With regard To IT governance, which of the following is the most effective and appropriate role for the internal audit activity?

With regard To IT governance, which of the following is the most effective and appropriate role for the internal audit activity?
A . Independently evaluate the skills and experience of potential chief information officer candidates to assess the best fit based on the organization’s risk appetite.
B . Evaluate the organization’s governance standards and assess IT-related activities to identify gaps and develop policies, ensuring alignment with the organization’s risk appetite.
C . Assist management in interpreting complex IT-related privacy and security risk exposures and evaluating potential mitigation strategies.
D . Assess whether governance activities are aligned with the organization’s risk appetite and take into consideration emerging risks.

View Answer

Answer: D