85%(146)124 out of 146 people found this document helpful
This preview shows page 15 - 16 out of 16 pages.
2.00000 points Save AnswerSave AnswerTrueFalseQUESTION 112Examples of strategic risk include an organizational merger or acquisition, a change in the customer, ora change in the industry.2.00000 points Save AnswerSave AnswerQUESTION 113In the third line of defense, the auditor serves as an advisor to the first and second lines of defense inmatters concerning risk. The third line must preserve his or her independence but also offer input onrisk direction and strategies.2.00000 points Save AnswerQUESTION 114An illustration of ________________ would be an organization installing malware software on thenetwork and endpoint, monitoring for suspicious traffic, and responding as needed.2.00000 points Save AnswerSave AnswerQUESTION 115While these two approaches have similarities in terms of the topics they address, ________ will coverbroad IT management topics and specify which security controls and management need to be installed;however, ________ does not address how to implement specific controls.2.00000 points Save AnswerSave AnswerTrueFalseQUESTION 116COSO is an international governance and controls framework and a widely accepted standard forassessing, governing, and managing IT security and risks.2.00000 points Save AnswerQUESTION 117The risk governance domain guarantees that the entire range of opportunities and consequences areconsidered with regard to business strategy.2.00000 points Save AnswerSave AnswerQUESTION 118The operational risk committee has the ability to determine which business activities are riskier thanothers. For example, if a business wants to sell product on the Internet for the first time, then the riskcommittee would need to understand the wide-ranging risks involved as well as the organization’ssecurity capability.2.00000 points Save AnswerQUESTION 119Which of the following is not one of the similarities shared by an enterprise risk management (ERM)framework and a governance, risk management, and compliance (GRC) framework?2.00000 points Save AnswerSaveSaveClick Save and Submit to save and submit. Click Save All Answers to save all answers.