Free Access ISACA.CRISC.v2022-05-05.q821 Practice Test (Page 126)

Question 621

Which of the following is a risk practitioner's BEST course of action upon learning that a control under internal review may no longer be necessary?

A.Verify the effectiveness of the original mitigation plan.

B.Obtain approval to retire the control.

C.Consult the internal auditor for a second opinion.

D.Update the status of the control as obsolete

Question 622

Which of the following provides an organization with the MOST insight with regard to operational readiness associated with risk?

A.Capability maturity assessment results

B.Minutes of the enterprise risk committee meetings

C.Benchmarking against industry standards

D.Self-assessment of capabilities

Question 623

An organization has completed a project to implement encryption on all databases that host customer data.
Which of the following elements of the risk register should be updated to reflect this change?

A.Risk tolerance

B.Inherent risk

C.Risk appetite

D.Risk likelihood

Question 624

Which of the following would BEST help to ensure that identified risk is efficiently managed?

A.Reviewing the maturity of the control environment

B.Maintaining a key risk indicator for each asset in the risk register

C.Regularly monitoring the project plan

D.Periodically reviewing controls per the risk treatment plan

Question 625

Which of the following is the PRIMARY objective of providing an aggregated view of IT risk to business management?

A.To identify dependencies for reporting risk

B.To allow for proper review of risk tolerance

C.To enable consistent data on risk to be obtained

D.To provide consistent and clear terminology

Other Version: 3455ISACA.CRISC.v2025-07-19.q999; 6540ISACA.CRISC.v2024-09-11.q999; 7512ISACA.CRISC.v2022-10-10.q527; 12578ISACA.CRISC.v2022-08-23.q834; 66ISACA.Examboosts.CRISC.v2021-09-26.by.erica.460q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 240CFAInstitute.ESG-Investing.v2025-09-08.q173; 236PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 159Salesforce.Data-Architect.v2025-09-05.q216; 153Adobe.AD0-E605.v2025-09-05.q50

Question 621

Question 622

Question 623

Question 624

Question 625

Download PDF File