Test your basic knowledge |

CRISC Information Systems Control

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. IT risk






2. Risk indicator






3. Risk analysis






4. Business objective






5. Vulnerability event






6. Computer emergency response team (CERT)






7. Information systems (IS)






8. Business process owner






9. BPR






10. IEC






11. Loss event






12. Application controls






13. Vulnerability






14. IT architecture






15. Access rights






16. Data owner






17. Asset






18. RCSA






19. Risk mitigation






20. Magnitude






21. Threat event






22. Frequency






23. IT risk issue






24. SIE






25. IT risk profile






26. Risk appetite






27. Internal controls






28. Risk tolerance






29. Business impact analysis/assessment (BIA)






30. Reputation risk






31. Event






32. Preventive control






33. Threat analysis






34. Business case






35. Project portfolio






36. Evidence






37. Capability






38. Fallback procedures






39. System development life cycle (SDLC)






40. Availability






41. Control risk self-assessment






42. FMEA






43. Capability Maturity Model (CMM)






44. ISO






45. Detective control






46. RMIS






47. standards publisher of IT Audit and Assurance






48. Key risk indicator (KRI)






49. OCTAVE






50. Data custodian