Certified in Risk and Information Systems Control (CRISC) — Question 243

Which of the following is the MOST important aspect to ensure that an accurate risk register is maintained?

Answer options

• A. Publish the risk register in a knowledge management platform with workflow features that periodically contacts and polls risk assessors to ensure accuracy of content
• B. Perform regular audits by audit personnel and maintain risk register
• C. Submit the risk register to business process owners for review and updating
• D. Monitor key risk indicators, and record the findings in the risk register

Correct answer: A

Explanation

Option A is correct because it emphasizes the importance of ongoing engagement with risk assessors to ensure the risk register remains accurate. The other options, while helpful, do not provide the same level of continuous oversight and verification necessary for maintaining the accuracy of the risk register.