CGEIT Question #114: Real Exam Question with Answer & Explanation

Question

An IT strategy committee wants to ensure that a risk program is successfully implemented throughout the enterprise. Which of the following would BEST support this goal?

Options

• AA risk management framework
• BMandatory risk awareness courses for staff
• CA risk recognition and reporting policy
• DCommitment from senior management

Explanation

For an IT strategy committee to ensure successful enterprise-wide implementation of a risk program, commitment from senior management is the best support.

Common mistakes.

• A. A risk management framework provides structure and guidelines, but without senior management commitment, its implementation and adoption may lack enforcement and resources.
• B. Mandatory risk awareness courses are important for staff education, but they are a tactic within a program, not the primary factor ensuring enterprise-wide successful implementation.
• C. A risk recognition and reporting policy defines procedures, but its effectiveness and adherence depend heavily on senior management's commitment to support and enforce it.

Concept tested. Enterprise risk management implementation success factors

No community discussion yet for this question.