ExamGecko
Login
Home / Isaca / CRISC / List of questions
Ask Question

Isaca CRISC Practice Test - Questions Answers, Page 50

Add to Whishlist

List of questions

Question 491

Report Export Collapse

An organization is increasingly concerned about loss of sensitive data and asks the risk practitioner to assess the current risk level. Which of the following should the risk practitioner do FIRST?

Become a Premium Member for full access
  Unlock Premium Member

Question 492

Report Export Collapse

A risk practitioner has been notified that an employee sent an email in error containing customers' personally identifiable information (Pll). Which of the following is the risk practitioner's BEST course of action?

Become a Premium Member for full access
  Unlock Premium Member

Question 493

Report Export Collapse

Reviewing which of the following provides the BEST indication of an organizations risk tolerance?

Become a Premium Member for full access
  Unlock Premium Member

Question 494

Report Export Collapse

Which of the following is MOST essential for an effective change control environment?

Become a Premium Member for full access
  Unlock Premium Member

Question 495

Report Export Collapse

The PRIMARY reason for periodically monitoring key risk indicators (KRIs) is to:

Become a Premium Member for full access
  Unlock Premium Member

Question 496

Report Export Collapse

Which of the following is the GREATEST risk associated with the transition of a sensitive data backup solution from on-premise to a cloud service provider?

Become a Premium Member for full access
  Unlock Premium Member

Question 497

Report Export Collapse

For no apparent reason, the time required to complete daily processing for a legacy application is approaching a risk threshold. Which of the following activities should be performed FIRST?

Become a Premium Member for full access
  Unlock Premium Member

Question 498

Report Export Collapse

An organization plans to migrate sensitive information to a public cloud infrastructure. Which of the following is the GREATEST security risk in this scenario?

Become a Premium Member for full access
  Unlock Premium Member

Question 499

Report Export Collapse

Which of the following is the MOST important reason to create risk scenarios?

Become a Premium Member for full access
  Unlock Premium Member

Question 500

Report Export Collapse

The MAIN purpose of a risk register is to:

Become a Premium Member for full access
  Unlock Premium Member
Total 1.573 questions
Go to page: of 158
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following is MOST important to determine when assessing the potential risk exposure of a loss event involving personal data?
Which of the following is a risk practitioner's BEST course of action after identifying risk scenarios related to noncompliance with new industry regulations?
When reviewing management's IT control self-assessments, a risk practitioner noted an ineffective control that links to several low residual risk scenarios. What should be the NEXT course of action?
An effective control environment is BEST indicated by controls that:
A global organization is considering the acquisition of a competitor. Senior management has requested a review of the overall risk profile from the targeted organization. Which of the following components of this review would provide the MOST useful information?
Which of the following is the MOST effective way to integrate business risk management with IT operations?
During testing, a risk practitioner finds the IT department's recovery time objective (RTO) for a key system does not align with the enterprise's business continuity plan (BCP). Which of the following should be done NEXT?
The BEST key performance indicator (KPI) to measure the effectiveness of a backup process would be the number of:
During an IT risk scenario review session, business executives question why they have been assigned ownership of IT-related risk scenarios. They feel IT risk is technical in nature and therefore should be owned by IT. Which of the following is the BEST way for the risk practitioner to address these concerns?
Which of the following is the BEST course of action when an organization wants to reduce likelihood in order to reduce a risk level?