New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

AGA GFMC Exam - Topic 1 Question 9 Discussion

Actual exam question for AGA's GFMC exam
Question #: 9
Topic #: 1
[All GFMC Questions]

What is the formal tam for the listing and assessment of an agency's top risks?

Show Suggested Answer Hide Answer
Suggested Answer: A

What Is a Risk Profile? A risk profile is the formal listing and assessment of an agency's top risks. It identifies the risks that could significantly impact an organization's ability to achieve its objectives and prioritizes them based on factors like likelihood and impact.

Why Is the Risk Profile Important?

The risk profile helps management focus on the most critical risks and allocate resources to address them effectively. It is a core element of enterprise risk management frameworks (e.g., COSO ERM).

In the federal government, OMB Circular A-123 requires agencies to maintain a risk profile as part of their internal control and risk management processes.

Why Other Options Are Incorrect:

B . Risk Management Plan: This is broader and includes strategies for mitigating and monitoring risks, not just listing and assessing them.

C . Risk Assessment: This is a process used to identify and evaluate risks but does not specifically refer to the formal listing of risks.

D . Risk Register: While similar to a risk profile, a risk register typically includes more granular details, such as specific control measures, responsibilities, and timelines.

Reference and Documents:

OMB Circular A-123: Requires federal agencies to develop a risk profile as part of their risk management framework.

COSO ERM Framework (2017): Describes the risk profile as a tool for managing enterprise-wide risks.


by Dacia at Oct 19, 2025, 01:01 PM

Limited Time Offer

25%

Off

Get Premium GFMC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Becky
10 hours ago
C) risk assessment seems too broad for this.
upvoted 0 times
...
Sommer
6 days ago
I lean towards D) risk register. It fits the description.
upvoted 0 times
...
Cora
11 days ago
I think it's A) risk profile. It sounds right.
upvoted 0 times
...
Cordelia
16 days ago
A risk register lists and assesses top risks, right?
upvoted 0 times
...
Marta
21 days ago
Totally agree, it's the risk register for sure!
upvoted 0 times
...
Gilma
26 days ago
Wait, is it really called a risk register? Sounds off.
upvoted 0 times
...
Dacia
1 month ago
I thought it was a risk profile.
upvoted 0 times
...
Eric
1 month ago
Ah, the age-old battle of risk terminology. D) risk register FTW!
upvoted 0 times
...
Karrie
1 month ago
Risk register? More like risk bingo, am I right? *wink wink*
upvoted 0 times
...
Dean
2 months ago
D) risk register, hands down. Sounds like the most official and comprehensive term for the job.
upvoted 0 times
...
Alesia
2 months ago
A) risk profile is a bit too vague, don't you think? Gotta be more specific for a certification exam.
upvoted 0 times
...
Youlanda
2 months ago
B) risk management plan is the way to go. Covers all the bases, you know?
upvoted 0 times
...
Shad
2 months ago
C) risk assessment seems like the most logical choice here. Gotta love these tricky certification questions!
upvoted 0 times
...
Nichelle
2 months ago
It's definitely a risk register!
upvoted 0 times
...
Luisa
3 months ago
D) risk register is the correct answer. It's the formal term for listing and assessing an agency's top risks.
upvoted 0 times
...
Nenita
3 months ago
Hmm, this is a tricky one. I'm leaning towards D) risk register, since that sounds like the most specific and formal term for cataloging an agency's key risks. But I'm not 100% sure, so I may have to make an educated guess on this.
upvoted 0 times
...
Kati
3 months ago
Let me think this through. I know it has to do with risk management, so I'm guessing it's either B) risk management plan or D) risk register. I'll have to carefully consider the differences between those two options.
upvoted 0 times
...
Shizue
3 months ago
Okay, I've seen this kind of question before. I'm pretty confident the answer is "risk register" - that's the standard term for the formal list and assessment of an organization's top risks.
upvoted 0 times
...
Dorothy
4 months ago
Ugh, I'm not totally sure about this one. Is it asking for the specific name of the document or process? I know it has to do with risk management, but the options sound a bit similar.
upvoted 0 times
...
Rebbecca
4 months ago
Hmm, I think this is asking about the formal term for how an agency lists and evaluates its main risks. I'm pretty sure it's something like a "risk register" or "risk assessment."
upvoted 0 times
Eleonora
2 months ago
I believe it's a "risk register."
upvoted 0 times
...
...
Mitzie
4 months ago
I’m confused between A and D. I think we had a practice question that mentioned both terms, but I can't remember the details.
upvoted 0 times
...
Wilda
4 months ago
I feel like the risk management plan is more about strategies rather than just listing risks, so I’m leaning towards D) risk register.
upvoted 0 times
...
William
4 months ago
I remember discussing risk registers, but I can't recall if that's the same as a risk profile.
upvoted 0 times
...
Lizbeth
5 months ago
I think the answer might be A) risk profile, but I'm not entirely sure. We covered something similar in class.
upvoted 0 times
...

Save Cancel