Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CRISC All Questions

View all questions & answers for the CRISC exam
Go to Exam

Exam CRISC topic 1 question 54 discussion

Actual exam question from Isaca's CRISC
Question #: 54
Topic #: 1
[All CRISC Questions]

Which among the following acts as a trigger for risk response process?

  • A. Risk level increases above risk appetite
  • B. Risk level increase above risk tolerance
  • C. Risk level equates risk appetite
  • D. Risk level equates the risk tolerance
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
The risk response process is triggered when a risk exceeds the enterprise's risk tolerance level. The acceptable variation relative to the achievement of an objective is termed as risk tolerance. In other words, risk tolerance is the acceptable deviation from the level set by the risk appetite and business objectives.
Risk tolerance is defined at the enterprise level by the board and clearly communicated to all stakeholders. A process should be in place to review and approve any exceptions to such standards.
Incorrect Answers:
A, C: Risk appetite level is not relevant in triggering of risk response process. Risk appetite is the amount of risk a company or other entity is willing to accept in pursuit of its mission. This is the responsibility of the board to decide risk appetite of an enterprise. When considering the risk appetite levels for the enterprise, the following two major factors should be taken into account:
✑ The enterprise's objective capacity to absorb loss, e.g., financial loss, reputation damage, etc.
✑ The culture towards risk taking-cautious or aggressive. In other words, the amount of loss the enterprise wants to accept in pursue of its objective fulfillment.
D: Risk response process is triggered when the risk level increases the risk tolerance level of the enterprise, and not when it just equates the risk tolerance level.
by 6yrd7fcv97 at June 10, 2024, 9:15 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
maki.banassios4013
3 weeks, 2 days ago
the correct answer is A. In risk management, the risk appetite refers to the amount of risk an organization is willing to accept in pursuit of its objectives. When the risk level exceeds this appetite, it acts as a trigger for initiating the risk response process. This is because exceeding the risk appetite indicates that the organization is facing a level of risk that it is not comfortable with, necessitating immediate action to mitigate or manage that risk. On the other hand, risk tolerance refers to the acceptable variation in performance relative to the achievement of objectives. While it is important, the primary trigger for risk response is typically when risks exceed the organization's appetite for risk, prompting a need for a response strategy to bring the risk back within acceptable limits
upvoted 1 times
...
6yrd7fcv97
5 months, 1 week ago
Selected Answer: A
Disagree with the stated answer. Correct answer is A, when risk level goes past risk appetite. Risk tolerance is the level at which a company fails if a risk crystallises.
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel