- (Exam Topic 2)
Which of the following provides The BEST information when determining whether to accept residual risk of a critical system to be implemented?
Correct Answer:
D
- (Exam Topic 3)
Which of the following is the BEST key control indicator (KCI) for a vulnerability management program?
Correct Answer:
D
- (Exam Topic 3)
When defining thresholds for control key performance indicators (KPIs). it is MOST helpful to align:
Correct Answer:
B
- (Exam Topic 3)
A bank recently incorporated Blockchain technology with the potential to impact known risk within the organization. Which of the following is the risk practitioner’s BEST course of action?
Correct Answer:
B
- (Exam Topic 2)
The PRIMARY reason for periodic penetration testing of Internet-facing applications is to:
Correct Answer:
C