CRISC Certified in Risk and Information Systems Control – Question767

Which of the following is MOST important for maintaining the effectiveness of an IT risk register?

A.
Recording and tracking the status of risk response plans within the register.
B. Communicating the register to key stakeholders.
C. Performing regular reviews and updates to the register.
D. Removing entries from the register after the risk has been treated.

Correct Answer: C