Explanation: The primary function of the enterprise is to meet its objective. Each business activity for fulfilling enterprise’s objective carries both risk and opportunity, therefore objective should be considered while managing risk.
Open and fair communication should me there for effective risk management. Open, accurate, timely and transparent information on lT risk is exchanged and serves as the basis for all risk-related decisions.
Cost-benefit analysis should be done for proper weighing the total costs expected against the total benefits expected, which is the major aspect of risk management.
Incorrect Answers:
A: For effective risk management, there should be continuous improvement, not consistent. Because of the dynamic nature of risk, risk management is an iterative, perpetual and ongoing process; that’s why, continuous improvement is required.