As a driver of IT governance, transparency of IT’s cost…
As a driver of IT governance, transparency of IT’s cost, value and risks is primarily achieved through:
Which of the following should be considered FIRST when …
Which of the following should be considered FIRST when implementing a risk management
program?
Measures of security risk should:
An IS auditor is reviewing an IT security risk management program. Measures of security risk
should:
An IS auditor reviewing the risk assessment process of …
An IS auditor reviewing the risk assessment process of an organization should FIRST:
A poor choice of passwords and transmission over unprot…
A poor choice of passwords and transmission over unprotected communications lines are examples
of:
This is an example of risk:
To address the risk of operations staff’s failure to perform the daily backup, management requires
that the systems administrator sign off on the daily backup. This is an example of risk:
Assessing IT risks is BEST achieved by:
Assessing IT risks is BEST achieved by:
Which of the following does a lack of adequate security…
Which of the following does a lack of adequate security controls represent?
To evaluate the potential losses, the team should:
A team conducting a risk analysis is having difficulty projecting the financial losses that could result
from a risk. To evaluate the potential losses, the team should:
what is the FIRST activity to be performed?
When developing a risk management program, what is the FIRST activity to be performed?