CISM Question #756: Real Exam Question with Answer & Explanation

The correct answer is B: Conducting regular risk assessments to identify AI-related vulnerabilities and threats. The most important step to manage potential risks of a generative AI system is to conduct regular risk assessments. This ensures that the organization continuously identifies and addresses emerging vulnerabilities, threats, and compliance issues associated with AI use, enabling i

Submitted by hans_de· Apr 18, 2026Information Security Risk Management

Question

An organization has adopted a generative AI system. Which of the following is MOST important to enable the organization to manage potential risks?

Options

AInvesting in advanced AI-based cybersecurity solutions to mitigate risks
BConducting regular risk assessments to identify AI-related vulnerabilities and threats
CConducting employee training on risks associated with generative AI
DIncreasing computing capacity to handle the AI workload and enable rapid scaling

Explanation

The most important step to manage potential risks of a generative AI system is to conduct regular risk assessments. This ensures that the organization continuously identifies and addresses emerging vulnerabilities, threats, and compliance issues associated with AI use, enabling informed decisions and effective risk mitigation strategies.

Topics

#Generative AI#Risk Management#Risk Assessment#AI Security

Community Discussion

No community discussion yet for this question.

Full CISM Practice Browse All CISM Questions