ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CRISC All Questions

View all questions & answers for the CRISC exam
Go to Exam

Exam CRISC topic 1 question 1104 discussion

Actual exam question from Isaca's CRISC
Question #: 1104
Topic #: 1
[All CRISC Questions]

Which of the following is the MOST important step to ensure regulatory requirements are adequately addressed within an organization?

  • A. Employ IT solutions that meet regulatory requirements
  • B. Perform a gap analysis against regulatory requirements
  • C. Obtain necessary resources to address regulatory requirements
  • D. Develop a policy framework that addresses regulatory requirements
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Jco at Nov. 21, 2022, 2:42 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
trev0r
5 days, 14 hours ago
Selected Answer: B
B. Perform a gap analysis against regulatory requirements. This step provides the foundational understanding of the scope, nature, and extent of the changes and efforts needed, which then informs all subsequent actions. Without a clear understanding of the gaps, an organization risks misallocating resources, missing key compliance points, or implementing ineffective controls.
upvoted 1 times
...
mynk29
7 months, 2 weeks ago
Selected Answer: B
Policy framework will be FIRST step towards addressing non-compliance. Performing gap analysis is MOST IMPORTANT step for finding out noncompliance.
upvoted 1 times
...
CbtL
8 months, 2 weeks ago
Selected Answer: D
Going with D. Policy is the first step towards compliance with regulations.
upvoted 1 times
...
Koulyo
9 months, 1 week ago
basing on how ISACA thinks i am going with B.
upvoted 3 times
...
jseeker
9 months, 1 week ago
Selected Answer: D
The question clearly states that the regulation is not new. What is the MOST important step to ensure regulatory requirements are adequately addressed within an organization? Gap analysis can be done if the regulation is new – or if there is a change in regulation. This is focused more towards adequately addressing regulatory requirements which start from the policy development. policy is not just a guidance it needs to be adhered to or an approved exception needs to be in place
upvoted 2 times
...
john_boogieman
10 months, 2 weeks ago
Selected Answer: B
Correction to 'B', reason: A gap analysis is a systematic process of comparing the organization's current state to the regulatory requirements to identify areas of noncompliance or weakness. By performing a gap analysis, an organization can identify where it falls short of regulatory requirements and develop plans to address those gaps. Developing a policy framework that addresses regulatory requirements is also important, but it is not the most important step. Policies provide guidance and direction on how to meet regulatory requirements, but if the organization is not aware of where it falls short, the policies may not be effective.
upvoted 1 times
...
john_boogieman
11 months, 1 week ago
Selected Answer: D
Of all the options, the regulatory requirements must be set out in a policy.
upvoted 2 times
...
Suchib
1 year ago
Regulatory requirement should be treated as any other risk, so why separate policy framework is required for the same?
upvoted 1 times
...
Jco
1 year, 1 month ago
Shouldnt it be B? to do gap analysis to compare current state and regulatory ask.
upvoted 2 times
Jco
1 year, 1 month ago
After re-reading it multiple time, D. Develop a policy framework that addresses regulatory requirements might be the best answer because Gap analysis may happen if there's any subsequent changes of regulatory req
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel