An organization has outsourced its IT security operations to a third party. Who is ULTIMATELY accountable for the risk associated with the outsourced operations?

• A.The organization's vendor management office
• B.The organization's management
• C.The control operators at the third party
• D.The third party's management

Comment: *

Name: *

Email: *

Verification: *

Which of the following would BEST help to ensure that suspicious network activity is identified?

• A.Coordinating events with appropriate agencies
• B.Analyzing server logs
• C.Analyzing intrusion detection system (IDS) logs
• D.Using a third-party monitoring provider

Comment: *

Name: *

Email: *

Verification: *

Which of The following is the MOST comprehensive input to the risk assessment process specific to the effects of system downtime?

• A.Recovery lime objective (RTO)
• B.Business impact analysis (BIA)
• C.results Recovery point objective (RPO)
• D.Business continuity plan (BCP) testing results

Comment: *

Name: *

Email: *

Verification: *

You and your project team are identifying the risks that may exist within your project. Some of the risks are small risks that won't affect your project much if they happen. What should you do with these identified risk events?

• A.These risks can be dismissed.
• B.These risks can be accepted.
• C.These risks can be added to a low priority risk watch list.
• D.All risks must have a valid, documented risk response.

Comment: *

Name: *

Email: *

Verification: *

Fred is the project manager of a large project in his organization. Fred needs to begin planning the risk management plan with the project team and key stakeholders. Which plan risk management process tool and technique should Fred use to plan risk management?

• A.Information gathering techniques
• B.Data gathering and representation techniques
• C.Planning meetings and analysis
• D.Variance and trend analysis

Correct Answer: C

Explanation/Reference:
Explanation:
There is only one tool and technique available for Fred to plan risk management: planning meetings and analysis. Planning Meeting and Analysis is a tool and technique in the Plan Risk Management process.
Planning meetings are organized by the project teams to develop the risk management plan. Attendees at these meetings include the following:
Project manager

Selected project team members

Stakeholders

Anybody in the organization with the task to manage risk planning

Sophisticated plans for conducting the risk management activities are defined in these meetings, responsibilities related to risk management are assigned, and risk contingency reserve application approaches are established and reviewed.
Incorrect Answers:
A, B, D: These are not plan risk management tools and techniques.

Comment: *

Name: *

Email: *

Verification: *