CIA Exam Prerequisites 2026: Degree and Experience Requirements

Who Actually Needs to Meet These Prerequisites

The Certified Internal Auditor (CIA) credential is administered exclusively by The Institute of Internal Auditors (IIA) and remains the only globally recognized certification in internal audit. That exclusivity matters: there is no competing body offering the same credential, which means the IIA's entry requirements are non-negotiable for anyone who wants to earn the designation.

Before you register for a single exam part through a Pearson VUE test center, the IIA must accept your application. That means verifying your educational background, confirming your experience pathway, and receiving a character endorsement. Only after acceptance into the program does your three-year clock begin ticking.

The candidate pool ranges from early-career auditors sitting the exam while still in university to seasoned finance and compliance professionals pivoting into internal audit. Employers who seek CIA-designated staff include Big Four and regional accounting firms, Fortune 500 internal audit departments, government agencies, financial institutions, and global corporations operating under frameworks that reference the IIA's Global Internal Audit Standards. In every case, the employer expects you to have cleared the same prerequisite bar.

The Degree Requirement: What Counts and What Doesn't

Standard Requirement: Bachelor's Degree or Equivalent

The IIA requires candidates to hold a bachelor's degree or an equivalent credential from an accredited institution. The field of study is not restricted to accounting or finance - degrees in business administration, information systems, economics, law, or related disciplines all qualify. What matters is the credential level, not the major.

For candidates outside the United States, the IIA accepts degrees that are equivalent to a U.S. bachelor's degree. If your credential was earned under an international educational system, the IIA may ask for a credential evaluation from a recognized third-party evaluation service. Check the IIA's official candidate handbook for the current list of accepted evaluation bodies, as this detail changes periodically.

The Final-Year Student Provision

One of the more candidate-friendly provisions in the CIA prerequisites is that students in their final year of a qualifying degree program may apply and sit for exam parts before graduation. This allows you to begin accumulating exam credits while still completing your undergraduate coursework, so that once you graduate and start your professional experience, you're not starting from zero on the exam side.

If you take advantage of this provision, your degree must be fully conferred before you can receive the CIA designation - passing all three parts without the confirmed degree will not result in certification. Plan accordingly and make sure the IIA receives your official transcript or degree confirmation as soon as it is available.

No Degree? The Experience Substitution Path

The IIA does provide an alternate pathway for candidates who do not hold a qualifying degree. Under this path, extended internal audit experience can substitute for the educational requirement. The specifics of the substitution ratio and documentation process are outlined in the IIA's official eligibility guidelines. This article focuses primarily on the standard bachelor's degree path, which applies to the vast majority of candidates.

The 24-Month Experience Requirement Explained

How Many Months and What Counts

The CIA requires 24 months of internal auditing experience or its equivalent. This is one of the more flexible prerequisites because the IIA recognizes that "equivalent" experience covers a broader range of professional activity than a strict internal audit job title would suggest.

Qualifying equivalent experience includes work in external auditing, quality assurance, compliance, risk management, and certain finance and accounting roles where the work directly relates to the competencies tested in the CIA exam. If your job title is "Risk Analyst" or "Compliance Manager" but your daily responsibilities involve evaluating controls, assessing risk, and reporting findings to governance stakeholders - the kinds of skills tested across all three exam parts - that experience may qualify.

Timing: Experience Can Follow Exam Parts

A common misconception is that candidates must complete all 24 months of experience before sitting for the exam. That is not the case. You can pass all three exam parts and then satisfy the experience requirement afterward, as long as everything - degree, experience, and exam parts - is completed within the three-year program window. This flexibility is especially valuable for recent graduates who are entering the workforce and want to tackle the exams while the academic material is still fresh.

For a deeper look at what the exam tests once you're in the field, the CIA Domain 8: Communicating Results and Monitoring Progress Guide is worth reviewing - it covers a domain where professional experience translates most directly into exam performance.

Character Reference and Professional Conduct

In addition to education and experience, the IIA requires a character reference from a CIA-certified professional or, in some cases, another qualified individual. This endorsement speaks to your professional conduct and integrity - qualities that sit at the core of the CIA's Ethics and Professionalism domain (Domain 2 of Part 1).

The IIA can deny or revoke certification based on conduct issues, which is a meaningful distinction from purely knowledge-based credentials. Internal auditors are routinely placed in sensitive positions - reviewing financial reporting, assessing fraud risks, evaluating executive-level controls. The certification reflects not just competence but trustworthiness.

Walking Through the Application Process and Fees

Submitting Your Application

Applications are submitted through the IIA's online portal. Once submitted, the IIA reviews your educational documentation, experience verification, and character endorsement. Approval grants you candidate status and starts the three-year window during which you must pass all three parts and fulfill all exit requirements.

Fee Structure: Membership Changes the Math

The CIA's fee structure creates a clear financial incentive to join the IIA before applying. Here's how it breaks down:

The savings from IIA membership across the full exam process are substantial. If your employer reimburses exam fees, confirm whether they also cover IIA membership dues - a single conversation with your HR department could save you hundreds of dollars.

Scheduling Through Pearson VUE

Once your application is approved and you register for a part, you schedule your appointment through Pearson VUE's global network of test centers. The CIA is available year-round, so there are no restricted testing windows. Parts can be taken in any order, which gives you the flexibility to start with whichever domain area aligns best with your current professional experience.

Practice using a realistic testing environment before exam day. The CIA practice test platform at auditorexam.com replicates the multiple-choice format and pacing you'll face at the Pearson VUE center.

The Three-Year Completion Window: Don't Sleep on It

From the date the IIA accepts your application, you have exactly three years to complete all three exam parts and satisfy the experience and degree requirements. If you do not complete everything within that window, you forfeit fees paid for incomplete parts and must reapply.

Three years sounds generous until you account for the variables that slow candidates down: retakes on challenging parts, work travel that disrupts study schedules, life events, and the simple reality that Part 1 with its four domains - Internal Audit Fundamentals, Ethics and Professionalism, Governance, Risk Management, and Control, and the newly introduced Fraud Risks domain - requires more preparation time than many candidates anticipate going in.

Also note: effective April 2026, the IIA is updating its scoring process so that candidates receive official results within three weeks of testing. This faster turnaround allows you to make quicker decisions about retakes or moving on to the next part, which matters a great deal when you're managing the three-year deadline.

What You're Actually Signing Up For: The Three-Part Exam

Understanding the prerequisite requirements is inseparable from understanding the credential you're pursuing. The CIA is a three-part examination, each part testing a distinct cluster of professional competencies:

Every part is scored on a scale of 250-750, with a passing score of 600 required on each. The exam is closed book and available in 14 or more languages. You can explore domain-specific preparation at any time through the CIA practice test resources on this site.

Sequencing Your Parts: A Domain-Aware Approach

Because the CIA allows parts to be taken in any order, candidates often ask which sequence is optimal. The answer depends on your professional background, but here is a domain-aware framework based on how the content builds:

Regardless of sequence, remember that each part is an independent pass/fail event scored at 600. A strong performance on Part 2 does not carry weight to Part 1. Treat each part as its own campaign and allocate dedicated preparation time to each set of domains before scheduling your appointment.

Once you've confirmed your eligibility and have a study plan in place, the CIA Exam Prerequisites 2026 guide gives you a complete reference point to return to throughout your preparation journey.

Frequently Asked Questions