A company has recently acquired a customer relationship management (CRM) application from a certified software vendor. Which of the following will BE ST help lo prevent technical vulnerabilities from being exploded?

• A.implement code reviews and Quality assurance on a regular basis
• B.Verity me software agreement indemnifies the company from losses
• C.Review the source coda and error reporting of the application
• D.Update the software with the latest patches and updates

Comment: *

Name: *

Email: *

Verification: *

You are the project manager of the HJK Project for your organization. You and the project team have created risk responses for many of the risk events in the project. Where should you document the proposed responses and the current status of all identified risks?

• A.Stakeholder management strategy
• B.Lessons learned documentation
• C.Risk register
• D.Risk management plan

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be of GREATEST concern to a risk practitioner reviewing current key risk indicators (KRIs)?

• A.The KRIs are not quantitative.
• B.The KRIs do not allow for trend analysis.
• C.The KRIs' source data lacks integrity.
• D.The KRIs are not automated.

Comment: *

Name: *

Email: *

Verification: *

Who should be accountable for monitoring the control environment to ensure controls are effective?

• A.Risk owner
• B.Security monitoring operations
• C.Impacted data owner
• D.System owner

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST method for assessing control effectiveness?

• A.Ad hoc reporting
• B.Predictive analytics
• C.Continuous monitoring
• D.Control self-assessment

Comment: *

Name: *

Email: *

Verification: *