Multiple Choice
In the NIST 800-39 framework, risk assessment
A) Addresses how organizations respond to risks
B) Identifies and aggregates the risks facing the organization
C) Describes the environment in which risk-based decisions are made
D) Evaluates the effectiveness of the organization's risk-management plan
Correct Answer:
Verified
Correct Answer:
Verified
Q2: As described in the text, a statement
Q3: IT risk is<br>A) The risk associated with
Q4: Risk management is<br>A) A quantified measure of
Q5: In the NIST 800-39 framework, risk monitoring<br>A)
Q6: A certain risk has a 1% likelihood
Q8: The verification of IT general controls as
Q9: Section 404 of the Sarbanes-Oxley act of
Q10: If assessed using the NIST 800-39 framework,
Q11: A given threat is usually associated with
Q12: The management model that guides the ISO