CRISC Assessment Test
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 27% Most missed: “You are the project manager of a large networking project. During the execution …”

The CRISC certification is designed to meet the growing demand for professionals who can integrate enterprise risk management (ERM) with discrete IS control skills.

CRISC Assessment Test
Time left 00:00
25 Questions

1. The Identify Risk process determines the risks that affect the project and document their characteristics. Why should the project team members be involved in the Identify Risk process?
2. What type of policy would an organization use to forbid its employees from using organizational e-mail for personal use?
3. You work as a project manager for BlueWell Inc. Management has asked you to work with the key project stakeholder to analyze the risk events you have identified in the project. They would like you to analyze the project risks with a goal of improving the project's performance as a whole. What approach can you use to achieve this goal of improving the project's performance through risk analysis with your project stakeholders?
4. An enterprise has identified risk events in a project. While responding to these identified risk events, which among the following stakeholders is MOST important for reviewing risk response options to an IT risk.
5. Which of the following controls is an example of non-technical controls?
6. You are the project manager in your enterprise. You have identified risk that is noticeable failure threatening the success of certain goals of your enterprise. In which of the following levels do this identified risk exists?
7. Which of the following is true for Single loss expectancy (SLE), Annual rate of occurrence (ARO), and Annual loss expectancy (ALE)?
8. You are the project manager of the NHH Project. You are working with the project team to create a plan to document the procedures to manage risks throughout the project. This document will define how risks will be identified and quantified. It will also define how contingency plans will be implemented by the project team. What document do you and your team is creating in this scenario?
9. Which section of the Sarbanes-Oxley Act specifies Periodic financial reports must be certified by CEO and CFO"?"
10. Mary is the project manager for the BLB project. She has instructed the project team to assemble, to review the risks. She has included the schedule management plan as an input for the quantitative risk analysis process. Why is the schedule management plan needed for quantitative risk analysis?
11. Which of the following are the principles of access controls?
12. Which of the following BEST ensures that a firewall is configured in compliance with an enterprise's security policy?
13. Which of the following is the first MOST step in the risk assessment process?
14. You are the project manager of GHT project. You have selected appropriate Key Risk Indicators for your project. Now, you need to maintain those Key Risk Indicators. What is the MOST important reason to maintain Key Risk Indicators?
15. Fred is the project manager of a large project in his organization. Fred needs to begin planning the risk management plan with the project team and key stakeholders. Which plan risk management process tool and technique should Fred use to plan risk management?
16. Which of the following is the process of numerically analyzing the effects of identified risks on the overall enterprise's objectives?
17. You are the project manager of your enterprise. You have introduced an intrusion detection system for the control. You have identified a warning of violation of security policies of your enterprise. What type of control is an intrusion detection system (IDS)?
18. Which of following is NOT used for measurement of Critical Success Factors of the project?
19. Which of the following operational risks ensures that the provision of a quality product is not overshadowed by the production costs of that product?
20. Which of the following aspects are included in the Internal Environment Framework of COSO ERM?
21. You and your project team are identifying the risks that may exist within your project. Some of the risks are small risks that won't affect your project much if they happen. What should you do with these identified risk events?
22. Which one of the following is the only output for the qualitative risk analysis process?
23. You are the project manager of a SGT project. You have been actively communicating and working with the project stakeholders. One of the outputs of the Manage stakeholder expectations" process can actually create new risk events for your project. Which output of the manage stakeholder expectations process can create risks?"
24. Which of the following is described by the definition given below? It is the expected guaranteed value of taking a risk.""
25. You are the project manager of the GHY Project for your company. You need to complete a project management process that will be on the lookout for new risks, changing risks, and risks that are now outdated. Which project management process is responsible for these actions?

⚡ Recently practiced quizzes in this topic
Live quiz activity