A global organization is planning to collect customer behavior data through social media advertising. Which of the following is the MOST important business risk to be considered?

• A.The data analysis may be ineffective in achieving objectives.
• B.Regulatory requirements may differ in each country.
• C.Business advertising will need to be tailored by country.
• D.Data sampling may be impacted by various industry restrictions.

Comment: *

Name: *

Email: *

Verification: *

A risk assessment has identified increased losses associated with an IT risk scenario. It is MOST important for the risk practitioner to:

• A.update the risk rating.
• B.implement additional controls.
• C.reevaluate inherent risk.
• D.develop new risk scenarios.

Comment: *

Name: *

Email: *

Verification: *

You are the project manager of your enterprise. You have identified several risks. Which of the following responses to risk is considered the MOST appropriate?

• A.Any of the above
• B.Insuring
• C.Avoiding
• D.Accepting
• E.Explanation:
  The appropriate response to the risk is decided by the risk itself, the company's attitude and
  appetite of risk, and the threat and opportunity combination of the risk.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is true for risk evaluation?

• A.Risk evaluation is done only when there is significant change.
• B.Risk evaluation is done once a year for every business processes.
• C.Risk evaluation is done annually or when there is significant change.
• D.Risk evaluation is done every four to six months for critical business processes.

Comment: *

Name: *

Email: *

Verification: *

An IT risk practitioner has determined that mitigation activities differ from an approved risk action plan. Which of the following is the risk practitioner's BEST course of action?

• A.Update the risk register with the implemented risk mitigation actions.
• B.Revert the implemented mitigation measures until approval is obtained
• C.Validate the adequacy of the implemented risk mitigation measures.
• D.Report the observation to the chief risk officer (CRO).

Comment: *

Name: *

Email: *

Verification: *