IT Risk Fundamentals

Here you have the best Isaca IT Risk Fundamentals practice exam questions

Question 1 of 72

Which of the following is considered an exploit event?

Any event that is verified as a security breach

The actual occurrence of an adverse event

An attacker takes advantage of a vulnerability

Correct Answer: C

Question 2 of 72

Of the following, which stakeholder group is MOST often responsible for risk governance?

Board of directors

Enterprise risk management (ERM)

Business units

Correct Answer: A

Question 3 of 72

Which of the following is MOST likely to promote ethical and open communication of risk management activities at the executive level?

Increasing the frequency of risk status reports

Recommending risk tolerance levels to the business

Expressing risk results in financial terms

Correct Answer: A

Question 4 of 72

Which of the following presents the GREATEST risk for the continued existence of an enterprise?

When its risk appetite and tolerance are reviewed annually

When its actual risk eventually exceeds organizational risk appetite

When its risk appetite and actual risk exceed its risk capacity

Correct Answer: C

Question 5 of 72

How does an enterprise decide how much risk it is willing to take to meet its business objectives?

By conducting research on industry standards for acceptable risk based on similar businesses

By identifying the risk conditions of the business and the impact of the loss if these risks materialize

By surveying business initiatives to determine what risks would cease their operations

Correct Answer: B