New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CRISC Exam - Topic 8 Question 68 Discussion

Actual exam question for Isaca's CRISC exam
Question #: 68
Topic #: 8
[All CRISC Questions]

An organization uses one centralized single sign-on (SSO) control to cover many applications. Which of the following is the BEST course of action when a new application is added to the environment after testing of the SSO control has been completed?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Lashawnda at Feb 08, 2024, 12:19 PM

Limited Time Offer

25%

Off

Get Premium CRISC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Beth
3 months ago
I doubt D is sufficient for new apps.
upvoted 0 times
...
Chantay
3 months ago
Surprised that people aren't considering A!
upvoted 0 times
...
Lashandra
3 months ago
Retesting the full control seems excessive.
upvoted 0 times
...
Katheryn
4 months ago
I disagree, C is the way to go!
upvoted 0 times
...
Lenna
4 months ago
I think option B makes the most sense.
upvoted 0 times
...
Noah
4 months ago
I think option D makes sense too, especially if the next assessment is coming up soon. It might be less disruptive than a full retest.
upvoted 0 times
...
Jina
4 months ago
I’m leaning towards option B because it seems logical to test the new application directly, but I worry about missing broader implications.
upvoted 0 times
...
Dorothy
4 months ago
I remember a similar question where we had to decide whether to retest or just review documentation. I feel like option C could be a good first step.
upvoted 0 times
...
Miss
5 months ago
I think we might need to retest the full control if the new application could impact the SSO functionality, but I'm not entirely sure.
upvoted 0 times
...
Johana
5 months ago
I feel pretty confident that reviewing the change control documentation is the best course of action here. That should give us the information we need to determine the appropriate next steps, whether that's a full retest or something more targeted.
upvoted 0 times
...
Stephen
5 months ago
Retest the control using the new application as the only sample? That seems like a pretty narrow approach to me. I'd want to make sure the control is still working properly across all the applications, not just the new one.
upvoted 0 times
...
Janna
5 months ago
Hmm, I'm a bit unsure about this one. Adding a new application to the environment could potentially impact the SSO control in unexpected ways, so I'm leaning towards a full retest to be on the safe side.
upvoted 0 times
...
Gerri
5 months ago
I think the best approach here is to review the change control documentation to see how the new application was integrated with the SSO control. That should give us a good starting point to determine if a full retest is necessary or if a more targeted approach would be sufficient.
upvoted 0 times
...
Ty
5 months ago
Hmm, I'm not sure about this one. I'm debating between B and E. Oversubscribing CPU resources could work, but enabling simultaneous multithreading might be the better option. I'll have to think this through a bit more.
upvoted 0 times
...
Rodolfo
5 months ago
Hmm, I'm a bit confused by all the details in this question. I'll need to make sure I understand the key terms and concepts like notional principal, credit risk, and netting agreements before I can tackle this.
upvoted 0 times
...
Joni
5 months ago
That sounds familiar! I remember something about humped curves but can't recall if it flattens or just shifts. Maybe it's like when we did that practice question on changes in interest rates affecting the curve.
upvoted 0 times
...
Shala
5 months ago
I vaguely recall we discussed nested groups in class. From what I remember, option D about groups being nested should be true.
upvoted 0 times
...
Elvera
2 years ago
I think re-evaluating the control during the next assessment is a good compromise.
upvoted 0 times
...
Willard
2 years ago
We should review the change control documentation to see if any updates are needed.
upvoted 0 times
...
Elliot
2 years ago
But what if there are unforeseen issues with the new application?
upvoted 0 times
...
Shonda
2 years ago
I agree with Elvera, retesting the full control seems unnecessary.
upvoted 0 times
...
Elvera
2 years ago
I disagree, I believe testing with the new application alone is sufficient.
upvoted 0 times
...
Elliot
2 years ago
I think we should retest the full control just to be safe.
upvoted 0 times
...

Save Cancel