ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 1351 discussion

Actual exam question from Isaca's CISA
Question #: 1351
Topic #: 1
[All CISA Questions]

As part of the risk management process, threats and vulnerabilities should be mapped to:

  • A. existing controls.
  • B. information assets.
  • C. business objectives.
  • D. key performance indicators (KPIs).
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by KAP2HURUF at Dec. 25, 2023, 7:41 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Sibsankar
3 weeks, 4 days ago
Sorry for the previous message. It will be A surely
upvoted 1 times
...
Sibsankar
4 months, 3 weeks ago
It seems to be C mapping threats and vulnerabilities to business objectives provides a strategic perspective on risk management, aligning it with the overall organizational goals.
upvoted 1 times
...
KAP2HURUF
6 months, 2 weeks ago
Selected Answer: B
Mapping threats to assets and vulnerabilities can help identify their possible combinations. Each threat can be associated with a specific vulnerability, or even multiple vulnerabilities. Unless a threat can exploit a vulnerability, it is not a risk to an asset.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago