Which of the following is NOT an objective of a risk audit?
A. Confirming that risk management has been practiced throughout the project life cycle
B. Confirming that the project is well managed and that the risks are being controlled
C. Evaluating the effectiveness of risk responses in dealing with identified risks
D. Ensuring that each risk identified and deemed critical has a computed expected value
