ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CRISC All Questions

View all questions & answers for the CRISC exam
Go to Exam

Exam CRISC topic 1 question 844 discussion

Actual exam question from Isaca's CRISC
Question #: 844
Topic #: 1
[All CRISC Questions]

A risk practitioner notices a risk scenario associated with data loss at the organization's cloud provider is assigned to the provider. Who should the risk scenario be reassigned to?

  • A. Chief risk officer
  • B. Vendor manager
  • C. Data owner
  • D. Senior management
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by aselunar at June 2, 2021, 7:35 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
CbtL
9 months ago
Selected Answer: C
Agree it is C.
upvoted 1 times
...
Broesweelies
9 months, 3 weeks ago
Selected Answer: C
C. Data owner The risk scenario should be reassigned to the data owner, as they are responsible for ensuring the proper handling, protection, and overall management of the data. While the cloud provider plays a role in securing and maintaining the data, the ultimate responsibility for managing the risk associated with data loss lies with the data owner.
upvoted 2 times
...
john_boogieman
10 months, 2 weeks ago
Selected Answer: D
While the cloud provider may have a role in mitigating the risk associated with data loss, ultimately, the responsibility for managing the risk rests with the organization's senior management. This includes identifying and assessing the risk, developing and implementing risk mitigation strategies, and monitoring the effectiveness of the risk management program. The data owner may also have a role in managing the risk associated with data loss, particularly if they are responsible for ensuring the confidentiality, integrity, and availability of the data. However, reassigning the risk scenario to senior management ensures that the responsibility for managing the risk is clearly defined and aligned with the organization's overall risk management strategy. Therefore, the risk scenario associated with data loss at the organization's cloud provider should be reassigned to senior management to ensure effective risk management and oversight.
upvoted 1 times
Koulyo
9 months, 1 week ago
this matter is not of the operational level of senior management.
upvoted 2 times
...
...
aselunar
2 years, 7 months ago
This looks correct. Also see R3-106.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel