While risk acceptance criteria, risk severity level, and risk appetite are also important components of a risk management framework, without clear risk ownership, it can be challenging to effectively manage and address risks within an organization. Therefore, capturing risk ownership is often considered a fundamental aspect of a robust risk register.
Based on Elimination method. Acceptance criteria, appetite, severity are identified in prior stages itself. So the it's important to assign the risk to someone so they can be accountable
Definitely not C> A or B. A risk register is a business record that contains information about business risks and information about their origin, potential impact, affected assets, probability of occurrence, and treatment.
Gregory, Peter H.; Gregory, Peter H.. CISM Certified Information Security Manager Bundle (p. 258). McGraw Hill LLC. Kindle Edition.
The MOST important detail to capture in an organization's risk register is risk ownership. Therefore, the correct answer is option C.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.CISM Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
oluchecpoint
Highly Voted 1 year, 4 months agod3fa4d2
Most Recent 8 months, 2 weeks agoGoseu
1 year, 5 months agorichck102
1 year, 6 months agojennarink13
1 year, 6 months agodevilend
1 year, 7 months agoCarlPTY07
1 year, 9 months agoSouvik124
1 year, 10 months ago