Certified in Risk and Information Systems Control (CRISC) — Question 1056
Which of the following actions assures management that the organization's objectives are protected from the occurrence of risk events?
Answer options
- A. Internal control
- B. Risk management
- C. Hedging
- D. Risk assessment
Correct answer: A
Explanation
Internal control systems are designed to ensure that an organization's objectives are met while minimizing risks. Risk management, while important, is broader and focuses on identifying and mitigating risks but does not guarantee protection like internal controls do. Hedging is a financial strategy to offset risk but does not directly relate to organizational objectives, and risk assessment is the process of identifying risks rather than protecting against them.