ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 1158 discussion

Actual exam question from Isaca's CISM
Question #: 1158
Topic #: 1
[All CISM Questions]

Who should decide whether a specific control should be changed once risk is approved for mitigation?

  • A. Risk owner
  • B. Data owner
  • C. Control owner
  • D. Process owner
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Booict at July 18, 2024, 3:59 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Josef4CISM
1 month, 1 week ago
Selected Answer: D
I feel like the "suggested correct" answer options of the very last questions of this question pool are not very good. The process owner should decide whether to change controls as he is accountable to security
upvoted 1 times
...
Booict
7 months, 2 weeks ago
C-he control owner oversees the implementation, monitoring, and adjustment of controls to address identified risks. They ensure that controls remain effective and aligned with risk management objectives
upvoted 1 times
Bl1024
6 months, 2 weeks ago
The question asks who should DECIDE to replace the control
upvoted 1 times
fac161f
5 months, 3 weeks ago
Control owners have accountablity.
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago