The GREATEST benefit of including low-probability, high-impact events in a risk assessment is the ability to:

• A.identify root causes for relevant events
• B.develop understandable and realistic risk scenarios
• C.perform an aggregated cost-benefit analysis
• D.develop a comprehensive risk mitigation strategy

Comment: *

Name: *

Email: *

Verification: *

A risk practitioner is summarizing the results of a high-profile risk assessment sponsored by senior management. The BEST way to support risk-based decisions by senior management would be to:

• A.map findings to objectives
• B.recommend risk tolerance thresholds
• C.quantify key risk indicators (KRIs)
• D.provide a quantified detailed analysis

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the HIGHEST risk of a policy that inadequately defines data and system ownership?

• A.User management coordination does not exist
• B.Audit recommendations may not be implemented
• C.Users may have unauthorized access to originate, modify or delete data
• D.Specific user accountability cannot be established

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way to ensure ongoing control effectiveness?

• A.Periodically reviewing control design
• B.Measuring trends in control performance
• C.Obtaining management control attestations
• D.Establishing policies and procedures

Comment: *

Name: *

Email: *

Verification: *

You are the project manager of the NGQQ Project for your company. To help you communicate project status to your stakeholders, you are going to create a stakeholder register. All of the following information should be included in the stakeholder register except for which one?

• A.Stakeholder management strategy
• B.Assessment information of the stakeholders' major requirements, expectations, and potential influence
• C.Identification information for each stakeholder
• D.Stakeholder classification of their role in the project

Comment: *

Name: *

Email: *

Verification: *