Which of the following is the PRIMARY purpose of information governance?

You are working with your project stakeholders to identify risks within the JKP Project.
You want to use an approach to engage the stakeholders to increase the breadth of the identified risks by including internally generated risk. Which risk identification approach is most suited for this goal?

Which of the following examples are included in the application controls embedded in business process applications? Each correct answer represents a complete solution.
Choose all that apply.

Walter is the project manager of a large construction project. He'll be working with several vendors on the project. Vendors will be providing materials and labor for several parts of the project. Some of the works in the project are very dangerous so Walter has implemented safety requirements for all of the vendors and his own project team.
Stakeholders for the project have added new requirements, which have caused new risks in the project. A vendor has identified a new risk that could affect the project if it comes into fruition. Walter agrees with the vendor and has updated the risk register and created potential risk responses to mitigate the risk. What should Walter also update in this scenario considering the risk event?

Jane is the project manager of the GBB project for her company. In the current project a vendor has offered the project a ten percent discount based if they will order 100 units for the project. It is possible that the GBB Project may need the 100 units, but the cost of the units is not a top priority for the project. Jane documents the offer and tells the vendor that they will keep the offer in mind and continue with the project as planned.
What risk response has been given in this project?