Which of the following is MOST likely to be impacted as a result of a new policy which allows staff members to remotely connect to the organization's IT systems via personal or public computers?

• A.Key risk indicator (KRI)
• B.Risk appetite
• C.Inherent risk
• D.Risk tolerance

Comment: *

Name: *

Email: *

Verification: *

Which of the following are parts of SWOT Analysis?
Each correct answer represents a complete solution. (Choose four.)

• A.Weaknesses
• B.Tools
• C.Threats
• D.Opportunities
• E.Strengths

Comment: *

Name: *

Email: *

Verification: *

Which of the following IS processes provide indirect information?
Each correct answer represents a complete solution. Choose three.

• A.Post-implementation reviews of program changes
• B.Security log monitoring
• C.Problem management
• D.Recovery testing

Comment: *

Name: *

Email: *

Verification: *

An organization has made a decision to purchase a new IT system. During when phase of the system development life cycle (SDLC) will identified risk MOST likely lead to architecture and design trade-offs?

• A.Implementation
• B.Initiation
• C.Acquisition
• D.Operation and maintenance

Comment: *

Name: *

Email: *

Verification: *

For which of the following risk management capability maturity levels do the statement given below is true? "Real-time monitoring of risk events and control exceptions exists, as does automation of policy management"

• A.Level 3
• B.Level 0
• C.Level 5
• D.Level 2
• E.Explanation:
  An enterprise's risk management capability maturity level is 5 when real-time monitoring of risk events and control exceptions exists, as does automation of policy management.
• F.is incorrect. In level 0 of risk management capability maturity model, enterprise does
  not recognize the importance of considering the risk management or the business impact from IT
  risk.

Comment: *

Name: *

Email: *

Verification: *