Which of the following is the greatest risk to reporting?

• A.Integrity of data
• B.Availability of data
• C.Confidentiality of data
• D.Reliability of data

Comment: *

Name: *

Email: *

Verification: *

An organization operates in an environment where reduced time-to-market for new software products is a top business priority. Which of the following should be the risk practitioner's GREATEST concern?

• A.The corporate email system does not identify and store phishing emails.
• B.Customer support help desk staff does not have adequate training.
• C.Email infrastructure does not have proper rollback plans.
• D.Sufficient resources are not assigned to IT development projects.

Comment: *

Name: *

Email: *

Verification: *

Which of the following elements of a risk register is MOST likely to change as a result of change in management's risk appetite?

• A.Risk likelihood and impact
• B.Risk velocity
• C.Inherent risk
• D.Key risk indicator (KRI) thresholds

Comment: *

Name: *

Email: *

Verification: *

An organization has experienced several incidents of extended network outages that have exceeded tolerance.
Which of the following should be the risk practitioner's FIRST step to address this situation?

• A.Recommend a root cause analysis of the incidents
• B.Update the risk tolerance level to acceptable thresholds
• C.Recommend additional controls to address the risk
• D.Update the incident-related risk trend in the risk register

Comment: *

Name: *

Email: *

Verification: *

A web-based service provider with a low risk appetite for system outages is reviewing its current risk profile for online security. Which of the following observations would be MOST relevant to escalate to senior management?

• A.An increase in attempted distributed denial of service (DDoS) attacks
• B.An increase in attempted website phishing attacks
• C.A decrease in remediated web security vulnerabilities
• D.A decrease in achievement of service level agreements (SLAs)

Comment: *

Name: *

Email: *

Verification: *