Risk management as defined by OCEG GRC model is:
A . Capability to set and evaluate performance against objectives
B. Capability to proactively identify, assess and address uncertainty and potential obstacles to achieving objectives
C. Capability to proactively encourage and ensure compliance with established policies and boundaries
Answer: B
Explanation:
According to 1, OCEG GRC model is “a framework for integrating governance, risk management, compliance and ethics/culture into a single capability”. It defines risk management as “the capability that enables an organization to understand how uncertainty affects its ability to achieve objectives” 2.
Latest ISO-31000-CLA Dumps Valid Version with 100 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund