CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. ISACA
  5. CRISC

Free CRISC Exam Braindumps (page: 9)

Page 8 of 451
PDF with 1871 Questions

Which of the following is prepared by the business and serves as a starting point for producing the IT Service Continuity Strategy?

  1. Business Continuity Strategy
  2. Index of Disaster-Relevant Information
  3. Disaster Invocation Guideline
  4. Availability/ ITSCM/ Security Testing Schedule

Answer(s): A

Explanation:

The Business Continuity Strategy is an outline of the approach to ensure the continuity of Vital Business Functions in the case of disaster events. The Business Continuity Strategy is prepared by the business and serves as a starting point for producing the IT Service Continuity Strategy.

Incorrect Answers:
B: Index of Disaster-Relevant Information is a catalog of all information that is relevant in the event of disasters. This document is maintained and circulated by IT Service Continuity Management to all members of IT staff with responsibilities for fighting disasters.

C: Disaster Invocation Guideline is a document produced by IT Service Continuity Management with detailed instructions on when and how to invoke the procedure for fighting a disaster. Most importantly, the guideline defines the first step to be taken by the Service Desk after learning that a disaster has occurred.

D: Availability/ ITSCM/ Security Testing Schedule is a schedule for the regular testing of all availability, continuity, and security mechanisms jointly maintained by Availability, IT Service Continuity, and IT Security Management.



For which of the following risk management capability maturity levels do the statement given below is true? "Real-time monitoring of risk events and control exceptions exists, as does automation of policy management"

  1. Level 3
  2. Level 0
  3. Level 5
  4. Level 2

Answer(s): C

Explanation:

An enterprise's risk management capability maturity level is 5 when real-time monitoring of risk events and control exceptions exists, as does automation of policy management.

Incorrect Answers:
A, D: In these levels real-time monitoring of risk events is not done.

B: In level 0 of risk management capability maturity model, enterprise does not recognize the importance of considering the risk management or the business impact from IT risk.



Which of the following is true for Cost Performance Index (CPI)?

  1. If the CPI > 1, it indicates better than expected performance of project
  2. CPI = Earned Value (EV) * Actual Cost (AC)
  3. It is used to measure performance of schedule
  4. If the CPI = 1, it indicates poor performance of project

Answer(s): A

Explanation:

Cost performance index (CPI) is used to calculate performance efficiencies of project. It is used in trend analysis to predict future performance. CPI is the ratio of earned value to actual cost.
If the CPI value is greater than 1, it indicates better than expected performance, whereas if the value is less than 1, it shows poor performance.

Incorrect Answers:
B: CPI is the ratio of earned value to actual cost, i.e., CPI = Earned Value (EV) / Actual Cost (AC).

C: Cost performance index (CPI) is used to calculate performance efficiencies of project and not its schedule. D: The CPI value of 1 indicates that the project is right on target.



Which of the following do NOT indirect information?

  1. Information about the propriety of cutoff
  2. Reports that show orders that were rejected for credit limitations.
  3. Reports that provide information about any unusual deviations and individual product margins.
  4. The lack of any significant differences between perpetual levels and actual levels of goods.

Answer(s): A

Explanation:

Information about the propriety of cutoff is a kind of direct information. Incorrect Answers:
B: Reports that show orders that were rejected for credit limitations provide indirect information that credit checking aspects of the system are working as intended.

C: Reports that provide information about any unusual deviations and individual product margins (whereby, the price of an item sold is compared to its standard cost) provide indirect information that controls over billing and pricing are operating.

D: The lack of any significant differences between perpetual levels and actual levels provides indirect information that its billing controls are operating.






Post your Comments and Discuss ISACA CRISC exam with other Community members:

CRISC Discussions & Posts