If appropriate safeguards exist, which of the following is considered a legitimate internal audit role within risk management at an organization?

If appropriate safeguards exist, which of the following is considered a legitimate internal audit role within risk management at an organization?
A . Imposing risk management processes.
B . Providing consolidated reporting on risks.
C . Taking accountability for risk management.
D . Making decisions on risk responses.

View Answer

Answer: B