Certified in Risk and Information Systems Control (CRISC) Free Practice Exam Questions

1451 real Certified in Risk and Information Systems Control (CRISC) exam questions with answers and AI explanations. ISACA certification prep — page 20 of 146.

  1. Question 193: Out of several risk responses, which of the following risk responses is used for negative risk events?
  2. Question 194: The compensating control that MOST effectively addresses the risk associated with piggybacking into a restricted area without a dead-man door is:
  3. Question 195: Which of the following is the BEST key performance indicator (KPI) to measure the maturity of an organization's security incident handling process?
  4. Question 196: To reduce the risk introduced when conducting penetration tests, the BEST mitigating control would be to:
  5. Question 197: A risk manager has determined there is excessive risk with a particular technology. Who is the BEST person to own the unmitigated risk of the technology?
  6. Question 198: Which of the following is of GREATEST concern when uncontrolled changes are made to the control environment?
  7. Question 199: Which of the following BEST enables a risk practitioner to enhance understanding of risk among stakeholders?
  8. Question 200: An IT license audit has revealed that there are several unlicensed copies of commercial applications installed on company laptops. The risk practitioner's BEST…
  9. Question 201: An organization has implemented a preventive control to lock user accounts after three unsuccessful login attempts. This practice has been proven to be unprodu…
  10. Question 202: You are completing the qualitative risk analysis process with your project team and are relying on the risk management plan to help you determine the budget, s…