Isaca CRISC Practice Test - Questions Answers, Page 124

Which of the following scenarios is MOST likely to cause a risk practitioner to request a formal risk acceptance sign-off?

An organization's IT team has proposed the adoption of cloud computing as a cost-saving measure for the business. Which of the following should be of GREATEST concern to the risk practitioner?

A risk practitioner has been asked to evaluate the adoption of a third-party blockchain integration platform based on the value added by the platform and the organization's risk appetite. Which of the following is the risk practitioner's BEST course of action?

Which of the following is the MOST significant indicator of the need to perform a penetration test?

An organization's IT department wants to complete a proof of concept (POC) for a security tool. The project lead has asked for approval to use the production data for testing purposes as it will yield the best results. Which of the following is the risk practitioner's BEST recommendation?

A risk practitioner has been asked to evaluate a new cloud-based service to enhance an organization's access management capabilities. When is the BEST time for the risk practitioner to provide opinions on control strength?

Which of the following is the BEST recommendation of a risk practitioner for an organization that recently changed its organizational structure?

Which of the following is the MOST important document regarding the treatment of sensitive data?

The results of a risk assessment reveal risk scenarios with high impact and low likelihood of occurrence. Which of the following would be the BEST action to address these scenarios?