An organization is assembling its enterprise risk register. Which of the following elements should be documented for each listed risk so the team receives an early warning when the likelihood or impact of that risk begins to increase?
A Key Risk Indicator (KRI) is a forward-looking metric tied to a specific risk. Tracking KRIs inside, or in direct association with, the risk register allows risk owners to spot deteriorating trends and take action before the threat reaches an unacceptable level. Items such as service-level agreements, memoranda of understanding, or general performance metrics do not fulfill this early-warning function within the risk register.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.