ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CRISC All Questions

View all questions & answers for the CRISC exam
Go to Exam

Exam CRISC topic 1 question 920 discussion

Actual exam question from Isaca's CRISC
Question #: 920
Topic #: 1
[All CRISC Questions]

Which of the following MUST be updated to maintain an IT risk register?

  • A. Risk appetite
  • B. Risk tolerance
  • C. Expected frequency and potential impact
  • D. Enterprise-wide IT risk assessment
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Ramye at April 4, 2021, 3:05 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Staanlee
10 months, 2 weeks ago
Selected Answer: C
C. Expected frequency and potential impact. An IT risk register is a dynamic tool used to document, assess, and manage IT-related risks. To keep it effective, you need to regularly update the information it contains. This includes reviewing and revising the expected frequency (likelihood) and potential impact (severity) of identified risks as new information becomes available or as the business environment changes.
upvoted 1 times
...
CbtL
1 year, 3 months ago
Selected Answer: C
Agree with C.
upvoted 1 times
CbtL
1 year, 3 months ago
Believe the idea is that you are "maintaining" the IT Risk Register. C are items to update for general maintenance.
upvoted 1 times
...
...
Koulyo
1 year, 3 months ago
going with C
upvoted 2 times
...
john_boogieman
1 year, 5 months ago
Selected Answer: C
Agree,
upvoted 2 times
...
Raj1510
2 years, 6 months ago
I think C is right
upvoted 3 times
...
Anon530
3 years, 3 months ago
I am guessing that D. Enterprise-wide IT risk assessment is not the correct answer because it's too specific. You don't need to do an enterprise-wide assessment to up date the risk registry. In addition, a risk registry can contain other things than "IT." That is why C is the better answer. (Note: I initially picked D as well.)
upvoted 3 times
...
Ramye
3 years, 3 months ago
The answer could be D. Enterprise-wide IT risk assessment. No sure the why C is the answer provided.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel