Tag - CRISC exam

Which of the following is the first MOST step in the risk assessment process?A . Identification of assetsB . Identification of threatsC . Identification of threat sourcesD . Identification of vulnerabilitiesView AnswerAnswer: A Explanation: Asset identification is the most crucial and first step in the risk assessment process. Risk identification,...

Out of several risk responses, which of the following risk responses is used for negative risk events?A . ShareB . EnhanceC . ExploitD . AcceptView AnswerAnswer: D Explanation: Among the given choices only Acceptance response is used for negative risk events. Risk acceptance means that no action is taken relative...

Which section of the Sarbanes-Oxley Act specifies "Periodic financial reports must be certified by CEO and CFO"?A . Section 302B . Section 404C . Section 203D . Section 409View AnswerAnswer: A Explanation: Section 302 of the Sarbanes-Oxley Act requires corporate responsibility for financial reports to be certified by CEO, CFO,...

What are the responsibilities of the CRO? Each correct answer represents a complete solution. Choose three.A . Managing the risk assessment processB . Implement corrective actionsC . Advising Board of DirectorsD . Managing the supporting risk management functionView AnswerAnswer: ABD Explanation: Chief Risk Officer is the executive-level manager in an...

Which of the following are risk components of the COSO ERM framework? Each correct answer represents a complete solution. Choose three.A . Risk responseB . Internal environmentC . Business continuityD . Control activitiesView AnswerAnswer: ABD Explanation: The risk components defined by the COSO ERM are internal environment, objective settings, event...

You work as the project manager for Bluewell Inc. Your project has several risks that will affect several stakeholder requirements. Which project management plan will define who will be available to share information on the project risks?A . Risk Management PlanB . Stakeholder management strategyC . Communications Management PlanD ....

Which of the following aspect of monitoring tool ensures that the monitoring tool has the ability to keep up with the growth of an enterprise?A . ScalabilityB . CustomizabilityC . SustainabilityD . Impact on performanceView AnswerAnswer: A Explanation: Monitoring tools have to be able to keep up with the growth...

You work as the project manager for Bluewell Inc. Your project has several risks that will affect several stakeholder requirements. Which project management plan will define who will be available to share information on the project risks?A . Resource Management PlanB . Risk Management PlanC . Stakeholder management strategyD ....

An enterprise has identified risk events in a project. While responding to these identified risk events, which among the following stakeholders is MOST important for reviewing risk response options to an IT risk.A . Information security managersB . Internal auditorsC . Incident response team membersD . Business managersView AnswerAnswer: D...

You are the project manager of GHT project. You have identified a risk event on your project that could save $100,000 in project costs if it occurs. Which of the following statements BEST describes this risk event?A . This risk event should be mitigated to take advantage of the savings.B...