Which of the following is a risk practitioner's BEST recommendation to help ensure cyber risk is assessed and reflected in the enterprise-level risk profile?
A.
Conduct cyber risk awareness training tailored specifically for senior management
B.
Implement a cyber risk program based on industry best practices
C.
Manage cyber risk according to the organization's risk management framework
D.
Define cyber roles and responsibilities across the organization
Question is around ensuring cyber risk is assessed and reflected in the enterprise-level risk profile. This is best achieved by following the Cyber risk management program inline with the existing risk management framework of the organization. B & D is around efficiency of the program. so is not the best answer. Correct Answer - C
A. Conduct cyber risk awareness training tailored specifically for senior management
B. Implement a cyber risk program based on industry best practices
C. Manage cyber risk according to the organization's risk management framework
D. Define cyber roles and responsibilities across the organization
upvoted 3 times
...
...
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
CbtL
9 months, 3 weeks agojohn_boogieman
11 months agoJulianleehk
11 months, 1 week agofora
1 year, 9 months agohuze
1 year, 4 months ago