Which of the following is the BEST way to validate whether controls have been implemented according to the risk mitigation action plan?

• A.Implement key risk indicators (KRIs)
• B.Test the control design
• C.Test the control environment
• D.Implement key performance indicators (KPIs)

Comment: *

Name: *

Email: *

Verification: *

Following a significant change to a business process, a risk practitioner believes the associated risk has been reduced. The risk practitioner should advise the risk owner to FIRST:

• A.reallocate risk response resources
• B.review the key risk indicators
• C.conduct a risk analysis
• D.update the risk register

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important when developing key risk indicators (KRIs)?

• A.Availability of qualitative data.
• B.Alignment with regulatory requirements.
• C.Property set thresholds.
• D.Alignment with industry benchmarks.

Comment: *

Name: *

Email: *

Verification: *

Which of the following role carriers is accounted for analyzing risks, maintaining risk profile, and risk-aware decisions?

• A.Business management
• B.Business process owner
• C.Chief information officer (CIO)
• D.Chief risk officer (CRO)
• E.Explanation:
  Business management is the business individuals with roles relating to managing a program. They are typically accountable for analyzing risks, maintaining risk profile, and risk-aware decisions. Other than this, they are also responsible for managing risks, react to events, etc.

Comment: *

Name: *

Email: *

Verification: *

Which of the following test is BEST to map for confirming the effectiveness of the system access management process?

• A.user accounts to human resources (HR) records.
• B.user accounts to access requests.
• C.the vendor database to user accounts.
• D.access requests to user accounts.

Comment: *

Name: *

Email: *

Verification: *