Free ISACA IT-Risk-Fundamentals Exam Dumps Questions & Answers

A risk practitioner has been tasked with analyzing new risk events added to the risk register. Which of the following analysis methods would BEST enable the risk practitioner to minimize ambiguity and subjectivity?

• A.  Delphi method
• B.  Brainstorming
• C.  Annual loss expectancy (ALE)

Risk impact criteria are PRIMARILY used to:

• A.  determine loss associated with specific IT assets.
• B.  help establish the enterprise risk appetite.
• C.  prioritize the enterprise's risk responses.

Which of the following is important to ensure when validating the results of a frequency analysis?

• A.  The analysis was conducted by an independent third party.
• B.  The analysis method has been fully documented and explained.
• C.  Estimates used during the analysis were based on reliable and historical data.

Which of the following risk analysis methods gathers different types of potential risk ideas to be validated and ranked by an individual or small groups during interviews?

• A.  Brainstorming model
• B.  Delphi technique
• C.  Monte Cado analysis

Which of the following is MOST important for a risk practitioner to ensure when preparing a risk report?

• A.  The risk report should be uniform for all stakeholders to ensure consistency.
• B.  The risk report should be published for transparency and enterprise risk awareness.
• C.  The risk report should be customized to stakeholder expectations.