The explanation for the answers says the below which is answer A: Business Management
“Business management is the business individuals with roles relating to managing a program. They are typically accountable for analyzing risks, maintaining risk profile, and risk-aware decisions. Other than this, they are also responsible for managing risks, react to events, etc.”
ISACA always emphasized that accountability should go to 1 role, also analyzing risks is not a task of the Bussiness, RIsk practitioner are tasked with this using either qualitative or quantitative techniques.
D. The Chief Risk Officer is responsible for analyzing risks, maintaining the organization's risk profile, and ensuring that risk-aware decisions are made throughout the organization.
Chief Risk Officer (CRO): roles and responsabilities
1. Risk Strategy: Develops and oversees the overall risk management strategy and framework for the organization.
2. Risk Analysis: Conducts comprehensive risk assessments and analyses to identify, evaluate, and prioritize risks across the organization.
3. Risk Profile Maintenance: Maintains the organization's risk profile, ensuring it is up-to-date and reflective of the current risk landscape.
4. Risk-Aware Decisions: Promotes risk-aware decision-making at the executive level, ensuring that strategic decisions consider potential risks and their impacts.
5. Risk Governance: Establishes risk governance structures and processes, ensuring compliance with regulatory requirements and industry standards.
6. Risk Reporting: Provides regular risk reports to the board of directors, executive management, and other key stakeholders, highlighting significant risks and mitigation efforts.
Therefore, D is the correct answer.
Business management is the business individuals with roles relating to managing a program. They are typically accountable for analyzing risks, maintaining risk profile, and risk-aware decisions. Other than this, they are also responsible for managing risks, react to events, etc.
Could be A or D - the question does not specify for a Program (A) or for the Enterprise (D) which implies across all Programs, and is probably a better answer.
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Ramye
Highly Voted 4 years, 3 months agoLDR2409
Most Recent 3 months, 3 weeks ago3263346
9 months, 2 weeks agojorigene
11 months, 2 weeks agohelg420
2 years, 4 months agoJulianleehk
2 years, 4 months ago[Removed]
4 years, 3 months agoBKA
4 years, 10 months agoParth9
4 years, 11 months agoR_K_P
4 years, 11 months agoSKDanso
5 years ago