Isaca CRISC Practice Test - Questions Answers, Page 17

List of questions
Question 161

The PRIMARY reason a risk practitioner would be interested in an internal audit report is to:
Question 162

A risk practitioner discovers several key documents detailing the design of a product currently in development have been posted on the Internet. What should be the risk practitioner's FIRST course of action?
Question 163

Which of the following is the MOST effective key performance indicator (KPI) for change management?
Question 164

An effective control environment is BEST indicated by controls that:
Question 165

Which of the following is the BEST way to validate the results of a vulnerability assessment?
Question 166

Which of the following BEST provides an early warning that network access of terminated employees is not being revoked in accordance with the service level agreement (SLA)?
Question 167

A risk assessment has identified that an organization may not be in compliance with industry regulations. The BEST course of action would be to:
Topic 2, Exam Pool B
Question 168

Which of the following criteria is MOST important when developing a response to an attack that would compromise data?
Question 169

Which of the following will BEST help an organization select a recovery strategy for critical systems?
Question 170

A monthly payment report is generated from the enterprise resource planning (ERP) software to validate data against the old and new payroll systems. What is the BEST way to mitigate the risk associated with data integrity loss in the new payroll system after data migration?
Question