EMT Practice Test
1. Question Content...
Question3: Which of the following is MOST critical when designing controls?
Question6: Risk management strategies are PRIMARILY adopted to:
Question9: Which stakeholders are PRIMARILY responsible for determining enterprise IT risk appetite?
Question15: What can be determined from the risk scenario chart?
Question20: An IT license audit has revealed that there are several unlicensed copies of co be to:
Question25: Which of the following is the MAIN reason for documenting the performance of controls?
Question28: Which of the following is the BEST method to identify unnecessary controls?
Question32: An effective control environment is BEST indicated by controls that:
Question36: Which of the following can be interpreted from a single data point on a risk heat map?
Question37: Which of the following attributes of a key risk indicator (KRI) is MOST important?
Question38: Which of the following is the MAIN reason to continuously monitor IT-related risk?
Question43: Which of the following is the MOST important input when developing risk scenarios?
Question49: Controls should be defined during the design phase of system development because:
Question50: Which of the following statements BEST describes risk appetite?
Question52: Which of the following attributes of a key risk indicator (KRI) is MOST important?
Question54: The MAIN purpose of having a documented risk profile is to:
Question56: Establishing ao organizational code of conduct is an example of which type of control?
Question71: Accountability for a particular risk is BEST represented in a:
Question73: The FIRST task when developing a business continuity plan should be to:
Question76: The MAIN goal of the risk analysis process is to determine the:
Question78: Which of the following BEST indicates the effectiveness of anti-malware software?
Question82: Which of the following is the BEST method for assessing control effectiveness?
Question95: The PRIMARY basis for selecting a security control is:
Question119: Which of the following is the BEST course of action to reduce risk impact?
Question131: Which of the following is MOST useful when communicating risk to management?
Question137: Which of the following would BEST help an enterprise prioritize risk scenarios?
Question139: Which of the following will provide the BEST measure of compliance with IT policies?
Question145: The MAIN purpose of conducting a control self-assessment (CSA) is to: