Which of the following is not an appropriate role of the internal audit activity in governance activities?
A. Support the board in enterprise-wide risk assessment.
B. Ensure the timely implementation of audit recommendations.
C. Monitor compliance with the organization’s ethics policies.
D. Discuss areas of significant risk.