Free Access ISACA.CRISC.v2022-08-23.q834 Practice Test (Page 41)

Question 196

Which of the following is MOST important for an organization to update following a change in legislation requiring notification to individuals impacted by data breaches?

A.Insurance coverage

B.Policies and standards

C.Risk appetite and tolerance

D.Security awareness training

Question 197

Which of the following would be the BEST way to help ensure the effectiveness of a data loss prevention (DLP) control that has been implemented to prevent the loss of credit card data?

A.Reviewing logs for unauthorized data transfers

B.Configuring the DLP control to block credit card numbers

C.Testing the transmission of credit card numbers

D.Testing the DLP rule change control process

Question 198

Which of the following is the GREATEST benefit to an organization when updates to the risk register are made promptly after the completion of a risk assessment?

A.Improved senior management communication

B.Enhanced awareness of risk management

C.Optimized risk treatment decisions

D.Improved collaboration among risk professionals

Question 199

You are preparing to complete the quantitative risk analysis process with your project team and several subject matter experts. You gather the necessary inputs including the project's cost management plan.
Why is it necessary to include the project's cost management plan in the preparation for the quantitative risk analysis process?

A.The project's cost management plan provides control that may help determine the structure for quantitative analysis of the budget.

B.The project's cost management plan can help you to determine what the total cost of the project is allowed to be.

C.The project's cost management plan provides direction on how costs may be changed due to identified risks.

D.The project's cost management plan is not an input to the quantitative risk analysis process.

Question 200

Walter is the project manager of a large construction project. He'll be working with several vendors on the project. Vendors will be providing materials and labor for several parts of the project. Some of the works in the project are very dangerous so Walter has implemented safety requirements for all of the vendors and his own project team. Stakeholders for the project have added new requirements, which have caused new risks in the project. A vendor has identified a new risk that could affect the project if it comes into fruition. Walter agrees with the vendor and has updated the risk register and created potential risk responses to mitigate the risk.
What should Walter also update in this scenario considering the risk event?

A.Project management plan

B.Project communications plan

C.Project contractual relationship with the vendor

D.Project scope statement

Other Version: 3403ISACA.CRISC.v2025-07-19.q999; 6510ISACA.CRISC.v2024-09-11.q999; 7512ISACA.CRISC.v2022-10-10.q527; 15360ISACA.CRISC.v2022-05-05.q821; 66ISACA.Examboosts.CRISC.v2021-09-26.by.erica.460q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 105HP.HPE0-V27.v2025-09-11.q78; 119Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 135SAP.C-S4EWM-2023.v2025-09-08.q83; 168TheSecOpsGroup.CNSP.v2025-09-08.q20; 235CFAInstitute.ESG-Investing.v2025-09-08.q173; 216PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 154Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 196

Question 197

Question 198

Question 199

Question 200

Download PDF File