The Enterprise Risk Management-Integrated Framework of the committee of sponsoring organizations (COSO) is best defined as a:
a. Process that replaces the COSO internal control framework.
b. Process that takes a control-based approach to an organization.
c. Serial process in which one component affects only the next component.
d. Process effected by an entity's board of directors, management, and other personnel.
Answer: D