ISACA IT Risk Fundamentals Practice Test

In risk and governance, a stakeholder is any person or group that has a responsibility for, an expectation from, or some other interest in the enterprise. This includes internal participants like executives, managers, and employees, as well as external ones such as customers, regulators, investors, suppliers, and the wider community. The concept is broad by design because it captures all parties that can affect or be affected by the organization's actions and outcomes. The other terms point to different ideas: an asset is a valuable resource, risk governance is the framework for overseeing risk management, and access risk refers to a specific type of risk tied to who can access systems. Therefore, stakeholder best fits the description.