Free GAQM ISO-27005-LRM Exam Questions

Become GAQM Certified with updated ISO-27005-LRM exam questions and correct answers

Page: 1 / 160

Total 796 Questions | Updated On: Jan 27, 2026

Add To Cart

Question 1

An online retailer is assessing the value of its customer database, which includes personal and financial information. The database is crucial for marketing and sales activities. In this valuation, what should be the primary consideration?

A : The impact on business continuity if the database is unavailable.

B : The cost of acquiring the database software.

C : The size of the database in terms of data storage.

D : The potential revenue generated from the database.

Answer: D

Question 2

A company is planning to enhance its information security risk management program. What resource is essential for conducting effective risk assessments?

A : Unlimited financial investment in the latest technology, regardless of its relevance to risk management.

B : Focusing exclusively on purchasing insurance for all identified risks.

C : Skilled personnel with expertise in information security and risk assessment.

D : A policy to outsource all risk management activities to minimize internal effort.

Answer: C

Question 3

A multinational corporation is implementing a new enterprise resource planning (ERP) system. During the risk identification phase, what should be the primary focus to ensure comprehensive coverage of potential risks?

A : Analyzing financial impacts of potential ERP system failures.

B : Focusing on the security of data transmission within the ERP system.

C : Identifying all assets associated with the ERP system, including hardware, software, and data.

D : Assessing the impact of the ERP system on employee productivity.

Answer: C

Question 4

A university is upgrading its learning management system (LMS), which contains student information and academic records. Who should be designated as the risk owner for the LMS upgrade project, and what would be their primary task?

A : The registrar, responsible for maintaining academic records.

B : The data protection officer (DPO), responsible for student data privacy.

C : The IT director, responsible for the technical aspects of the upgrade.

D : The Chief Information Officer (CIO), responsible for the overall IT strategy.

Answer: D

Question 5

A financial services firm is implementing a risk assessment program for its digital banking services. What factor is important to consider when selecting a risk assessment methodology?

A : Using an outdated risk assessment methodology that does not consider current digital banking trends and threats.

B : Selecting a methodology that disregards the specific risks associated with digital banking.

C : Focusing only on quantitative analysis and disregarding the qualitative aspects of risk.

D : Choosing a methodology that aligns with the firm's digital banking services and regulatory compliance requirements.

Answer: D

Page: 1 / 160

Total 796 Questions | Updated On: Jan 27, 2026

Add To Cart