ExamGecko
Search Search Login
Home Home / IIA / IIA-CIA-Part1
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A new chief audit executive wants to develop a formal internal control framework for her organization. She uses globally accepted frameworks as a guide. Which of the following would she likely find critical in creating the new framework for her organization?
An engagement supervisor notes that an internal auditor usually documents and submits draft audit reports for review without giving the process owners the opportunity to state their position on the issues raised. How should the engagement supervisor respond?
Which of the following offers the feast evidence that the internal audit activity has achieved organizational independence?
Which of the following situations is most likely to threaten the independence of the internal audit activity?
Which of the following actions by an organization's board would potentially impair the internal audit activity's independence?
Which of the following actions does a competency assessment tool help the chief audit executive perform?
Which of the following is the internal audit activity expected to do with respect to the organization's governance processes?
Which of the following best demonstrates conformance with the Standards relating to continuing professional development of internal auditors?
Which of the following statements is true regarding risk management frameworks?
How can an Internal audit activity contribute to Its organization's risk assessment process?

Question 602 - IIA-CIA-Part1 discussion

Report
Export

A risk assessment showed that the cost of addressing a particular risk in the organization's human resources department is greater than the perceived benefit. Which risk response approach should the organization take in this scenario?

A.

Reduce the risk.

Answers
A.

Reduce the risk.

B.

Transfer the risk.

Answers
B.

Transfer the risk.

C.

Accept the risk.

Answers
C.

Accept the risk.

D.

Share the risk.

Answers
D.

Share the risk.

Suggested answer: C

Explanation:

When a risk assessment shows that the cost of addressing a particular risk is greater than the perceived benefit, the appropriate risk response approach is to accept the risk. Risk acceptance means acknowledging that the risk exists but deciding not to take any action to mitigate it, usually because the cost of mitigation is higher than the potential impact. This approach is a rational decision when the risk is deemed to have a low likelihood or impact, or when other controls are considered sufficient.

The IIA Standards: Standard 2120 -- Risk Management: 'The internal audit activity must evaluate the effectiveness and contribute to the improvement of risk management processes.'

COSO ERM Framework: Discusses risk response options including risk acceptance as a viable strategy when the cost-benefit analysis justifies it.

Show Answer
asked 03/11/2024
Austine Ogheneruemu Onakpoma
42 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms