100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
CRISC Exam Practice Questions and Answers (100% Pass) $13.49   Add to cart

Exam (elaborations)

CRISC Exam Practice Questions and Answers (100% Pass)

 8 views  0 purchase
  • Course
  • CRISC
  • Institution
  • CRISC

CRISC Exam Practice Questions and Answers (100% Pass) An enterprise recently developed a breakthrough technology that could provide a significant competitive edge. Which of the following FIRST governs how this information is to be protected from within the enterprise? A. The data classification...

[Show more]

Preview 4 out of 50  pages

  • August 18, 2024
  • 50
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
  • CRISC
  • CRISC
avatar-seller
OliviaWest
©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM



CRISC Exam Practice Questions and Answers (100% Pass)


An enterprise recently developed a breakthrough technology that could provide a

significant competitive edge. Which of the following FIRST governs how this

information is to be protected from within the enterprise?




A. The data classification policy

B. The acceptable use policy

C. Encryption standards


D. The access control policy - Answer✔️✔️-A. Data classification policy describes

the data classification categories; levels of protection to be provided for each

category of data; and roles and responsibilities of potential users, including data

owners

Which of the following is the BEST way to ensure that an accurate risk register is

maintained over time?




A. Monitor KRIs and record findings in the risk register




1

,©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM


B. Publish the risk register centrally with workflow features that periodically poll

risk assessors

C. Distribute the risk register to business process owners for review and updating

D. Utilize audit personnel to perform regular audits and to maintain the risk

register - Answer✔️✔️-B. Centrally publishing the risk register and enabling

periodic polling of risk assessors through workflow features will ensure accuracy

of content. A knowledge management platform with workflow and polling features

will automate the process of maintaining the risk register

Which of the following is the MOST important requirement for setting up an

information security infrastructure for a new system?




A. Performing a BIA

B. Considering personal devices as part of the security policy

C. Basing the information security infrastructure on a risk assessment


D. Initiating IT security training and familiarization - Answer✔️✔️-C. The

information security infrastructure should be based on a risk assessment

The MAIN objective of IT risk management is to:




2

,©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM




A. prevent loss of IT assets

B. provide timely management reports

C. ensure regulatory compliance


D. enable risk-aware business decisions - Answer✔️✔️-D. IT risk management

should be conducted as part of enterprise risk management (ERM), the ultimate

objective of which is to enable risk-aware business decisions

Which of the following is the PRIMARY reason that a risk practitioner determines

the security boundary prior to conducting a risk assessment?




A. To determine which laws and regulations apply

B. To determine the scope of the risk assessment

C. To determine the business owner(s) of the system

D. To decide between conducting a quantitative or qualitative analysis -

Answer✔️✔️-B. The primary reason for determining the security boundary is to

establish what systems and components are included in the risk assessment

The PRIMARY advantage of creating and maintaining a risk register is to:



3

, ©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM




A. ensure than an inventory of potential risk is maintained

B. record all risk scenarios considered during the risk identification process

C. collect similar data on all risk identified within the organization


D. run reports based on various risk scenarios - Answer✔️✔️-A. Once important

assets and the risk that may impact these assets are identified, the risk register is

used as an inventory of that risk. The risk register can help enterprises accelerate

their risk decision making and establish accountability for specific risk

The board of directors of a one-year-old start-up company has asked their CIO to

create all of the enterprise's IT policies and procedures. Which of the following

should the CIO create FIRST?




A. The strategic IT plan

B. The data classification scheme

C. The information architecture document


D. The technology infrastructure plan - Answer✔️✔️-A. The strategic IT plan is the

first policy to be created when setting up an enterprise's governance model




4

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller OliviaWest. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $13.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

75759 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$13.49
  • (0)
  Add to cart