Supporting Risk-Based Decisions by Senior Management | CRISC Exam | ISACA

Summarizing the Results of a High-Profile Risk Assessment

Prev Question Next Question

Question

A risk practitioner is summarizing the results of a high-profile risk assessment sponsored by senior management.

The BEST way to support risk-based decisions by senior management would be to:

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

D.

The best way to support risk-based decisions by senior management after a high-profile risk assessment would be to map the findings to objectives. This approach helps senior management to understand how the identified risks impact the organization's objectives and how the risks can be managed.

Option A, quantifying key risk indicators (KRIs), is useful in monitoring risk and in identifying potential issues that need to be addressed. However, it does not provide a complete picture of the risks and how they impact the organization's objectives.

Option B, recommending risk tolerance thresholds, is important in determining the level of risk that the organization is willing to accept. However, it does not provide a complete understanding of the risks and how they impact the organization's objectives.

Option C, providing a quantified detailed analysis, is useful in understanding the nature and extent of the risks. However, it may not provide a clear understanding of how the risks impact the organization's objectives and how they can be managed.

Mapping the findings to objectives is useful because it provides a clear understanding of how the identified risks impact the organization's objectives. It also helps to identify the most critical risks and how they can be managed to achieve the organization's objectives. This approach provides a comprehensive and integrated view of the risks, enabling senior management to make informed decisions based on the organization's objectives.

In conclusion, the best way to support risk-based decisions by senior management after a high-profile risk assessment is to map the findings to objectives. This approach provides a comprehensive and integrated view of the risks and enables senior management to make informed decisions based on the organization's objectives.