· is usually referred to as the overall risk management executive (or sometimes the chief paranoia officer, if the layman’s definition is considered).
· Thus, the CEO is responsible for ensuring that critical risks faced by the organization are being managed and mitigated to acceptable levels.
In smaller organizations where the board and the executive team are composed of almost the same people, the oversight functions may not apply, as the executive team is where management begins.