Certified in Risk and Information Systems Control (CRISC) — Question 303
Which of the following risk register updates is MOST important for senior management to review?
Answer options
- A. Avoiding a risk that was previously accepted
- B. Extending the date of a future action plan by two months
- C. Retiring a risk scenario no longer used
- D. Changing a risk owner
Correct answer: A
Explanation
Avoiding a risk that was previously accepted is crucial for senior management as it indicates a significant change in the organization's risk posture. The other options, while important, do not reflect as substantial a shift in risk management strategy as avoiding an accepted risk, which could have larger implications for project success and resource allocation.