Which of the following is the BEST indicator of the effectiveness of a control action plan's implementation?

• A.Increased risk appetite
• B.Increased number of controls
• C.Reduced risk level
• D.Stakeholder commitment

Comment: *

Name: *

Email: *

Verification: *

What should be the PRIMARY objective for a risk practitioner performing a post-implementation review of an IT risk mitigation project?

• A.Documenting project lessons learned
• B.Validating the risk mitigation project has been completed
• C.Confirming that the project budget was not exceeded
• D.Verifying that the risk level has been lowered

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important consideration when developing an organization's risk taxonomy?

• A.IT strategy
• B.Leading industry frameworks
• C.Business context
• D.Regulatory requirements

Comment: *

Name: *

Email: *

Verification: *

Your project has several risks that may cause serious financial impact if they occur. You have studied the risk events and made some potential risk responses for the risk events but management wants you to do more. They'd like you to create some type of a chart that identified the risk probability and impact with a financial amount for each risk event. What is the likely outcome of creating this type of chart?

• A.Risk response plan
• B.Contingency reserve
• C.Risk response
• D.Quantitative analysis

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST critical to the design of relevant risk scenarios?

• A.The scenarios are mapped to incident management capabilities.
• B.The scenarios are based on past incidents.
• C.The scenarios are aligned with risk management capabilities.
• D.The scenarios are linked to probable organizational situations.

Comment: *

Name: *

Email: *

Verification: *