Which of the following MUST be established in order to manage l&T-related risk throughout the enterprise?
A . An enterprise risk governance committee
B . The enterprise risk universe
C . Industry best practices for risk management
Answer: A
Explanation:
To manage IT-related risk throughout the enterprise, it is crucial to establish an enterprise risk governance committee. This committee provides oversight and direction for the risk management activities across the organization. It ensures that risks are identified, assessed, and managed in alignment with the organization’s risk appetite and strategy. The committee typically includes senior executives and stakeholders who can influence policy and resource allocation. This structure supports a comprehensive approach to risk management, integrating risk considerations into decision-making processes. This requirement is in line with guidance from frameworks such as COBIT and ISO 27001, which emphasize governance structures for effective risk management.
Latest IT Risk Fundamentals Dumps Valid Version with 75 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund