Free Isaca IT-Risk-Fundamentals Exam Questions

Become Isaca Certified with updated IT-Risk-Fundamentals exam questions and correct answers

Page: 1 / 68

Total 336 Questions | Updated On: Sep 08, 2024

Add To Cart

Question 1

Which of the following would be considered a cyber-risk?

A : A system that does not meet the needs of users

B : A change in security technology

C : Unauthorized use of information

Answer: C

Question 2

Which of the following is MOST important when defining an organization's risk scope?

A : Understanding the impacts of the risk environment to the organization

B : Developing a top-down approach to risk management

C : Developing requirements for risk reporting to executive management

Answer: A

Question 3

Which of the following would be considered a cyber-risk?

A : A system that does not meet the needs of users

B : A change in security technology

C : Unauthorized use of information

Answer: C

Question 4

Which of the following is MOST important when defining an organization's risk scope?

A : Understanding the impacts of the risk environment to the organization

B : Developing a top-down approach to risk management

C : Developing requirements for risk reporting to executive management

Answer: A

Question 5

A bottom-up approach to developing I&T risk-related risk scenarios:

A : is a generic method that allows anyone in the organization to develop risk scenarios.

B : is based on hypothetical situations envisioned by people performing specific I&T functions.

C : should not be used in conjunction with other approaches to evaluate I&T related events.

Answer: B

Page: 1 / 68

Total 336 Questions | Updated On: Sep 08, 2024

Add To Cart