The decision on whether new risks should fall under periodic or event-driven reporting should be based on which of the following?

Posted by: Pdfprep Category: CISM Tags: Isaca Certificaton, CISM exam questions, CISM practice exam Post Date: November 8, 2020

The decision on whether new risks should fall under periodic or event-driven reporting should be based on which of the following?
A . Mitigating controls
B . Visibility of impact
C . Likelihood of occurrence
D . Incident frequency

Answer: B

Explanation:

Visibility of impact is the best measure since it manages risks to an organization in the timeliest manner. Likelihood of occurrence and incident frequency are not as relevant. Mitigating controls is not a determining factor on incident reporting.

The decision on whether new risks should fall under periodic or event-driven reporting should be based on which of the following?

Author

Leave a Reply Cancel reply