Which of the following is the GREATEST benefit of updating the risk register to include outcomes from a risk assessment?

• A.It facilitates timely risk-based decisions.
• B.It helps to mitigate internal and external risk factors.
• C.It validates the organization's risk appetite.
• D.It maintains evidence of compliance with risk policy.

Comment: *

Name: *

Email: *

Verification: *

You are the risk official at Bluewell Inc. There are some risks that are posing threat on your enterprise. You are measuring exposure of those risk factors, which has the highest potential, by examining the extent to which the uncertainty of each element affects the object under consideration when all other uncertain elements are held at their baseline values. Which type of analysis you are performing?

• A.Sensitivity analysis
• B.Fault tree analysis
• C.Cause-and-effect analysis
• D.Scenario analysis

Comment: *

Name: *

Email: *

Verification: *

An organization that has been the subject of multiple social engineering attacks is developing a risk awareness program. The PRIMARY goal of this program should be to:

• A.communicate the consequences for violations
• B.implement industry best practices
• C.reduce the organization's risk appetite
• D.reduce the risk to an acceptable level

Comment: *

Name: *

Email: *

Verification: *

Senior management has asked a risk practitioner to develop technical risk scenarios related to a recently developed enterprise resource planning (ERP) system. These scenarios will be owned by the system manager.
Which of the following would be the BEST method to use when developing the scenarios?

• A.Delphi technique
• B.Top-down approach
• C.Bottom-up approach
• D.Cause-and-effect diagram

Comment: *

Name: *

Email: *

Verification: *

Mapping open risk issues to an enterprise risk heat map BEST facilitates:

• A.control monitoring.
• B.risk identification.
• C.risk response.
• D.risk ownership.

Comment: *

Name: *

Email: *

Verification: *