Which of the following is a key component of strong internal control environment?

• A.RMIS
• B.Segregation of duties
• C.Manual control
• D.Automated tools

Comment: *

Name: *

Email: *

Verification: *

Periodically reviewing and updating a risk register with details on identified risk factors PRIMARILY helps to:

• A.provide a current reference to stakeholders for risk-based decisions
• B.minimize the number of risk scenarios for risk assessment
• C.aggregate risk scenarios identified across different business units
• D.build a threat profile of the organization for management review

Comment: *

Name: *

Email: *

Verification: *

Which of the following will BEST help to ensure implementation of corrective action plans?

• A.Selling target dates to complete actions
• B.Assigning accountability to risk owners
• C.Contracting to third parties
• D.Establishing employee awareness training

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST indicates that an organization has implemented IT performance requirements?

• A.Benchmarking data
• B.Accountability matrix
• C.Service level agreements
• D.Vendor references

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important to communicate to senior management during the initial implementation of a risk management program?

• A.Best practices
• B.Desired risk level
• C.Regulatory compliance
• D.Risk ownership

Comment: *

Name: *

Email: *

Verification: *