Which activity should be done by governance?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
Governance is responsible for defining and overseeing the enterprise's overall strategic direction, policies, and decision-making processes. It provides oversight and guidance to ensure that the organization achieves its goals, manages risks appropriately, and complies with applicable laws and regulations.
Of the four activities listed, setting principles and policies is the most appropriate for governance. This involves developing and communicating the high-level principles and policies that guide decision-making across the enterprise. Principles and policies are used to define the enterprise's risk appetite, establish ethical standards, and ensure compliance with regulatory requirements.
Implementing risk appetite is a management activity, not a governance activity. Management is responsible for implementing the risk appetite set by governance and making day-to-day decisions that align with that risk appetite.
Executing strategy and planning activities to meet enterprise goals are also management activities. Strategy execution involves translating the enterprise's strategic goals into specific objectives, initiatives, and action plans. Planning activities to meet enterprise goals involves developing detailed plans and schedules for executing those initiatives and achieving the desired outcomes.
In summary, governance is responsible for setting principles and policies that guide decision-making across the enterprise, including defining the risk appetite. Management is responsible for implementing those policies and making day-to-day decisions that align with the risk appetite. Strategy execution and planning activities to meet enterprise goals are management activities.