ExamGecko
Login
Home / Isaca / CRISC / List of questions
Ask Question

Isaca CRISC Practice Test - Questions Answers, Page 120

List of questions

Question 1191

Report Export Collapse

Which of the following should be considered FIRST when creating a comprehensive IT risk register?

Become a Premium Member for full access
  Unlock Premium Member

Question 1192

Report Export Collapse

Which of the following observations from a third-party service provider review would be of GREATEST concern to a risk practitioner?

Become a Premium Member for full access
  Unlock Premium Member

Question 1193

Report Export Collapse

Which of the following is the MOST important characteristic of a key risk indicator (KRI) to enable decision-making?

Become a Premium Member for full access
  Unlock Premium Member

Question 1194

Report Export Collapse

A poster has been displayed in a data center that reads. 'Anyone caught taking photographs in the data center may be subject to disciplinary action.' Which of the following control types has been implemented?

Become a Premium Member for full access
  Unlock Premium Member

Question 1195

Report Export Collapse

Which of the following is MOST important when determining risk appetite?

Become a Premium Member for full access
  Unlock Premium Member

Question 1196

Report Export Collapse

Which of the following should be management's PRIMARY consideration when approving risk response action plans?

Become a Premium Member for full access
  Unlock Premium Member

Question 1197

Report Export Collapse

When classifying and prioritizing risk responses, the areas to address FIRST are those with:

Become a Premium Member for full access
  Unlock Premium Member

Question 1198

Report Export Collapse

A legacy application used for a critical business function relies on software that has reached the end of extended support Which of the following is the MOST effective control to manage this application?

Become a Premium Member for full access
  Unlock Premium Member

Question 1199

Report Export Collapse

A risk practitioner notices a risk scenario associated with data loss at the organization's cloud provider is assigned to the provider Who should the risk scenario be reassigned to?

Become a Premium Member for full access
  Unlock Premium Member

Question 1200

Report Export Collapse

Who is MOST important lo include in the assessment of existing IT risk scenarios?

Become a Premium Member for full access
  Unlock Premium Member
Total 1.573 questions
Go to page: of 158
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following is MOST important to determine when assessing the potential risk exposure of a loss event involving personal data?
Which of the following is a risk practitioner's BEST course of action after identifying risk scenarios related to noncompliance with new industry regulations?
When reviewing management's IT control self-assessments, a risk practitioner noted an ineffective control that links to several low residual risk scenarios. What should be the NEXT course of action?
An effective control environment is BEST indicated by controls that:
A global organization is considering the acquisition of a competitor. Senior management has requested a review of the overall risk profile from the targeted organization. Which of the following components of this review would provide the MOST useful information?
Which of the following is the MOST effective way to integrate business risk management with IT operations?
During testing, a risk practitioner finds the IT department's recovery time objective (RTO) for a key system does not align with the enterprise's business continuity plan (BCP). Which of the following should be done NEXT?
The BEST key performance indicator (KPI) to measure the effectiveness of a backup process would be the number of:
During an IT risk scenario review session, business executives question why they have been assigned ownership of IT-related risk scenarios. They feel IT risk is technical in nature and therefore should be owned by IT. Which of the following is the BEST way for the risk practitioner to address these concerns?
Which of the following is the BEST course of action when an organization wants to reduce likelihood in order to reduce a risk level?