Free Isaca CRISC Exam Questions
Try our Free Demo Practice Tests for Comprehensive CRISC Exam Preparation
-
Isaca CRISC Exam Questions
-
Provided By: Isaca
- Exam: Certified in Risk and Information Systems Control
- Certification: CRISC
-
Total Questions: 1818
-
Updated On: May 23, 2026
-
Rated: 4.9 |
-
Online Users: 3636
-
Question 1
-
A vulnerability assessment of a vendor-supplied solution has revealed that the software is susceptible to cross-site scripting and SQL injection attacks. Which of the following will BEST mitigate this issue?
Answer: A
-
-
Question 2
-
An organizational policy requires critical security patches to be deployed in production within three weeks of patch availability. Which of the following is the BEST metric to verify adherence to the policy?
Answer: B
-
An organizational policy requires critical security patches to be deployed in production within three weeks of patch availability. Which of the following is the BEST metric to verify adherence to the policy?
-
Question 3
-
Which of the following would be the BEST input when evaluating the risk associated with a proposed adoption of robotic process automation (RPA) of a business service?
Answer: B
-
Which of the following would be the BEST input when evaluating the risk associated with a proposed adoption of robotic process automation (RPA) of a business service?
-
Question 4
-
Which of the following is the BEST key performance indicator (KPI) to measure the effectiveness of an anti-virus program?
Answer: C
-
-
Question 5
-
As the sensitivity of the monitoring tool has to be changed, therefore it requires optimization of Key Risk Indicator. The monitoring tool which is giving alerts is itself acting as a risk indicator. Hence to change the sensitivity of the monitoring tool to give alert only for critical situations requires optimization of the KRI.Incorrect Answers:A, C, D: These options are not relevant to the change of sensitivity of the monitoring tools.
Answer: A
-