Which of the following is NOT a method for risk mitigation?

Risk communication is primarily about informing and engaging stakeholders about risks, their implications, and the measures taken to manage them. While it plays an essential role in the overall risk management process, it does not directly mitigate risk. Risk communication involves dialogues and sharing information to ensure that everyone involved understands the nature of the risks and the strategies in place to address them.

In contrast, risk acceptance, risk transference, and risk elimination are all methods specifically aimed at mitigating risks. Risk acceptance involves acknowledging the risk and choosing to accept it as is, often because the cost of mitigation may exceed the potential loss. Risk transference shifts the financial burden of risk to another party, such as through insurance or outsourcing. Risk elimination is the act of removing the risk entirely, often by changing processes or system configurations to eliminate hazards.

Thus, while risk communication is a critical component of a comprehensive risk management strategy, it does not directly function as a risk mitigation method, making it the correct answer in this context.