Certification in Risk Management Assurance (CRMA) 

CRMA Pre-course Quiz

Course Materials

Introduction to Your Teacher

CRMA Exam Strategy

Exam Planning

CRMA Question Types

Content (not) Covered In this Course

Main Topics Covered

Evolution of Risk Management

Definition of Risk Management

Risk Management vs ERM

ERM Top-down Model

Risk Management Strategy Across An Organization

ERM Documentation

Question on Enterprise Risk Management

COSO ERM

The COSO Helix

Risk Criteria

Volatility, Interdependency and Correlation

Risk Management Maturity Model

Levels in the Risk Management Maturity Model

Advantages of the Risk Management Maturity Model

Risk Information Ownership in the Risk Management Maturity Model

Using Risk Management Maturity Models as an Internal Auditor

Independence and Objectivity Requirements for Internal Audit Independence

Measures for Internal Audit Independence and Objectivity

IIA Standards on Impairments to Independence and Objectivity

Threats to Internal Audit Independence

Threats to Internal Auditors Objectivity

Question on Threats to Internal Audit Independence and Objectivity

Internal Audit's Role in Risk Management

IIA Standards on Internal Audit's Role in Risk Management

The COSO ERM Fan

Core Internal Audit Roles in ERM

Legitimate Internal Audit Roles in ERM

Forbidden Internal Audit Roles in ERM

Question on Internal Audit Roles in ERM

Relying on Risk Assurance

IIA Standards on Coordination and Reliance on Risk Assurance

Can Internal Audit Rely on Risk Management Assurance?

Advantages of Relying on Risk Management Assurance

Other Forms of Assurance Over Risk Management

Risk Responses

Risk Measurement

The 3-lines of Defense Model

Risk Assurance Mapping

Definition of Risk Management Governance

Risk Management Governance Structure

How Internal Audit Can Help Risk Management Governance

IIA Standards on Governance

Responsibilities of Board Members

IIA Standards on Organizational Independence

COSO's Enterprise Risk Management (ERM) Cube

Environments in Which Risk is Managed

Definition of Risk Appetite

Example of a Risk Appetite Statement

Sobel and Reding's Capability Criteria

Risk Evaluation Measures

Risk Levels

Risk Evaluation Measures

Determining the Risk Universe

Risk Map for Likelihood and Impact with Risk Levels

Main Functions of Controls

Using Lead Indicators and Controls for Emerging Risks

Inherent and Residual Risk

The Calculation of Residual Risk

The Calculation of Audit Risk

Likelihood and Impact Graph of Inherent and Residual Risks

Common Risk Management Frameworks

Question on Risk Management Frameworks

Roles in the COSO ERM Framework

ISO 31000 Principles

COSO ERM vs ISO 31000 Components

The COSO Internal Control Cube

COSO's 17 Principles of Internal Control

Risk Culture

ABC Model of Risk Culture

Indicators of Risk Culture

Assessing Risk Culture

McKinsey 7S Model

Definition of Emerging Risks

Assessing Emerging Risks

Question on Emerging Risks

Stakeholder Interest and Engagement

Risk Identification Techniques

Risk Identification Workshops

Control and Risk Self-Assessments (CRSA)

Vulnerability Assessments

Scenario Planning

Brainstorming Risk Identification Technique

Risk Questionnaires

Benchmarking

Risk Event Map

Risk Likelihood and Impact Definitions

Steps to Assessing Risk Management

Assessing Risk Management - 1 Understand the Context of the Organization

Assessing Risk Management - 2 Gather Information and Documentation

Assessing Risk Management - 3 Preliminary Risk Assessment

Assessing Risk Management - Establish Scope and Objectives

Definition of Data Analytics for Internal Audit

Use of Data Analytics for Risk Management

Types of Data Analytics

Types of Data Analytics - Descriptive Data Analytics

Types of Data Analytics - Diagnostic Data Analytics

Types of Data Analytics - Predictive Data Analytics

Types of Data Analytics - Prescriptive Data Analytics

Question on Data Analytics 1

Question on Data Analytics 2

Ratio Estimation

Variance Analysis for Data Analytics

Proportional Analysis, Trend Analysis and Embedded Audit Modules

Benford's Law

Regression Analysis

Statistical Process Control

Other Types of Analytical Tests 1

Other Types of Analytical Tests 2

Models for Assurance Over Risk Management

Assurance Over Risk Management - Process Elements Approach

Assurance Over Risk Management - Key Principles Approach

Question on Assurance Over Risk Management

Question on the Key Principles Approach

Root Cause Analysis Methods

Root Cause Analysis Methods - Fishbone Diagram

Root Cause Analysis Methods - The 5 Whys

Root Cause Analysis Methods - Logic Trees

Root Cause Analysis Methods - Fault Trees Analysis

Root Cause Analysis Methods - Failure Modes and Effects Analysis (FMEA)

Systems Development Life Cycle (SDLC)

Auditing the Systems Development Life Cycle (SDLC)

Methods for the Systems Development Life Cycle (SDLC)

Systems Development Life Cycle (SDLC) - Waterfall Method

Systems Development Life Cycle (SDLC) - Spiral Method

Systems Development Life Cycle (SDLC) - Rapid Development

Systems Development Life Cycle (SDLC) - Agile Method

Qualities of Persuasive Internal Audit Information

Standards on Engagement Communication

Types of Audit Evidence

Question on Types of Audit Evidence

IIA Standards on Communicating the Acceptance of Risks

Process Map for Communicating the Acceptance of Risks

Quality of Audit Communications

Final Test

CRMA Exam Tips and Tricks