Which of the following will BEST help an organization evaluate the control environment of several third-party vendors? A. Review vendors' performance metrics on quality and delivery of processes. B. Review vendors' internal risk assessments covering key risk and controls. C. Obtain independent control reports from high-risk vendors. D. Obtain vendor references from third parties. Suggested Answer: A This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer