CRISC Question #320: Real Exam Question with Answer & Explanation

Question

The results of a risk assessment reveal risk scenarios with high impact and low likelihood of occurrence. Which of the following would be the BEST action to address these scenarios?

Options

• AAssemble an incident response team.
• BCreate a disaster recovery plan (DRP).
• CDevelop a risk response plan.
• DInitiate a business impact analysis (BIA).

Explanation

For high-impact, low-likelihood risks, the best action is to develop a comprehensive risk response plan outlining specific strategies and actions to address the scenario if it occurs.

Common mistakes.

• A. Assembling an incident response team is a component of a broader risk response plan (specifically for incident management), but it is not the comprehensive action needed to address the overall risk scenario proactively.
• B. Creating a disaster recovery plan (DRP) is a specific type of contingency plan focused on recovery from disruptive events, which falls under a broader risk response plan, but does not cover all aspects of addressing high-impact, low-likelihood risks.
• D. Initiating a business impact analysis (BIA) helps to understand the potential effects of disruption and is a critical input before developing a risk response plan, but it is not the action to address the scenario itself.

Concept tested. Risk Response Planning

Reference. https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/govern/security-baseline/security-baseline-risk-management

No community discussion yet for this question.