A CEO of a large enterprise is concerned that risk events are not regularly addressed at the C-suite level unless related to emergency incidents. Which of the following is the BEST way for the CEO to ensure risk events are given sufficient time and attention?
A. Instruct managers to take ownership for their department’s identified risks.
B. Issue performance objectives that target the elimination of enterprise risks.
C. Include the discussion of key enterprise risk as an agenda item at board meetings.
D. Require the development of a risk procedure on how to capture risks.
A. Instruct managers to take ownership for their department’s identified risks.
B. Issue performance objectives that target the elimination of enterprise risks.
C. Include the discussion of key enterprise risk as an agenda item at board meetings.
D. Require the development of a risk procedure on how to capture risks.