CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CRISC—Certified in Risk and Information Systems Control Certification Questions and answer - Part 63
1. Jeff works as a Project Manager for www.company.com Inc. He and his team members are involved in the identify risk process. Which of the following tools & techniques will Jeff use in the identify risk process?Each correct answer represents a complete solution. Choose all that apply.(Select 3answers)
A) Information gathering technique
B) Documentation reviews
C) Checklist analysis
D) Risk categorization
2. Mary is the project manager for the BLB project. She has instructed the project team to assemble, to review the risks. She has included the schedule management plan as an input for the quantitative risk analysis process. Why is the schedule management plan needed for quantitative risk analysis?
A) Mary will schedule when the identified risks are likely to happen and affect the project schedule.
B) Mary will utilize the schedule controls and the nature of the schedule for the quantitative analysis of the schedule.
C) Mary will use the schedule management plan to schedule the risk identification meetings throughout the remaining project.
D) Mary will utilize the schedule controls to determine how risks may be allowed to change the project schedule.
3. Which of the following control detects problem before it can occur?
A) Deterrent control
B) Detective control
C) Compensation control
D) Preventative control
4. Which of the following aspects are included in the Internal Environment Framework of COSO ERM?Each correct answer represents a complete solution. Choose three.(Select 3answers)
A) Enterprise's integrity and ethical values
B) Enterprise's working environment
C) Enterprise's human resource standards
D) Enterprise's risk appetite
5. Which of the following type of risk could result in bankruptcy?
A) Marginal
B) Negligible
C) Critical
D) Catastrophic
A) Information gathering technique
B) Documentation reviews
C) Checklist analysis
D) Risk categorization
2. Mary is the project manager for the BLB project. She has instructed the project team to assemble, to review the risks. She has included the schedule management plan as an input for the quantitative risk analysis process. Why is the schedule management plan needed for quantitative risk analysis?
A) Mary will schedule when the identified risks are likely to happen and affect the project schedule.
B) Mary will utilize the schedule controls and the nature of the schedule for the quantitative analysis of the schedule.
C) Mary will use the schedule management plan to schedule the risk identification meetings throughout the remaining project.
D) Mary will utilize the schedule controls to determine how risks may be allowed to change the project schedule.
3. Which of the following control detects problem before it can occur?
A) Deterrent control
B) Detective control
C) Compensation control
D) Preventative control
4. Which of the following aspects are included in the Internal Environment Framework of COSO ERM?Each correct answer represents a complete solution. Choose three.(Select 3answers)
A) Enterprise's integrity and ethical values
B) Enterprise's working environment
C) Enterprise's human resource standards
D) Enterprise's risk appetite
5. Which of the following type of risk could result in bankruptcy?
A) Marginal
B) Negligible
C) Critical
D) Catastrophic
1. Right Answer: A,B,C
Explanation: The various tools & techniques used in the identify risk process are as follows: Documentation reviews Information gathering technique Checklist analysis Assumption analysis Diagramming techniques SWOT analysis Expert judgment
2. Right Answer: B
Explanation: The controls within the schedule management plan can shape how quantitative risk analysis will be performed on the schedule.Schedule management plan also describes how the schedule contingencies will be reported and assessed.Incorrect Answers:A: When risks are likely to happen is important, but it is not the best answer for this questionC: This is not a valid answer for this question throughout the project, but it is not scheduled during the quantitative risk analysis process.D: Risks may affect the project schedule, but this is not the best answer for the question.
3. Right Answer: D
Explanation: Preventative controls are the controls that detect the problem before it occurs. They attempt to predict potential problems and make adjustments to prevent those problems to occur in near future. This prediction is being made by monitoring both the system's operations and its inputs.Incorrect Answers:A: Deterrent controls are similar to the preventative controls, but they diminish or reverse the attraction of the environment to prevent risk from occurring instead of making adjustments to the environment.B: Detective controls simply detect and report on the occurrence of a problems. They identify specific symptoms to potential problems.C: Compensation controls ensure that normal business operations continue by applying appropriate resource.
4. Right Answer: A,C,D
Explanation: The internal environment for risk management is the foundational level of the COSO ERM framework, which describes the philosophical basics of managing risks within the implementing enterprise. The different aspects of the internal environment include the enterprise's: Philosophy on risk management Risk appetite Attitudes of Board of Directors Integrity and ethical values Commitment to competence Organizational structure Authority and responsibility Human resource standards
5. Right Answer: D
Explanation: Catastrophic risk causes critical financial losses that have the possibility of bankruptcy.Incorrect Answers:A: Marginal risk causes financial loss in a single line of business and a reduced return on IT investment.B: It causes minimal impact on a single line of business affecting their ability to deliver services or products.C: Critical risk causes serious financial losses in more than one line of business with a loss in productivity.
Explanation: The various tools & techniques used in the identify risk process are as follows: Documentation reviews Information gathering technique Checklist analysis Assumption analysis Diagramming techniques SWOT analysis Expert judgment
2. Right Answer: B
Explanation: The controls within the schedule management plan can shape how quantitative risk analysis will be performed on the schedule.Schedule management plan also describes how the schedule contingencies will be reported and assessed.Incorrect Answers:A: When risks are likely to happen is important, but it is not the best answer for this questionC: This is not a valid answer for this question throughout the project, but it is not scheduled during the quantitative risk analysis process.D: Risks may affect the project schedule, but this is not the best answer for the question.
3. Right Answer: D
Explanation: Preventative controls are the controls that detect the problem before it occurs. They attempt to predict potential problems and make adjustments to prevent those problems to occur in near future. This prediction is being made by monitoring both the system's operations and its inputs.Incorrect Answers:A: Deterrent controls are similar to the preventative controls, but they diminish or reverse the attraction of the environment to prevent risk from occurring instead of making adjustments to the environment.B: Detective controls simply detect and report on the occurrence of a problems. They identify specific symptoms to potential problems.C: Compensation controls ensure that normal business operations continue by applying appropriate resource.
4. Right Answer: A,C,D
Explanation: The internal environment for risk management is the foundational level of the COSO ERM framework, which describes the philosophical basics of managing risks within the implementing enterprise. The different aspects of the internal environment include the enterprise's: Philosophy on risk management Risk appetite Attitudes of Board of Directors Integrity and ethical values Commitment to competence Organizational structure Authority and responsibility Human resource standards
5. Right Answer: D
Explanation: Catastrophic risk causes critical financial losses that have the possibility of bankruptcy.Incorrect Answers:A: Marginal risk causes financial loss in a single line of business and a reduced return on IT investment.B: It causes minimal impact on a single line of business affecting their ability to deliver services or products.C: Critical risk causes serious financial losses in more than one line of business with a loss in productivity.
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment