Which of the following is the PRIMARY purpose of periodically reviewing an organization’s risk profile?
A. Design and implement risk response action plans
B. Align business objectives with risk appetite
C. Enable risk-based decision making
D. Update risk responses in the risk register
A. Design and implement risk response action plans
B. Align business objectives with risk appetite
C. Enable risk-based decision making
D. Update risk responses in the risk register