A large investment organization hired a chief risk officer (CRO) to be responsible for the organization's risk management processes. Which of the following people should prioritize risks to be used for the audit plan?
A) Operational management, because they are responsible for the day-to-day management of the operational risks.
B) The CRO, because he is responsible for coordinating and project managing risk activities based on his specialized skills and knowledge.
C) The chief audit executive, although he is not accountable for risk management in the organization.
D) The CEO, because he has ultimate responsibility for ensuring that risks are managed within the agreed tolerance limits set by the board.
Correct Answer:
Verified
Q447: According to the International Professional Practices Framework,
Q448: An internal auditor is conducting an assessment
Q449: In performance auditing, which of the following
Q450: Which of the following events would most
Q451: An internal auditor is assessing the organization's
Q453: Which of the following factors would the
Q454: Which of the following actions are appropriate
Q455: A code of business conduct should include
Q456: Which of the following is a detective
Q457: According to IIA guidance, which of the
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents