Which of the following are the MOST important inputs when determining the desired state of IT risk during gap analysis? A. IT risk appetite and tolerance B. IT risk strategy and organizational requirements C. IT risk and control assessment results D. IT vulnerability and penetration testing results Suggested Answer: A This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer