Examice

Exam IIA-CIA-Part2 All QuestionsBrowse all questions from this exam

Question 184

An organization has adopted an enterprise-wide risk management process and has appointed a chief risk officer (CRO) to manage the process. The board has requested that the audit committee have oversight over the risk management function. Which of the following statements is not true regarding this situation?

The audit committee should get assurance on the adequacy and effectiveness of the risk management process from the CRO.

The chief audit executive has the mandate to conduct risk assessments and give assurance to the audit committee.

The audit committee, on behalf of the board, has overall responsibility for the risk management process in the organization.

Senior management is accountable to the board for monitoring the system of internal controls.

Correct Answer: C

The audit committee, on behalf of the board, does not have overall responsibility for the risk management process in the organization. The responsibility for managing risks typically lies with senior management, while the audit committee's role is to provide oversight and ensure that management has an effective risk management process in place.

Discussion

TicoOption: A

I realized this is "which is NOT true" question. A is the correct answer because assurance is not provided by CRO.

TicoOption: D

Why not D? assurance should be provided by IAA or other assurance providers...