An enterprise plans to expand into new markets in countries lacking data privacy regulations, increasing risk exposure. Which of the following is the BEST course of action for the CIO?

• A.Quantify the risk impact and evaluate possible countermeasures.
• B.Limit the personal data available to the high-risk countries.
• C.Mandate the strengthening of user access controls.
• D.Identify business risk appetite and tolerance levels.

Comment: *

Name: *

Email: *

Verification: *

During qualitative risk analysis you want to define the risk urgency assessment. All of the following are indicators of risk priority except for which one?

• A.Cost of the project
• B.Warning signs
• C.Risk rating
• D.Symptoms

Comment: *

Name: *

Email: *

Verification: *

An IT department outsourced application support and negotiated service level agreements (SLAs) directly with the vendor Although the vendor met the SLAs business owner expectations are not met and senior management cancels the contract This situation can be avoided in the future by:

• A.improving the business requirements gathering process
• B.improving the negotiation process for service level agreements (SLAs)
• C.assigning responsibility for vendor management
• D.implementing a vendor performance scorecard

Comment: *

Name: *

Email: *

Verification: *

Which of the following categories measures the health of the organization and the working environment of its employees?

• A.Quantity
• B.Safety
• C.Effectiveness
• D.Efficiency

Comment: *

Name: *

Email: *

Verification: *

An enterprise's information security function is making changes to its data retention and backup policies.
Which of the following presents the GREATEST risk?

• A.The new policies Increase the cost of data backups.
• B.The retention period for data backups is Increased.
• C.Data backups will be hosted at third-party locations.
• D.Business data owners were not consulted.

Comment: *

Name: *

Email: *

Verification: *