You are the project manager of GHT project. You have planned the risk response process and now you are about to implement various controls. What you should do before relying on any of the controls?

• A.Review performance data
• B.Discover risk exposure
• C.Conduct pilot testing
• D.Articulate risk

Comment: *

Name: *

Email: *

Verification: *

A business unit has decided to accept the risk of implementing an off-the-shelf, commercial software package that uses weak password controls. The BEST course of action would be to:

• A.obtain management approval for policy exception.
• B.continue the implementation with no changes.
• C.select another application with strong password controls.
• D.develop an improved password software routine.

Comment: *

Name: *

Email: *

Verification: *

Which of the following documents is described in the statement below?
"It is developed along with all processes of the risk management. It contains the results of the qualitative risk analysis, quantitative risk analysis, and risk response planning."

• A.Quality management plan
• B.Risk management plan
• C.Risk register
• D.Project charter
• E.Explanation:
  Risk register is a document that contains the results of the qualitative risk analysis, quantitative risk analysis, and risk response planning. Risk register is developed along with all processes of the risk management from Plan Risk Management through Monitor and Control Risks.
• F.is incorrect. The quality management plan is a component of the project management plan. It describes how the project team will implement the organization's quality policy. The quality management plan addresses quality control (QC), quality assurance (QA), and continuous process improvement for the project. Based on the requirement of the project, the quality management plan may be formal or informal, highly detailed or broadly framed. Answer:B is incorrect. Risk management plan includes roles and responsibilities, risk analysis definitions, timing for reviews, and risk threshold. The Plan Risk Responses process takes input from risk management plan and risk register to define the risk response.

Comment: *

Name: *

Email: *

Verification: *

When assessing the maturity level of an organization's risk management framework, which of the following deficiencies should be of GREATEST concern to a risk practitioner?

• A.Unclear organizational risk appetite
• B.Lack of senior management participation
• C.Use of highly customized control frameworks
• D.Reliance on qualitative analysis methods

Comment: *

Name: *

Email: *

Verification: *

What are the responsibilities of the CRO?
Each correct answer represents a complete solution. Choose three.

• A.Managing the supporting risk management function
• B.Managing the risk assessment process
• C.Advising Board of Directors
• D.Implement corrective actions

Comment: *

Name: *

Email: *

Verification: *