Isaca CRISC Practice Test - Questions Answers, Page 155

List of questions
Question 1541

Which of the following is the PRIMARY risk management responsibility of the second line of defense?
Question 1542

Because of a potential data breach, an organization has decided to temporarily shut down its online sales order system until sufficient controls can be implemented. Which risk treatment has been selected?
Question 1543

A global organization is considering the transfer of its customer information systems to an overseas cloud service provider in the event of a disaster. Which of the following should be the MOST important risk consideration?
Question 1544

An organization has established a policy prohibiting ransom payments if subjected to a ransomware attack. Which of the following is the MOST effective control to support this policy?
Question 1545

An organization recently implemented a cybersecurity awareness program that includes phishing simulation exercises for all employees. What type of control is being utilized?
Question 1546

Recent penetration testing of an organization's software has identified many different types of security risks. Which of the following is the MOST likely root cause for the identified risk?
Question 1547

Which of the following is MOST important to determine as a result of a risk assessment?
Question 1548

Which of the following would BEST facilitate the implementation of data classification requirements?
Question 1549

An organization has implemented a policy requiring staff members to take a minimum of five consecutive days' leave per year to mitigate the risk of malicious insider activities. Which of the following is the BEST key performance indicator (KPI) of the effectiveness of this policy?
Question 1550

Which of the following is the PRIMARY risk management responsibility of the second line of defense?
Question