Which of the following statements in an organization's current risk profile report is cause for further action by senior management?

• A.Key risk indicators (KRIs) are lagging.
• B.Key performance indicators (KPIs) are outside of targets.
• C.New key risk indicators (KRIs) have been established.
• D.Key performance indicator (KPI) trend data is incomplete.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important information to review when developing plans for using emerging technologies?

• A.Organizational strategic plan
• B.Existing IT environment
• C.IT strategic plan
• D.Risk register

Comment: *

Name: *

Email: *

Verification: *

An organization is planning to engage a cloud-based service provider for some of its data-intensive business processes. Which of the following is MOST important to help define the IT risk associated with this outsourcing activity?

• A.Service level agreement
• B.Right to audit the provider
• C.Customer service reviews
• D.Scope of services provided

Comment: *

Name: *

Email: *

Verification: *

Who should be responsible for determining which stakeholders need to be involved in the development of a risk scenario?

• A.Risk owner
• B.Risk practitioner
• C.Control owner
• D.Compliance manager

Comment: *

Name: *

Email: *

Verification: *

You are the project manager of GHT project. You have implemented an automated tool to analyze and report on access control logs based on severity. This tool generates excessively large amounts of results. You perform a risk assessment and decide to configure the monitoring tool to report only when the alerts are marked "critical". What you should do in order to fulfill that?

• A.Apply risk response
• B.Optimize Key Risk Indicator
• C.Update risk register
• D.Perform quantitative risk analysis

Comment: *

Name: *

Email: *

Verification: *