Should be Managing Controls. According to the ISACA Glossary:
Risk owner
The person in whom the organization has invested the authority and accountability for making risk-based decisions and who owns the loss associated with a realized risk scenario.
Scope Notes: The risk owner may not be responsible for the implementation of risk treatment.
https://www.isaca.org/resources/glossary
risk owner should be the person accountable for the business process affected by the risk, ensuring they can assess, escalate, and make informed decisions about mitigation strategies
A risk owner is like a business unit manager who is responsible for ensuring their operations run smoothly with minimal risk. They own the risk because it affects their process, but the actual mitigation steps (such as security controls or policy enforcement) may be carried out by other teams.
D. The risk owner is typically the person who is accountable for the business process that is affected by the risk. This person has the authority and responsibility to manage the risk and ensure that appropriate risk responses are implemented.
A. Implementing actions.
A risk owner is the person who is accountable for "A. implementing actions." This includes overseeing the execution of risk response plans, ensuring that appropriate controls are put in place, and managing the activities needed to mitigate or manage the identified risks. The risk owner is responsible for making sure that the agreed-upon actions are carried out effectively to address the risks.
While other options (managing controls, the risk management process, the business process) can be related to various aspects of risk management, the primary accountability of a risk owner is to ensure that the necessary actions are taken to address and manage the identified risks.
Risk owner is accountable for the whole risk management process( for the assigned risk) from A-Z from identification to monitoring. Responsibilities fall under different teams.
The risk professional is responsible for the risk management process, but the risk owner, the individual to whom the risk was assigned is also the one responsible for the the that business process because they have more knowledge of the process.
Risk owner is accountable for the implementation. He is not responsible but accountable. RACI .
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
aselunar
Highly Voted 3 years, 11 months agoIcs2Pass
3 years, 9 months agoRamye
3 years, 9 months agofaed87a
Most Recent 1 month, 2 weeks agofaed87a
1 month, 2 weeks agoreverse01
9 months, 3 weeks agoStaanlee
1 year, 8 months agomraiyan
1 year, 10 months agoreverse01
9 months, 3 weeks agoJulianleehk
2 years agoCbtL
2 years, 1 month agojohn_boogieman
2 years, 2 months agoGRamos
2 years, 4 months ago