A risk assessment exercise has identified the threat of a denial of service (DoS) attack Executive management has decided to take no further action related to this risk. The MO ST likely reason for this decision is

1. A. the risk assessment has not defined the likelihood of occurrence
2. B. the reported vulnerability has not been validated
3. C. executive management is not aware of the impact potential
4. D. the cost of implementing controls exceeds the potential financial losses.

Correct Answer: D
Executive management may not take action related to a risk if they have determined that the cost of implementing necessary controls to mitigate the risk exceeds the potential financial losses that the organization may incur if the risk were to materialize. In cases such as this, it is important for the information security team to provide the executive team with thorough cost-benefit analysis that outlines the cost of implementing the controls versus the expected losses from the risk.

Which of the following is the PRIMARY reason to monitor key risk indicators (KRIs) related to information security?

1. A. To alert on unacceptable risk
2. B. To identify residual risk
3. C. To reassess risk appetite
4. D. To benchmark control performance

Correct Answer: D

An organization's HR department requires that employee account privileges be removed from all corporate IT systems within three days of termination to comply with a government regulation However, the systems all have different user directories, and it currently takes up to four weeks to remove the privileges Which of the following would BEST enable regulatory compliance?

1. A. Multi-factor authentication (MFA) system
2. B. Identity and access management (IAM) system
3. C. Privileged access management (PAM) system
4. D. Governance, risk, and compliance (GRC) system

Correct Answer: C
The best option for enabling regulatory compliance in this situation is a Privileged Access Management (PAM) system. A PAM system allows organizations to centrally manage user access and privileges across different systems, making it easier to remove user privileges within the required timeframe. Additionally, a PAM system can also help to ensure that user access remains secure, reducing the risk of unauthorized access and ensuring regulatory compliance.

Which of the following is MOST critical when creating an incident response plan?

1. A. Identifying vulnerable data assets
2. B. Identifying what constitutes an incident
3. C. Decumenting incident notification and escalation processes
4. D. Aligning with the risk assessment process

Correct Answer: B

Network isolation techniques are immediately implemented after a security breach to:

1. A. preserve evidence as required for forensics
2. B. reduce the extent of further damage.
3. C. allow time for key stakeholder decision making.
4. D. enforce zero trust architecture principles.

Correct Answer: B