Company X is a large company which is traded on the UK stock exchange. According to the Companies (Miscellaneous Reporting) Regulations 2018- is it obligatory for Company X to follow a Corporate Governance Code?
The correct answer is 4 - the policy is 'comply or explain' - basically say which code you follow, or explain (publicly) why you're not following one. See p. 145 for more information on this
In which of the following industries is it common to find dedicated resource for risk management?
Banking and Insurance industries usually have a dedicated resource. This mean people working within the company are dedicated to this role (as opposed to using a third party). P. 146
Which of the following statements is true about a Disaster Recovery Plan? Select TWO
Answers 2 and 4 are correct. A Business Continuity Plan is held at the top level, not a disaster recovery plan. This can be held at the department level- or whoever would have the ability to enact this if a disaster were to happen. A company is likely to have several Disaster Recovery Plans for different departments and different scenarios so several people within the organisation may be accountable for these. Option 3 is incorrect as the focus is on recovering systems (e.g. getting people back online) not on profit. P.155