A large financial institution is currently reviewing its strategies and protocols for managing operational risk, in alignment with the Basel Committee's guidelines. Considering this within the framework of the three lines of defense, which of the following statements is correct?
