While developing obscure risk scenarios, what are the requirements of the enterprise?
Each correct answer represents a part of the solution. Choose two.

• A.Have capability to cure the risk events
• B.Have capability to recognize an observed event as something wrong
• C.Have sufficient number of analyst
• D.Be in a position that it can observe anything going wrong

Comment: *

Name: *

Email: *

Verification: *

Which section of the Sarbanes-Oxley Act specifies "Periodic financial reports must be certified by CEO and CFO"?

• A.Section 302
• B.Section 404
• C.Section 203
• D.Section 409

Comment: *

Name: *

Email: *

Verification: *

Upon learning that the number of failed back-up attempts continually exceeds the current risk threshold, the risk practitioner should:

• A.keep monitoring the situation as there is evidence that this is normal
• B.inquire about the status of any planned corrective actions
• C.initiate corrective action to address the known deficiency
• D.adjust the risk threshold to better reflect actual performance

Comment: *

Name: *

Email: *

Verification: *

What is the value of exposure factor if the asset is lost completely?

• A.1
• B.Infinity
• C.10
• D.0

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST method to identify unnecessary controls?

• A.Monitoring existing key risk indicators (KRIs)
• B.Evaluating the impact of removing existing controls
• C.Evaluating existing controls against audit requirements
• D.Reviewing system functionalities associated with business processes

Comment: *

Name: *

Email: *

Verification: *