CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. ISACA
  5. CRISC

Free CRISC Exam Braindumps (page: 4)

Page 3 of 451
PDF with 1871 Questions

You work as the project manager for Bluewell Inc. Your project has several risks that will affect several stakeholder requirements. Which project management plan will define who will be available to share information on the project risks?

  1. Resource Management Plan
  2. Risk Management Plan
  3. Stakeholder management strategy
  4. Communications Management Plan

Answer(s): D

Explanation:

The Communications Management Plan defines, in regard to risk management, who will be available to share information on risks and responses throughout the project.

The Communications Management Plan aims to define the communication necessities for the project and how the information will be circulated. The Communications Management Plan sets the communication structure for the project. This structure provides guidance for communication throughout the project's life and is updated as communication needs change. The Communication Managements Plan identifies and defines the roles of persons concerned with the project. It includes a matrix known as the communication matrix to map the communication requirements of the project.

Incorrect Answers:
A: The Resource Management Plan does not define risk communications.

B: The Risk Management Plan defines risk identification, analysis, response, and monitoring. C: The stakeholder management strategy does not address risk communications.



Which of the following controls is an example of non-technical controls?

  1. Access control
  2. Physical security
  3. Intrusion detection system
  4. Encryption

Answer(s): B

Explanation:

Physical security is an example of non-technical control. It comes under the family of operational controls. Incorrect Answers:
A, C, D: Intrusion detection system, access control, and encryption are the safeguards that are incorporated into computer hardware, software or firmware, hence they refer to as technical controls.



You are the project manager of GHT project. Your project team is in the process of identifying project risks on your current project. The team has the option to use all of the following tools and techniques to diagram some of these potential risks EXCEPT for which one?

  1. Process flowchart
  2. Ishikawa diagram
  3. Influence diagram
  4. Decision tree diagram

Answer(s): D

Explanation:

Decision tree diagrams are used during the Quantitative risk analysis process and not in risk identification. Incorrect Answers:
A, B, C: All these options are diagrammatical techniques used in the Identify risks process.



Which of the following BEST describes the utility of a risk?

  1. The finance incentive behind the risk
  2. The potential opportunity of the risk
  3. The mechanics of how a risk works
  4. The usefulness of the risk to individuals or groups

Answer(s): B






Post your Comments and Discuss ISACA CRISC exam with other Community members:

CRISC Discussions & Posts