1. Right Answer: B
Explanation: A risk fallback plan is a proper plan devised to identify definite action to be taken if the risk action plan (Risk Mitigation Plan) is not helpful. Fallback plan is important in Risk Response Planning. If the contingency plan for a risk is not successful, then the project team implements the fallback plan. Fall-back planning is intended for a known and specific activity that may perhaps fail to produce desired outcome. It is related with technical procedures and with the responsibility of the technical lead.Incorrect Answers:A, C, D: These all choices itself comes under risk action plan. As in the described scenario, risk action plan is not turned to be effective, these should not be implemented again.

2. Right Answer: C
Explanation: The plan risk management process is when risk categories were to be defined. If they were not defined, as in this scenario, it is acceptable to define the categories as part of the qualitative risk analysis process.Plan risk management is the process of defining the way to conduct the risk management activities. Planning is essential for providing sufficient resources and time for risk management activities, and to establish an agreed-upon basis of evaluating risks. This process should start as soon as project is conceived and should be completed early during project planning.Incorrect Answers:A: Risk categories are not defined through the define scope process.B: Risk categories are not defined through the risk identification process.D: Risk categories are not defined through the create work breakdown structure process.

3. Right Answer: A
Explanation: The change request log records the status of all change requests, approved or declined.The change request log is used as an account for change requests and as a means of tracking their disposition on a current basis. The change request log develops a measure of consistency into the change management process. It encourages common inputs into the process and is a common estimation approach for all change requests. As the log is an important component of project requirements, it should be readily available to the project team members responsible for project delivery. It should be maintained in a file with read-only access to those who are not responsible for approving or disapproving project change requests.Incorrect Answers:B: The project archive includes all project documentation and is created through the close project or phase process. It is not the best choice for this option.C: Lessons learned are not the correct place to document the status of a declined, or approved, change request.D: The project document updates is not the best choice for this question. It can be placed into the project documents, but the declined changes are part of the change request log.

4. Right Answer: B
Explanation: 0 nonexistent: An enterprise's risk management capability maturity level is 0 when:The enterprise does not recognize the need to consider the risk management or the business impact from IT risk. Decisions involving risk lack credible information. Awareness of external requirements for risk management and integration with enterprise risk management (ERM) do not exists.Incorrect Answers:A, C, D: These all are higher levels of capability maturity model and in this enterprise is mature enough to recognize the importance of risk management.

5. Right Answer: A
Explanation: Using list of possible scenarios with threats and impacts will better frame the range of risk and hence can frame more informative result of qualitative analysis.Incorrect Answers:B: Cost and benefit analysis is used for taking financial decisions that can be formal or informal, such as appraisal of any project or proposal. The approach weighs the total cost against the benefits expected, and then identifies the most profitable option. It only decides what type of control should be applied for effective risk management.C, D: These are not sufficient for producing detailed result.