Question 1

What is the primary focus of the top-down approach to developing risk scenarios?

Options :

A : Defining concrete, customized scenarios based on enterprise context

B : Understanding business goals and impact criteria

C : Hypothetical situations envisioned by the people performing job functions

D : Compiling a list of threats or generic loss scenarios

Answer: B

Question 2

What determines the suitability of risk analysis approaches?

Options :

A : Culture, resources, skills, environment, and risk appetite

B : Potential consequences of a given risk scenario

C : Criticality and sensitivity of IT assets

D : Frequency and magnitude of a given risk scenario

Answer: A

Question 3

Who is responsible for financial management in an enterprise?

Options :

A : CIO

B : CRO

C : CFO

Answer: C

Question 4

What is the aim of risk management according to the provided text?

Options :

A : To enhance complexity within the enterprise

B : To reduce complexity

C : To complicate risk management unnecessarily

D : To create confusion in enterprise risk scenarios

Answer: B

Question 5

What should be documented in a comprehensive risk assessment report?

Options :

A : Internal factors only

B : Risk response information only

C : Assumptions and unknown factors

D : External factors only

Answer: C