- Email support@dumps4free.com
Topic 1 : Pool A
Which of the following attributes of a key risk indicator (KRI) is MOST important?
A.
Repeatable
B.
Automated
C.
Quantitative
D.
Qualitative
Repeatable
What should a risk practitioner do FIRST upon learning a risk treatment owner has implemented a different control than what was specified in the IT risk action plan?
A.
Seek approval from the control owner.
B.
Update the action plan in the risk register.
C.
Reassess the risk level associated with the new control.
D.
Validate that the control has an established testing method.
Reassess the risk level associated with the new control.
Which of the following is the GREATEST concern associated with redundant data in an organization's inventory system?
A.
Poor access control
B.
Unnecessary data storage usage
C.
Data inconsistency
D.
Unnecessary costs of program changes
Data inconsistency
What are the MOST important criteria to consider when developing a data classification scheme to facilitate risk assessment and the prioritization of risk mitigation activities?
A.
Mitigation and control value
B.
Volume and scope of data generated daily
C.
Business criticality and sensitivity
D.
Recovery point objective (RPO) and recovery time objective (RTO)
Business criticality and sensitivity
Which of the following is the MOST important consideration when multiple risk practitioners capture risk scenarios in a single risk register?
A.
Aligning risk ownership and control ownership
B.
Developing risk escalation and reporting procedures
C.
Maintaining up-to-date risk treatment plans
D.
Using a consistent method for risk assessment
Using a consistent method for risk assessment
| Page 15 out of 193 Pages |
| Previous |