Question 1

What does KPI stand for?

Options :

A : Key Privacy Indicator

B : Key Performance Indicator

C : Key People Indicator

D : Key Promise Indicator

Answer: B

Question 2

What determines the suitability of risk analysis approaches?

Options :

A : Culture, resources, skills, environment, and risk appetite

B : Potential consequences of a given risk scenario

C : Criticality and sensitivity of IT assets

D : Frequency and magnitude of a given risk scenario

Answer: A

Question 3

Which activity is commonly linked with analyzing Information and Technology (I&T) related risks?

Options :

A : Estimating the frequency and impact of I&T-related risk scenarios.

B : Identifying potential vulnerabilities within the I&T infrastructure and systems.

C : Documenting IT controls that mitigate similar risk types.

D : Cataloging I&T-related risk scenarios.

Answer: A

Question 4

What is the role of the third line in the three lines of defense in IT risk management?

Options :

A : Conducting formal inspections and verifications

B : Offering independent testing and assurance

C : Monitoring controls

D : Managing risk

Answer: B

Question 5

What does frequency analysis determine in the context of I&T-related risks?

Options :

A : The financial costs of risk scenarios

B : The methods for validating frequency analysis results

C : The impact of potential risk events

D : How often a particular risk scenario might occur during a specified period

Answer: D

Higher Test Marks with Free Online IT-Risk-Fundamentals Exam Practice