The MOST effective approach to ensure senior management sponsorship of IT risk management is to integrate IT risk into enterprise risk management (ERM).
ERM is a framework for managing all risks that an organization faces, including IT risks. When IT risk is integrated into ERM, it means that senior management is aware of the IT risks that the organization faces and is committed to managing those risks.
It should be C.
The most effective approach to ensure senior management sponsorship of IT risk management is to integrate IT risk into enterprise risk management (option C). This approach helps to align IT risk management with overall organizational objectives and helps to communicate the importance of IT risk management to senior management. Periodic review of the IT risk register entries (option A), benchmarking risk framework against best practices (option B), and calculating financial impact for each IT risk finding (option D) can also be useful, but they are not as effective as integrating IT risk into enterprise risk management.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.CGEIT Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
yihwen
1 year agoFrank1480
1 year, 5 months ago