Isaca CRISC Practice Test - Questions Answers, Page 154

List of questions
Question 1531

An organization uses a biometric access control system for authentication and access to its server room. Which control type has been implemented?
Question 1532

Who is accountable for authorizing application access in a cloud Software as a Service (SaaS) solution?
Question 1533

The BEST use of key risk indicators (KRIs) is to provide:
Question 1534

During the control evaluation phase of a risk assessment, it is noted that multiple controls are ineffective. Which of the following should be the risk practitioner's FIRST course of action?
Question 1535

Who is ULTIMATELY accountable for risk treatment?
Question 1536

An organization has implemented a policy requiring staff members to take a minimum of five consecutive days' leave per year to mitigate the risk of malicious insider activities. Which of the following is the BEST key performance indicator (KPI) of the effectiveness of this policy?
Question 1537

Which of the following BEST enables an organization to address new risk associated with an Internet of Things (IoT) solution?
Question 1538

An organization is subject to a new regulation that requires nearly real-time recovery of its services following a disruption. Which of the following is the BEST way to manage the risk in this situation?
Question 1539

A user has contacted the risk practitioner regarding malware spreading laterally across the organization's corporate network. Which of the following is the risk practitioner's BEST course of action?
Question 1540

Which of the following BEST reduces the likelihood of fraudulent activity that occurs through use of a digital wallet?
Question