C. Chief information officer
The Chief Information Officer (CIO) is typically responsible for coordinating between the IT risk strategy and the business risk strategy. The CIO plays a key role in aligning IT initiatives and strategies with the overall business objectives and risk management goals of the organization. This includes ensuring that IT risks are integrated into the broader enterprise risk management framework.
While other roles, such as the Information Security Director and Internal Audit Director, may have specific responsibilities related to IT risk and security, the CIO often serves as the bridge between IT and the business, making them best positioned to coordinate the alignment of IT risk strategies with the organization's broader risk strategy.
Although 'coordination' is inaccurate, IT governance falls to the C-level (CIO), who is in charge of ensuring that IT supports the objectives of the organization. This responsibility is not the CISO's (chief information security officer).
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Staanlee
10 months, 2 weeks agoCbtL
1 year, 3 months agojohn_boogieman
1 year, 6 months agoRaj1510
2 years, 6 months agoCeecil1959
2 years, 4 months agoVirginiaJessamine
2 years, 6 months ago