To establish an enterprise risk appetite, an organization should:

IT Risk Fundamentals 0 Comments

To establish an enterprise risk appetite, an organization should:
A . normalize risk taxonomy across the organization.
B . aggregate risk statements for all lines of business.
C . establish risk tolerance for each business unit.

Answer: C

Explanation:

To establish an enterprise risk appetite, it is essential for an organization to establish risk tolerance for each business unit. Risk tolerance defines the specific level of risk that each business unit is willing to accept in pursuit of its objectives. This approach ensures that risk management is tailored to the unique context and operational realities of different parts of the organization, enabling a more precise and effective risk management strategy. Normalizing risk taxonomy and aggregating risk statements are important steps in the broader risk management process but establishing risk tolerance is fundamental for defining risk appetite at the unit level. This concept is supported by standards such as ISO 31000 and frameworks like COSO ERM (Enterprise Risk Management).

Latest IT Risk Fundamentals Dumps Valid Version with 75 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download IT Risk Fundamentals PDF     IT Risk Fundamentals Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments