New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca IT Risk Fundamentals Exam - Topic 3 Question 9 Discussion

Actual exam question for Isaca's IT Risk Fundamentals exam
Question #: 9
Topic #: 3
[All IT Risk Fundamentals Questions]

Which of the following is used to estimate the frequency and magnitude of a given risk scenario?

Show Suggested Answer Hide Answer
Suggested Answer: B

Primary Use of KRIs:

KRIs are primarily used to predict risk events by providing measurable data that signals potential issues.

This predictive capability helps organizations to mitigate risks before they escalate.

Risk Prediction:

Effective KRIs allow organizations to foresee potential risks and implement measures to address them proactively.

This improves the overall risk management process by reducing the likelihood and impact of risk events.


ISA 315 (Revised 2019), Anlage 6 emphasizes the use of indicators and metrics to monitor and predict risks within an organization's IT and operational environments.

by Christiane at Jan 21, 2025, 10:42 PM

Limited Time Offer

25%

Off

Get Premium IT Risk Fundamentals Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Noel
3 months ago
I’m not so sure about A, sounds too simplistic.
upvoted 0 times
...
Tegan
3 months ago
Wait, is risk governance really not involved in this?
upvoted 0 times
...
Rossana
3 months ago
A is the right choice, no doubt!
upvoted 0 times
...
Fidelia
4 months ago
I think B is more about tracking risks, not estimating them.
upvoted 0 times
...
Arlette
4 months ago
Definitely A, risk analysis is key!
upvoted 0 times
...
Luis
4 months ago
Risk governance sounds familiar, but I don't recall it being used for estimating frequency and magnitude.
upvoted 0 times
...
Felicitas
4 months ago
I feel like I've seen a question like this before, and I think risk analysis was definitely the focus there too.
upvoted 0 times
...
Stacey
4 months ago
I'm not entirely sure, but I remember something about a risk register being more about documenting risks rather than estimating them.
upvoted 0 times
...
Nohemi
5 months ago
I think the answer might be A, risk analysis, since it involves assessing risks and their potential impacts.
upvoted 0 times
...
Dion
5 months ago
I'm leaning towards risk analysis as well. That's the key tool we use to quantify and prioritize risks, which is what this question seems to be asking about.
upvoted 0 times
...
Galen
5 months ago
Okay, let me think this through. Risk analysis seems like the right answer here - it's the technique used to assess the frequency and magnitude of risks. The other options like the risk register and risk governance are more about managing risks, not analyzing them.
upvoted 0 times
...
Tonette
5 months ago
Hmm, I'm not sure about this one. Is it asking about the risk register, which is where we document all the identified risks? Or is it something to do with risk governance?
upvoted 0 times
...
Azalee
5 months ago
I'm pretty confident this is asking about risk analysis. That's the process of estimating the likelihood and impact of risks.
upvoted 0 times
...
Sheldon
10 months ago
I wonder if 'Risk Guesswork' is an option. That's how I usually handle risks!
upvoted 0 times
Beula
9 months ago
C) Risk governance
upvoted 0 times
...
Anastacia
9 months ago
B) Risk register
upvoted 0 times
...
Claudia
9 months ago
A) Risk analysis
upvoted 0 times
...
...
Penney
10 months ago
A) Risk analysis is the way to go! Gotta know what could go wrong before we can plan for it.
upvoted 0 times
...
Billi
10 months ago
C) Risk governance is about the structure and policies for managing risks, not the actual analysis.
upvoted 0 times
Quentin
8 months ago
B) Risk register
upvoted 0 times
...
Fletcher
9 months ago
A) Risk analysis
upvoted 0 times
...
...
Tasia
10 months ago
B) Risk register is a list of identified risks, but it doesn't estimate the frequency and magnitude of those risks.
upvoted 0 times
...
Tegan
10 months ago
I think the correct answer is A) Risk analysis. This is the process of identifying and assessing potential risks to the project or organization.
upvoted 0 times
Derick
9 months ago
It's important to conduct thorough risk analysis to mitigate potential threats to the project.
upvoted 0 times
...
Gary
9 months ago
Risk analysis is crucial for understanding potential risks and their impact on a project.
upvoted 0 times
...
Polly
9 months ago
I agree, A) Risk analysis is used to estimate the frequency and magnitude of a given risk scenario.
upvoted 0 times
...
...
Vi
11 months ago
I'm not sure, but I think it could also be B) Risk register. It keeps track of all identified risks.
upvoted 0 times
...
Elouise
11 months ago
I agree with Adaline. Risk analysis helps estimate the frequency and magnitude of a risk scenario.
upvoted 0 times
...
Adaline
11 months ago
I think the answer is A) Risk analysis.
upvoted 0 times
...

Save Cancel