- (Exam Topic 1)
Which of the following is the BEST method to ensure a terminated employee's access to IT systems is revoked upon departure from the organization?
Correct Answer:
D
- (Exam Topic 3)
A risk practitioner has received an updated enterprise risk management (ERM) report showing that residual risk is now within the organization's defined appetite and tolerance levels. Which of the following is the risk practitioner's BEST course of action?
Correct Answer:
D
- (Exam Topic 2)
Which of the following should be a risk practitioner's NEXT action after identifying a high probability of data loss in a system?
Correct Answer:
D
- (Exam Topic 1)
Which of the following activities would BEST contribute to promoting an organization-wide risk-aware culture?
Correct Answer:
C
- (Exam Topic 2)
An organization with a large number of applications wants to establish a security risk assessment program. Which of the following would provide the MOST useful information when determining the frequency of risk assessments?
Correct Answer:
D