CRISC Certified in Risk and Information Systems Control – Question495

Which of the following is the BEST method to maintain a common view of IT risk within an organization?

A.
Establishing and communicating the IT risk profile
B. Performing and publishing an IT risk analysis
C. Collecting data for IT risk assessment
D. Utilizing a balanced scorecard

Correct Answer: B