exam questions

Exam CRISC All Questions

View all questions & answers for the CRISC exam

Exam CRISC topic 1 question 1243 discussion

Actual exam question from Isaca's CRISC
Question #: 1243
Topic #: 1
[All CRISC Questions]

A segregation of duties control was found to be ineffective because it did not account for all applicable functions when evaluating access. Who is responsible for ensuring the control is designed to effectively address risk?

  • A. Control tester
  • B. Risk manager
  • C. Risk owner
  • D. Control owner
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
mynk29
3 months, 4 weeks ago
Selected Answer: B
"Unwillingness of a risk owner to accept current risk mandates the adoption of a new risk response, continued through iterations until the risk reaches an acceptable level, at which point the risk owner should formally accept the risk. Acceptance of residual risk should also include accountable ownership of the controls that produce the appropriate mitigations to ensure that these remain in effect after acceptance." It is indeed Risk owner.
upvoted 1 times
mynk29
3 months, 4 weeks ago
option C
upvoted 1 times
mynk29
3 months, 4 weeks ago
Sorry read again. RACI for control is R--> COntrol owner A-->Risk owner. D it is
upvoted 1 times
...
...
...
CbtL
4 months, 2 weeks ago
Selected Answer: D
Agree with D.
upvoted 1 times
...
Koulyo
5 months, 2 weeks ago
Responsibility is with the control owner. Accountability is with the risk owner. D is my choice.
upvoted 3 times
...
ap0ls
6 months, 1 week ago
SoD is a control. so the answer should be D
upvoted 3 times
...
john_boogieman
7 months, 2 weeks ago
Selected Answer: D
Is control owner. ISACA definition: A person in whom the enterprise has invested the authority and accountability for making control-related decisions and is responsible for ensuring that the control is implemented and is operating effectively and efficiently.
upvoted 4 times
...
Suchib
8 months, 2 weeks ago
Risk owner is accountable, is it not control owner?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago