You have identified several risks in your project. You have opted for risk mitigation in order to
respond to identified risk. Which of the following ensures that risk mitigation method that you have
chosen is effective?

Which of the following control is used to ensure that users have the rights and permissions they
need to perform their jobs, and no more?

You are working in an enterprise. Your enterprise owned various risks. Which among the following
is MOST likely to own the risk to an information system that supports a critical business process?

Which of the following components ensures that risks are examined for all new proposed change
requests in the change control system?

Which of the following are true for threats?
Each correct answer represents a complete solution. Choose three.

Which of the following statements BEST describes policy?

You are the project manager of GHT project. You have analyzed the risk and applied appropriate
controls. In turn, you got residual risk as a result of this. Residual risk can be used to determine
which of the following?

When it appears that a project risk is going to happen, what is this term called?

You work as a project manager for SoftTech Inc. You are working with the project stakeholders to
begin the qualitative risk analysis process. Which of the following inputs will be needed for the
qualitative risk analysis process in your project?
Each correct answer represents a complete solution. Choose all that apply.

Which of the following will significantly affect the standard information security governance model?