Certified Internal Auditor (CIA) Part 3: Business Knowledge for Internal Auditing — Question 241

Which of the following are typical responsibilities for operational management within a risk management program?
1. Implementing corrective actions to address process deficiencies.
2. Identifying shifts in the organization's risk management environment.
3. Providing guidance and training on risk management processes.
4. Assessing the impact of mitigation strategies and activities.

Answer options

• A. 1 and 2 only
• B. 1 and 4 only
• C. 2 and 3 only
• D. 3 and 4 only

Correct answer: B

Explanation

The correct answer is B because operational management is primarily responsible for implementing corrective actions (1) and assessing the effectiveness of mitigation strategies (4). Options A, C, and D include responsibilities that do not align as closely with the core duties of operational management in a risk management context.