When establishing an enterprise IT risk management program, it is MOST important to: A. review alignment with the organization's strategy. B. understand the organization's information security policy. C. validate the organization's data classification scheme. D. report identified IT risk scenarios to senior management. Suggested Answer: A This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer