ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 638 discussion

Actual exam question from Isaca's CISM
Question #: 638
Topic #: 1
[All CISM Questions]

An information security manager is reporting on open items from the risk register to senior management. Which of the following is MOST important to communicate with regard to these risks?

  • A. Key risk indicators (KRIs)
  • B. Responsible entities
  • C. Compensating controls
  • D. Potential business impact
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by richck102 at July 5, 2023, 8:09 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Josef4CISM
3 days, 6 hours ago
Why its not A? Key risk indicators reflect the potential impact and probability of risk occurrence. They are an efficient and comprehensive way to communicate open risks to the senior management, without unnecessary detailed potential impact descriptions. I believe answer A should be the correct answer, instead of answer D.
upvoted 1 times
...
richck102
6 months ago
Selected Answer: D
D. Potential business impact
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago