EMT Practice Test
1. Question Content...
Question6: Which among the following acts as a trigger for risk response process?
Question11: The PRIMARY benefit associated with key risk indicators (KRIs) is that they:
Question12: What are the various outputs of risk response?
Question13: Which of the following is the BEST method for discovering high-impact risk types?
Question20: Which one of the following is the only output for the qualitative risk analysis process?
Question22: Which of the following is NOT true for risk governance?
Question34: The BEST control to mitigate the risk associated with project scope creep is to:
Question36: When developing a business continuity plan (BCP), it is MOST important to:
Question40: Which of the following is NOT the method of Qualitative risk analysis?
Question45: Which of the following is true for risk evaluation?
Question55: What is the value of exposure factor if the asset is lost completely?
Question58: What is the most important benefit of classifying information assets?
Question62: An interruption in business productivity is considered as which of the following risks?
Question64: Which negative risk response usually has a contractual agreement?
Question67: When developing IT risk scenarios, it is CRITICAL to involve:
Question76: The BEST reason to classify IT assets during a risk assessment is to determine the:
Question87: Which of the following decision tree nodes have probability attached to their branches?
Question96: To help ensure the success of a major IT project, it is MOST important to:
Question103: Risks to an organization's image are referred to as what kind of risk?
Question114: Where are all risks and risk responses documented as the project progresses?
Question116: Which of the following is the way to verify control effectiveness?
Question121: What is the IMMEDIATE step after defining set of risk scenarios?
Question126: Which of the following statements is NOT true regarding the risk management plan?
Question138: Which of the following would require updates to an organization's IT risk register?
Question145: Which among the following is the BEST reason for defining a risk response?
Question148: NIST SP 800-53 identifies controls in three primary classes. What are they?
Question170: Which of the following is an acceptable method for handling positive project risk?
Question171: Which of the following serve as the authorization for a project to begin?
Question172: Which of the following process ensures that extracted data are ready for analysis?
Question180: Which of the following control detects problem before it can occur?
Question184: Which of the following approaches would BEST help to identify relevant risk scenarios?
Question189: Which of the following is a key component of strong internal control environment?
Question190: Which of the following is the final step in the policy development process?
Question193: How residual risk can be determined?
Question205: Which of the following is an output of risk assessment process?
Question213: Which among the following is the MOST crucial part of risk management process?
Question221: Which of the following is the BEST defense against successful phishing attacks?
Question226: When does the Identify Risks process take place in a project?
Question231: Which of the following type of risk could result in bankruptcy?
Question236: Malicious code protection is which type control?
Question249: Which of the following is the most accurate definition of a project risk?
Question252: Which of the following laws applies to organizations handling health care information?
