CRISC Quiz Questions and Answers

Risks to an organization's image are referred to as what kind of risk?

Answer :
  • Strategic

You are the project manager for BlueWell Inc. You have noticed that the risk level in your project increases above the risk tolerance level of your enterprise. You have applied several risk responses. Now you have to update the risk register following the risk response process. All of the following are included in the risk register except for which item?

Answer :
  • Network diagram analysis of critical path activities

Which of the following is the most important objective of information system control?

Answer :
  • Business objectives are achieved and undesired risk events are detected and corrected

Which of the following are the principles of risk management?

Answer :
  • All of the above

Which of the following is the highest risk of a policy that inadequately defines data and system ownership?

Answer :
  • Users may have unauthorized access to originate, modify or delete data

You work as a project manager for BlueWell Inc. You have declined a proposed change request because of the risk associated with it. Where should the declined change request be documented and stored?

Answer :
  • Change request log

Which of the following are the security plans adopted by the organization?

Answer :
  • All of the above

Harry is the project manager of the HDW project. He has identified a risk that could injure project team members. He does not want to accept any risk where someone could get injured on this project so he hires a professional vendor to complete this portion of the project work. What type of risk response is Harry implementing?

Answer :
  • Transference

Which of the following is the most effective method for indicating that the risk level is approaching a high or unacceptable level of risk?

Answer :
  • Risk indicator

Which of the following events refer to the loss of integrity?

Answer :
  • All of the above