An independent, objective assurance and consulting activity to add value to operations.
Internal audit is the 3rd line of defense per the IIA's Three Lines Model. Guided by the Global Internal Audit Standards (GIAS 2024), it evaluates governance, risk management, and controls. It is independent from management and reports functionally to the board of directors. Internal audit covers several engagement types: assurance (financial, operational, IT, compliance), advisory, and fraud investigations. The value of internal audit is measured not only by findings identified, but by the lasting process improvements it catalyzes.
📌 Key points
- 3rd line of defense in the IIA's Three Lines Model
- Dual reporting: administratively to management, functionally to board/audit committee
- New IIA Standards 2024 (GIAS) replace the IPPF with a focus on value creation
- Covers assurance, advisory, and fraud investigation engagements
- Independence is the sine qua non of internal audit credibility
Related certifications
These certifications cover the concept of "Internal Audit" in depth.
CIA Challenge· IIA
CIA Challenge Exam (1-exam route)
Accelerated 8-week path for CCSA/CFSA/CGAP/CRMA/ACCA/CPA/CIMA holders. A single 150-question exam instead of all 3 Parts.
🔗 Related concepts
FrameworksFrameworksAuditAuditCertifications
IPPF (International Professional Practices Framework)
The IIA's global framework of standards and guidance for internal audit.
Three Lines Model
A governance framework distributing control responsibilities across three levels.
Audit Universe
A comprehensive inventory of auditable processes and entities in an organization.
Audit Opinion
The auditor's formal conclusion on the adequacy of the control system examined.
CIA Certification
Certified Internal Auditor — the only global internal audit certification issued by the IIA.
📖 Related articles
The Ultimate Guide to Passing the CIA Exam in 2026
15 min read·certification guides
Understanding the Three Lines Model: A Modern Framework for Governance
6 min read·industry news
The Auditor's Paradox: Why More Evidence Often Means Less Assurance
8 min read·industry news
The Inner Album of the Auditor: 8 Ideas That Carry Every Engagement
7 min read·industry news
Master this concept and more
Start your GRC certification journey today.