Which of the following is a responsibility of the second line in the three lines...

Comprehensive and Detailed Explanation (aligned to ISACA CRISC guidance)

In the three lines model (formerly three lines of defense), the second line provides risk management, compliance oversight, and specialized support to the first line (operational management). One of its key responsibilities is monitoring the risk environment and alerting operational management to emerging issues—such as new regulatory requirements, changes in risk levels, and control weaknesses—while advising on appropriate responses. Implementing corrective actions is primarily the responsibility of the first line, which owns the processes. Owning risk scenarios and bearing loss consequences are first-line management responsibilities. Performing duties independently to provide assurance is the role of the third line (internal audit), which maintains organizational independence. Thus, the function of monitoring and advising, including escalation of emerging issues, aligns directly with the mandate of the second line.