Ahigh-level risk mapvisually summarizes risk exposure by plottinglikelihood versus impactfor all key risk scenarios. This helps senior management quickly identify priority risks.
ISACA CRISC notes:
“Risk heat maps or risk matrices are effective tools to communicate risk levels to executives because they visually demonstrate the distribution and severity of risks across the organization.”
Threat lists (A) or vulnerability lists (D) are too detailed and not decision-oriented.
Therefore,B. A high-level risk mapis correct.
CRISC Reference:Domain 4 – Risk and Control Monitoring and Reporting, Topic: Risk Communication Tools and Dashboards.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit