Which best describes the primary role of a governing body?
OPTIONS
- To establish and regularly review the goals cascade throughout the organization
- To develop and regularly review IT measurements and metrics
- To annually review and approve IT projects to maximize business value
- To establish and regularly review the effectiveness of risk management and internal controls
ANSWER
To establish and regularly review the effectiveness of risk management and internal controls
EXPLANATION
The governing body should maintain risk management systems and internal control systems and review their effectiveness annually, at least.