What is the aim of mitigation as a risk response strategy?
Which of the following is NOT a risk response strategy for a positive risk?
Which risk response strategy for a positive risk is opposite to the avoidance strategy for a negative risk?
Risks that have a high probability of occurrence and a high financial impact should be ranked _____ a risk that has a low probability of occurrence and a low financial impact.
When a firm chooses not to pursue an activity for fear of a loss, they are practicing _____.
Risk management is the process of identifying and assessing risks, _____, implementing and evaluating controls to reduce the impact of risks.
In the example used in this lesson, what is the MAIN reason testing the whole population for horribilitis is not a good idea?
Which of the following is not necessary information for a risk-benefit analysis?
In which of the following fields are risk-benefit analyses most common?
How does ISO 27005 differ from other publications like NIST SP 800-30?
The review stage of the risk management framework should be _____.
Why might a company accept a risk during the five-step framework?
When an organization purchases insurance, what is the risk mitigation strategy that they are using?
If the management decides to proceed with a strategy without putting in additional internal controls or finding a way to share the risk, what risk mitigating strategy are they using?
If the management decides NOT to pursue a course of action because of the potential harm to the organization, what risk mitigation strategy are they using?
This approach to defense risk control strategy may come in the form of complex passwords or access control measures:
What does it mean to try to implement risk defense measures through policy?
Which of these words is most synonymous with defense risk control strategy?
A business might seek to implement a transference risk control strategy for all of the following reasons EXCEPT which?
Which of these is a necessary component of transference risk control strategy?
How does risk transference work?
A project manager will have to deal with ripple effects from subcontractors and their timelines when she or he chooses what method of managing risk?
If a project manager must meet a tight deadline and decides to add employees, she or he is engaging in what method to manage the risk of missing the deadline?
When adding resources to a project and having employees work overtime are not effective, what other ways do we have to manage risk as it is happening?
Who is in charge of distributing the questions, consolidating the replies and leading all Delphi technique discussions?
What is the Delphi technique mainly used for?
Which of the following is NOT a drawback of the Delphi technique?
What is the first step of the risk management process?
The process of determining a control's effectiveness at reducing or minimizing the risk is what stage of the risk management process?
In terms of risk-benefit analysis, why do we get into cars everyday, even though they're dangerous?
Controlling Cybersecurity Risk Chapter Exam Instructions
Choose your answers to the questions and click 'Next' to see the next set of questions. You can skip questions if you would like and come
to them later with the yellow "Go To First Skipped Question" button. When you have completed the practice exam, a green submit button will
Click it to see your results. Good luck!