Certified in Risk and Information Systems Control (CRISC) — Question 1177
Which of the following is the BEST way to maintain a current list of organizational risk scenarios?
Answer options
- A. Conduct periodic risk reviews with stakeholders.
- B. Perform regular reviews of key controls.
- C. Conduct compliance reviews.
- D. Automate workflow for risk status updates.
Correct answer: A
Explanation
The best approach to ensure a current list of organizational risk scenarios is to conduct periodic risk reviews with stakeholders, as this method allows for direct input and feedback from those involved. Performing regular reviews of key controls, conducting compliance reviews, and automating workflows are important, but they do not specifically focus on updating risk scenarios in the same collaborative manner.