According to IIA guidance, which of the following roles should the CAE not undertake?

An organization’s board would like to establish a formal risk management function and has asked the chief audit executive (CAE) to be involved in the process.

According to IIA guidance, which of the following roles should the CAE not undertake?
A . Manage and coordinate risk management processes.
B . Audit risk management processes.
C . Become involved in risk oversight committees, monitoring activities, and status reporting.
D . Accept management’s responsibility for risk management without board approval.

Answer: D

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments