WGU D368 ENTERPRISE RISK MANAGEMENT EXAM
264 QUESTIONS WITH VERIFIED ANSWERS
2025/2026
includes methods and processes used by organizations to manage risks and seize
opportunities related to the achievement of objectives - CORRECT ANSWER
Enterprise Risk Management (ERM)
the board's supervision of the risk management framework and risk management
process - CORRECT ANSWER Risk Oversight
the responsibility(s) of a company's management team in relation to risk -
CORRECT ANSWER Risk Management
identifying the organization's objectives, stakeholder obligations, statutory duties,
and the environment in which the organization operates - CORRECT ANSWER
understanding an organization: step 1
identifying the activities, assets/resources, including those outside the
organization, that support the delivery of these product services (process
mapping) - CORRECT ANSWER understanding an organization: step 2
assessing the impact/consequences over time of the failure of these
activities/assets/resources - CORRECT ANSWER understanding an organization:
step 3
,identifying/evaluating the perceived threats that could disrupt the organization's
key products and services and the critical activities/assets/resources that support
them - CORRECT ANSWER understanding an organization: step 4
utilize a proper steering committee. assign these people to participate in a cross-
functional forum to provide oversight on business continuity and information
security risk - CORRECT ANSWER preparing to manage risk: step 1
establish and document the right management structure according to authority -
CORRECT ANSWER preparing to manage risk: step 2
determine and document a formal risk management methodology to ensure
consistency and integrity of risk management throughout the organization -
CORRECT ANSWER preparing to manage risk: step 3
initiate and formalize the risk management business process by providing
appropriate formal risk management training to all individuals involved in risk
identification, business impact assessment, and risk treatment - CORRECT
ANSWER preparing to manage risk: step 4
Risk management creates and protects values - CORRECT ANSWER principle of
ERM: 1
Risk management is an integral part of all organizational processes - CORRECT
ANSWER principle of ERM: 2
,Risk management is part of decision making - CORRECT ANSWER principle of ERM:
3
Risk management should explicitly address uncertainty - CORRECT ANSWER
principle of ERM: 4
Risk management is systematic, timely, and structured - CORRECT ANSWER
principle of ERM: 5
Risk management is based on the best available information - CORRECT ANSWER
principle of ERM: 6
Risk management is tailored - CORRECT ANSWER principle of ERM: 7
Risk management takes human and cultural factors into account - CORRECT
ANSWER principle of ERM: 8
Risk management is transparent and inclusive - CORRECT ANSWER principle of
ERM: 9
Risk management is dynamic, iterative, and responsive to change - CORRECT
ANSWER principle of ERM: 10
Risk management facilitates continual improvement of the organization -
CORRECT ANSWER principle of ERM: 11
, establish the risk organization (Risk management architecture) - CORRECT
ANSWER major step to ERM: 1
define what ERM is, and what it should accomplish (Risk strategy) - CORRECT
ANSWER major step to ERM: 2
Define and document how risk assessment and risk management processes are
executed (Risk protocols) - CORRECT ANSWER major step to ERM: 3
Mandate and commitment: mandate and commitment from the board is critically
important and it needs to be continuous and high-profile. - CORRECT ANSWER
establishing the risk organization step 1
Designing a framework program for managing risk - CORRECT ANSWER
establishing the risk organization step 2
define and endorse the risk management policy - CORRECT ANSWER role of
management: 1
ensure that the organization's culture and risk management policy are aligned -
CORRECT ANSWER role of management: 2
determine risk management performance indicators that align with performance
indicators of the organization - CORRECT ANSWER role of management: 3
264 QUESTIONS WITH VERIFIED ANSWERS
2025/2026
includes methods and processes used by organizations to manage risks and seize
opportunities related to the achievement of objectives - CORRECT ANSWER
Enterprise Risk Management (ERM)
the board's supervision of the risk management framework and risk management
process - CORRECT ANSWER Risk Oversight
the responsibility(s) of a company's management team in relation to risk -
CORRECT ANSWER Risk Management
identifying the organization's objectives, stakeholder obligations, statutory duties,
and the environment in which the organization operates - CORRECT ANSWER
understanding an organization: step 1
identifying the activities, assets/resources, including those outside the
organization, that support the delivery of these product services (process
mapping) - CORRECT ANSWER understanding an organization: step 2
assessing the impact/consequences over time of the failure of these
activities/assets/resources - CORRECT ANSWER understanding an organization:
step 3
,identifying/evaluating the perceived threats that could disrupt the organization's
key products and services and the critical activities/assets/resources that support
them - CORRECT ANSWER understanding an organization: step 4
utilize a proper steering committee. assign these people to participate in a cross-
functional forum to provide oversight on business continuity and information
security risk - CORRECT ANSWER preparing to manage risk: step 1
establish and document the right management structure according to authority -
CORRECT ANSWER preparing to manage risk: step 2
determine and document a formal risk management methodology to ensure
consistency and integrity of risk management throughout the organization -
CORRECT ANSWER preparing to manage risk: step 3
initiate and formalize the risk management business process by providing
appropriate formal risk management training to all individuals involved in risk
identification, business impact assessment, and risk treatment - CORRECT
ANSWER preparing to manage risk: step 4
Risk management creates and protects values - CORRECT ANSWER principle of
ERM: 1
Risk management is an integral part of all organizational processes - CORRECT
ANSWER principle of ERM: 2
,Risk management is part of decision making - CORRECT ANSWER principle of ERM:
3
Risk management should explicitly address uncertainty - CORRECT ANSWER
principle of ERM: 4
Risk management is systematic, timely, and structured - CORRECT ANSWER
principle of ERM: 5
Risk management is based on the best available information - CORRECT ANSWER
principle of ERM: 6
Risk management is tailored - CORRECT ANSWER principle of ERM: 7
Risk management takes human and cultural factors into account - CORRECT
ANSWER principle of ERM: 8
Risk management is transparent and inclusive - CORRECT ANSWER principle of
ERM: 9
Risk management is dynamic, iterative, and responsive to change - CORRECT
ANSWER principle of ERM: 10
Risk management facilitates continual improvement of the organization -
CORRECT ANSWER principle of ERM: 11
, establish the risk organization (Risk management architecture) - CORRECT
ANSWER major step to ERM: 1
define what ERM is, and what it should accomplish (Risk strategy) - CORRECT
ANSWER major step to ERM: 2
Define and document how risk assessment and risk management processes are
executed (Risk protocols) - CORRECT ANSWER major step to ERM: 3
Mandate and commitment: mandate and commitment from the board is critically
important and it needs to be continuous and high-profile. - CORRECT ANSWER
establishing the risk organization step 1
Designing a framework program for managing risk - CORRECT ANSWER
establishing the risk organization step 2
define and endorse the risk management policy - CORRECT ANSWER role of
management: 1
ensure that the organization's culture and risk management policy are aligned -
CORRECT ANSWER role of management: 2
determine risk management performance indicators that align with performance
indicators of the organization - CORRECT ANSWER role of management: 3
