Online Access Free ISACA.CRISC.v2024-04-02.q999 Practice Test (Page 44)

CRISC Exam Question 211

Who should be accountable for ensuring effective cybersecurity controls are established?

A.IT management

B.Enterprise risk function

C.Risk owner

D.Security management function

CRISC Exam Question 212

You are the project manager of the HGT project in Bluewell Inc. The project has an asset valued at $125,000 and is subjected to an exposure factor of 25 percent. What will be the Single Loss Expectancy of this project?

A.$ 125,025

B.$ 31,250

C.$ 5,000

D.$ 3,125,000

E.Explanation:
The Single Loss Expectancy (SLE) of this project will be $31,250. Single Loss Expectancy is a term related to Quantitative Risk Assessment. It can be defined as the monetary value expected from the occurrence of a risk on an asset. It is mathematically expressed as follows: Single Loss Expectancy (SLE) = Asset Value (AV) * Exposure Factor (EF) where the Exposure Factor represents the impact of the risk over the asset, or percentage of asset lost. As an example, if the Asset Value is reduced two third, the exposure factor value is .66. If the asset is completely lost, the Exposure Factor is 1.0. The result is a monetary value in the same unit as the Single Loss Expectancy is expressed. Therefore, SLE = Asset Value * Exposure Factor = 125,000 * 0.25 = $31,250

CRISC Exam Question 213

During an IT department reorganization, the manager of a risk mitigation action plan was replaced. The new manager has begun implementing a new control after identifying a more effective option. Which of the following is the risk practitioner's BEST course of action?

A.Seek approval from the previous action plan manager.

B.Modify the action plan in the risk register.

C.Communicate the decision to the risk owner for approval

D.Identify an owner for the new control.

CRISC Exam Question 214

Which of the following is MOST effective in continuous risk management process improvement?

A.Policy updates

B.Periodic assessments

C.Awareness training

D.Change management

CRISC Exam Question 215

A risk practitioner is summarizing the results of a high-profile risk assessment sponsored by senior management. The BEST way to support risk-based decisions by senior management would be to:

A.quantify key risk indicators (KRIs)

B.map findings to objectives

C.recommend risk tolerance thresholds

D.provide a quantified detailed analysis

Other Version: 1061ISACA.CRISC.v2025-08-27.q675; 3150ISACA.CRISC.v2025-01-04.q999; 1451ISACA.CRISC.v2024-06-13.q683; 2729ISACA.CRISC.v2023-07-10.q544; 5436ISACA.CRISC.v2022-05-25.q338; 76ISACA.Actual4dump.CRISC.v2022-04-12.by.newman.349q.pdf; 5245ISACA.CRISC.v2022-02-22.q349; 5070ISACA.CRISC.v2021-10-27.q295; 42ISACA.Updatedumps.CRISC.v2021-09-05.by.bonnie.114q.pdf

Latest Upload: 104Microsoft.SC-400.v2025-09-20.q290; 362ISACA.CGEIT.v2025-09-19.q537; 156Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 157Scrum.SAFe-Practitioner.v2025-09-18.q63; 154Workday.Workday-Prism-Analytics.v2025-09-17.q17; 133Oracle.1Z0-1055-24.v2025-09-17.q28; 131Oracle.1Z1-182.v2025-09-17.q32; 252Nutanix.NCP-US-6.5.v2025-09-16.q73; 271Oracle.1z0-071.v2025-09-16.q232; 205Oracle.1Z1-922.v2025-09-16.q125

CRISC Exam Question 211

CRISC Exam Question 212

CRISC Exam Question 213

CRISC Exam Question 214

CRISC Exam Question 215

Download PDF File