nerdexam
(ISC)2

CISSP-ISSEP · Question #176

You are working as a project manager in your organization. You are nearing the final stages of project execution and looking towards the final risk monitoring and controlling activities. For your proj

The correct answer is C. Requested changes. Requested changes (C) are a direct output of the Risk Monitoring and Control process because when risks are identified, realized, or updated during monitoring, the project manager must formally request adjustments to the project plan, schedule, or budget - these feed into Integra

Risk Management

Question

You are working as a project manager in your organization. You are nearing the final stages of project execution and looking towards the final risk monitoring and controlling activities. For your project archives, which one of the following is an output of risk monitoring and control?

Options

  • AQuantitative risk analysis
  • BRisk audits
  • CRequested changes
  • DQualitative risk analysis

How the community answered

(27 responses)
  • A
    4% (1)
  • C
    89% (24)
  • D
    7% (2)

Explanation

Requested changes (C) are a direct output of the Risk Monitoring and Control process because when risks are identified, realized, or updated during monitoring, the project manager must formally request adjustments to the project plan, schedule, or budget - these feed into Integrated Change Control.

Why the distractors are wrong:

  • A & D (Quantitative/Qualitative Risk Analysis) are separate processes in the Risk Management knowledge area, not outputs - they happen earlier during planning, not as results of monitoring and control.
  • B (Risk Audits) is a tool and technique used during risk monitoring and control, not an output - it's something you do to produce results, not something that comes out of the process.

Memory tip: Distinguish outputs by asking "what does this process produce that feeds into other processes?" Risk audits are how you monitor; requested changes are what you generate as a result - they flow downstream into change control. When in doubt, anything labeled an "audit" or "analysis" is almost always a tool/technique or a process, not an output.

Topics

#Risk Monitoring and Control#Project Risk Management#Change Management

Community Discussion

No community discussion yet for this question.

Full CISSP-ISSEP Practice