Free Access ISACA.CRISC.v2022-05-05.q821 Practice Test (Page 115)

Which of the following is the BEST evidence that a user account has been properly authorized?

A.Notification from human resources that the account is active

B.Formal approval of the account by the user's manager

C.User privileges matching the request form

D.An email from the user accepting the account

Which of the following is the MOST effective control to maintain the integrity of system configuration files?

A.Implementing automated vulnerability scanning

B.Recording changes to configuration files

C.Restricting access to configuration documentation

D.Monitoring against the configuration standard

Which of the following is NOT the method of Qualitative risk analysis?

A.Scorecards

B.Attribute analysis

C.Likelihood-impact matrix

D.Business process modeling (BPM) and simulation

Which of the following BEST protects an organization against breaches when using a software as a service (SaaS) application?

A.Data loss prevention (DLP) tools

B.Data privacy impact assessment (DPIA)

C.Security information and event management (SIEM) solutions

D.Control self-assessment (CSA)

Which of the following would be the BEST justification to invest in the development of a governance, risk, and compliance (GRC) solution?

A.Facilitating risk-aware decision making by stakeholders.

B.Demonstrating management commitment to mitigate risk.

C.Closing audit findings on a timely basis.

D.Ensuring compliance to industry standards.

Other Version: 3477ISACA.CRISC.v2025-07-19.q999; 6558ISACA.CRISC.v2024-09-11.q999; 7512ISACA.CRISC.v2022-10-10.q527; 12585ISACA.CRISC.v2022-08-23.q834; 66ISACA.Examboosts.CRISC.v2021-09-26.by.erica.460q.pdf

Latest Upload: 106Oracle.1z0-1196-25.v2025-09-12.q18; 104NetworkAppliance.NS0-162.v2025-09-12.q86; 144OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 180TheSecOpsGroup.CNSP.v2025-09-08.q20; 259CFAInstitute.ESG-Investing.v2025-09-08.q173; 245PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Download PDF File