Certified in Risk and Information Systems Control (CRISC) — Question 1109

Which of the following has the GREATEST impact on ensuring the alignment of the risk profile with business objectives?

Answer options

• A. Incorporation of industry best practice benchmarks and standards
• B. An effective enterprise-wide risk awareness program
• C. Senior management approval of risk appetite and tolerance
• D. Stage gate reviews throughout the risk management process

Correct answer: C

Explanation

The correct answer is C because senior management's approval sets the tone for the organization's risk appetite and tolerance, ensuring that risk management aligns with strategic objectives. Options A and B are important but serve more as supportive measures rather than directly influencing alignment. Option D, while helpful for oversight, does not have the same level of impact on aligning risk with business goals.