Certified in Risk and Information Systems Control (CRISC) — Question 562

Which of the following is the MOST important consideration for effectively maintaining a risk register?

Answer options

• A. The register is updated frequently.
• B. Compensating controls are identified.
• C. The register is shared with executive management.
• D. An IT owner is assigned for each risk scenario.

Correct answer: A

Explanation

The most crucial aspect of a risk register is that it is updated frequently, as this ensures that it reflects the current risk landscape. While identifying compensating controls, sharing with management, and assigning IT owners are important, they do not directly address the need for continuous updates, which is vital for effective risk management.