- (Exam Topic 3)
Which of the following should be the PRIMARY goal of developing information security metrics?
Correct Answer:
B
- (Exam Topic 3)
A risk practitioner is preparing a report to communicate changes in the risk and control environment. The BEST way to engage stakeholder attention is to:
Correct Answer:
B
- (Exam Topic 3)
When updating the risk register after a risk assessment, which of the following is MOST important to include?
Correct Answer:
C
- (Exam Topic 3)
Which of the following is the MOST important key performance indicator (KPI) to monitor the effectiveness of disaster recovery processes?
Correct Answer:
D
- (Exam Topic 3)
Which of the following is MOST important to compare against the corporate risk profile?
Correct Answer:
D