Free Access ISACA.CRISC.v2022-08-23.q834 Practice Test (Page 21)

Question 96

Accountability for a particular risk is BEST represented in a:

A.risk register.

B.RACI matrix.

C.risk catalog.

D.risk scenario.

Question 97

An IT risk practitioner has determined that mitigation activities differ from an approved risk action plan.
Which of the following is the risk practitioner's BEST course of action?

A.Update the risk register with the implemented risk mitigation actions.

B.Report the observation to the chief risk officer (CRO).

C.Validate the adequacy of the implemented risk mitigation measures.

D.Revert the implemented mitigation measures until approval is obtained

Question 98

You are the project manager of the GHT project. You are accessing data for further analysis. You have chosen such a data extraction method in which management monitors its own controls. Which of the following data extraction methods you are using here?

A.Extracting data directly from the source systems after system owner approval

B.Extracting data from the system custodian (IT) after system owner approval

C.Extracting data from risk register

D.Extracting data from lesson learned register

Question 99

Which of the following items is considered as an objective of the three dimensional model within the framework described in COSO ERM?

A.Risk assessment

B.Financial reporting

C.Control environment

D.Monitoring

Question 100

A payroll manager discovers that fields in certain payroll reports have been modified without authorization. Which of the following control weaknesses could have contributed MOST to this problem?

A.The programmer had access to the production programs.

B.The user requirements were not documented.

C.Payroll files were not under the control of a librarian.

D.The programmer did not involve the user in testing.

Other Version: 3335ISACA.CRISC.v2025-07-19.q999; 6458ISACA.CRISC.v2024-09-11.q999; 7512ISACA.CRISC.v2022-10-10.q527; 15321ISACA.CRISC.v2022-05-05.q821; 66ISACA.Examboosts.CRISC.v2021-09-26.by.erica.460q.pdf

Latest Upload: 102OCEG.GRCP.v2025-09-11.q211; 102HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 141Adobe.AD0-E605.v2025-09-05.q50

Question 96

Question 97

Question 98

Question 99

Question 100

Download PDF File