An organization uses a vendor to destroy hard drives. Which of the following would BEST reduce the risk of data leakage?

• A.Require the vendor to degauss the hard drives
• B.Implement an encryption policy for the hard drives.
• C.Use an accredited vendor to dispose of the hard drives.
• D.Require confirmation of destruction from the IT manager.

Comment: *

Name: *

Email: *

Verification: *

An organization is considering allowing users to access company data from their personal devices. Which of the following is the MOST important factor when assessing the risk?

• A.Classification of the data
• B.Type of device
• C.Remote management capabilities
• D.Volume of data

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be of MOST concern to a risk practitioner reviewing risk action plans for documented IT risk scenarios?

• A.Senior management approved multiple changes to several action plans.
• B.Many action plans were discontinued after senior management accepted the risk.
• C.Target dates for completion are missing from some action plans.
• D.Individuals outside IT are managing action plans for the risk scenarios.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be the GREATEST concern for an IT risk practitioner when an employees.....

• A.Job knowledge was not transferred to employees m the former department
• B.The organization's structure has not been updated
• C.Company equipment has not been retained by IT
• D.Unnecessary access permissions have not been removed.

Comment: *

Name: *

Email: *

Verification: *

A risk practitioner notices a risk scenario associated with data loss at the organization's cloud provider is assigned to the provider Who should the risk scenario be reassigned to?

• A.Vendor manager
• B.Senior management
• C.Chief risk officer (CRO)
• D.Data owner

Comment: *

Name: *

Email: *

Verification: *