ExamGecko
Login
Home / Isaca / CRISC / List of questions
Ask Question

Isaca CRISC Practice Test - Questions Answers, Page 104

Add to Whishlist

List of questions

Question 1031

Report Export Collapse

A risk practitioner recently discovered that personal information from the production environment is required for testing purposes in non-production environments. Which of the following is the BEST recommendation to address this situation?

Become a Premium Member for full access
  Unlock Premium Member

Question 1032

Report Export Collapse

Which of the following is the GREATEST concern when establishing key risk indicators (KRIs)?

Become a Premium Member for full access
  Unlock Premium Member

Question 1033

Report Export Collapse

Which of the following provides the MOST useful information to assess the magnitude of identified deficiencies in the IT control environment?

Become a Premium Member for full access
  Unlock Premium Member

Question 1034

Report Export Collapse

Which of the following provides the BEST assurance of the effectiveness of vendor security controls?

Become a Premium Member for full access
  Unlock Premium Member

Question 1035

Report Export Collapse

The MAIN purpose of selecting a risk response is to.

Become a Premium Member for full access
  Unlock Premium Member

Question 1036

Report Export Collapse

Which component of a software inventory BEST enables the identification and mitigation of known vulnerabilities?

Become a Premium Member for full access
  Unlock Premium Member

Question 1037

Report Export Collapse

Which of the following is the BEST way to ensure data is properly sanitized while in cloud storage?

Become a Premium Member for full access
  Unlock Premium Member

Question 1038

Report Export Collapse

Which risk response strategy could management apply to both positive and negative risk that has been identified?

Become a Premium Member for full access
  Unlock Premium Member

Question 1039

Report Export Collapse

An organization's recovery team is attempting to recover critical data backups following a major flood in its data center. However, key team members do not know exactly what steps should be taken to address this crisis. Which of the following is the MOST likely cause of this situation?

Become a Premium Member for full access
  Unlock Premium Member

Question 1040

Report Export Collapse

A control process has been implemented in response to a new regulatory requirement, but has significantly reduced productivity. Which of the following is the BEST way to resolve this concern?

Become a Premium Member for full access
  Unlock Premium Member
Total 1.573 questions
Go to page: of 158
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following is MOST important to determine when assessing the potential risk exposure of a loss event involving personal data?
Which of the following is a risk practitioner's BEST course of action after identifying risk scenarios related to noncompliance with new industry regulations?
When reviewing management's IT control self-assessments, a risk practitioner noted an ineffective control that links to several low residual risk scenarios. What should be the NEXT course of action?
An effective control environment is BEST indicated by controls that:
A global organization is considering the acquisition of a competitor. Senior management has requested a review of the overall risk profile from the targeted organization. Which of the following components of this review would provide the MOST useful information?
Which of the following is the MOST effective way to integrate business risk management with IT operations?
During testing, a risk practitioner finds the IT department's recovery time objective (RTO) for a key system does not align with the enterprise's business continuity plan (BCP). Which of the following should be done NEXT?
The BEST key performance indicator (KPI) to measure the effectiveness of a backup process would be the number of:
During an IT risk scenario review session, business executives question why they have been assigned ownership of IT-related risk scenarios. They feel IT risk is technical in nature and therefore should be owned by IT. Which of the following is the BEST way for the risk practitioner to address these concerns?
Which of the following is the BEST course of action when an organization wants to reduce likelihood in order to reduce a risk level?