Isaca IT Risk Fundamentals Exam Questions

Question 6 of 72

In the context of enterprise risk management (ERM), what is the overall role of I&T risk management stakeholders?

Stakeholders are accountable for all risk management activities within an enterprise.

Stakeholders set direction and provide support for risk management practices.

Stakeholders are responsible for protecting enterprise assets to achieve business objectives.

Correct Answer: B

Question 7 of 72

Which of the following BEST supports a risk-aware culture within an enterprise?

Risk issues and negative outcomes are only shared within a department.

The enterprise risk management (ERM) function manages all risk-related activities.

Risk is identified, documented, and discussed to make business decisions.

Correct Answer: C

Question 8 of 72

Which of the following is the BEST indication of a good risk culture?

The enterprise places a strong emphasis on the positive and negative elements of risk.

The enterprise enables discussions of risk and facts within the risk management functions.

The enterprise learns from negative outcomes and treats the root cause.

Correct Answer: C

Question 9 of 72

Publishing I&T risk-related policies and procedures BEST enables an enterprise to:

ensure regulatory compliance and adherence to risk standards.

hold management accountable for risk loss events.

set the overall expectations for risk management.

Correct Answer: C

Question 10 of 72

Which of the following is MOST important when defining an organization’s risk scope?

Understanding the impacts of the risk environment to the organization

Developing a top-down approach to risk management

Developing requirements for risk reporting to executive management

Correct Answer: A