IT-Risk-Fundamentals試験無料問題集（75題）「ISACA IT Risk Fundamentals Certificate 認定」

出題：1

Which of the following is important to ensure when validating the results of a frequency analysis?

A. The analysis was conducted by an independent third party.

B. Estimates used during the analysis were based on reliable and historical data.

C. The analysis method has been fully documented and explained.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Which of the following is the BEST way to interpret enterprise standards?

A. An approved code of practice
Q Documented high-level principles

B. A means of implementing policy

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Which of the following is MOST important for the determination of I&T-related risk?

A. The impact on competitors in the same industry

B. The likelihood of occurrence for most relevant risk scenarios

C. The impact on the business services that the IT system supports

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

An enterprise has performed a risk assessment for the risk associated with the theft of sales team laptops while in transit. The results of the assessment concluded that the cost of mitigating the risk is higher than the potential loss. Which of the following is the BEST risk response strategy?

A. Accept the inherent risk.

B. Limit travel with laptops.

C. Encrypt the sales team laptops.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Organizations monitor control statuses to provide assurance that:

A. compliance with established standards is achieved.

B. return on investment (ROI) objectives are met.

C. risk events are being fully mitigated.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)