Free Practice Isaca IT-Risk-Fundamentals Exam Questions 2025

Stay ahead with 100% Free ISACA's IT Risk Fundamentals IT-Risk-Fundamentals Dumps Practice Questions

Page: 1 / 44

Total 218 Questions | Updated On: Jun 05, 2025

Add To Cart

Question 1

What is the primary focus of the top-down approach to developing risk scenarios?

A : Defining concrete, customized scenarios based on enterprise context

B : Understanding business goals and impact criteria

C : Hypothetical situations envisioned by the people performing job functions

D : Compiling a list of threats or generic loss scenarios

Answer: B

Question 2

Which activity is commonly linked with analyzing Information and Technology (I&T) related risks?

A : Estimating the frequency and impact of I&T-related risk scenarios.

B : Identifying potential vulnerabilities within the I&T infrastructure and systems.

C : Documenting IT controls that mitigate similar risk types.

D : Cataloging I&T-related risk scenarios.

Answer: A

Question 3

What category of control is represented by employing a firewall to obstruct traffic on ports linked to malicious tools?

A : Detective

B : Preventive

C : Compensating

D : Corrective

Answer: B

Question 4

Why is it highly desirable to have a single integrated business continuity plan?

A : To ensure that resources committed are used ineffectively

B : To ensure that there is no confidence in surviving a disruption

C : To ensure proper coordination among various plan components and effective resource utilization

D : To ensure that no plan components need coordination

Answer: C

Question 5

Which statement accurately describes threat actors?

A : Threat actors encompass a variety of potential sources beyond just humans.

B : Every threat is associated with a threat actor.

C : Threat actors are limited to humans.

D : Threat actors encompass competitors as well.

Answer: A

Page: 1 / 44

Total 218 Questions | Updated On: Jun 05, 2025

Add To Cart