Which role is generally responsible for strategic decisions in security?

Chief Information Security Officer (CISO)

What does GRC stand for?

Governance, Regulation, and Compliance

The ISO 27001:2013 standard focuses on:

Information security management

Information Security Management System

International Standard Management System

Institutional Security Mechanism

Risk assessment in ISO 27001 helps in:

Identifying, analyzing, and evaluating risks

Identifying internal team conflicts

Which document defines the scope of ISMS?

SoA (Statement of Applicability)

Banking, Financial Services, and Insurance

Banking, Finance, and Software Industries

Biometric Framework and Security Infrastructure

Business Financial Sector Initiative

The IT Act in India mainly deals with:

Cybercrime and electronic commerce

Security compliance in the telecom sector ensures:

Data privacy and lawful interception

The role of security regulation is to:

Ensure adherence to legal and policy requirements

Which of these is a function of security regulation in BFSI?

Protecting customer financial data

In the healthcare sector, the major concern of information security is:

Patient privacy and confidentiality

Security assurance ensures that:

Security controls work as intended

Only internal employees can access data

The primary goal of auditing is to:

Evaluate compliance and performance

An audit checklist helps to:

Ensure all controls are evaluated

Audit methodology involves:

Planning, execution, and reporting

Security audits should be:

Conducted periodically and consistently

Focused only on financial systems

One key element of a security audit is:

Testing physical access controls

Information Security Governance includes:

Security policies and risk management

One responsibility of internal audit related to IS governance is:

Reviewing security policy implementation

Audit planning includes:

Determining objectives and scope

Audit testing is done to:

Evaluate control design and effectiveness

Audit analysis focuses on:

Control performance and deficiencies

Main components of Information Security Governance include:

Policies, risk management, and accountability

The role of audit testing is to:

Validate compliance of implemented controls

During planning, auditors define:

Objectives, criteria, and methods

Why is IS governance auditing important?

To ensure alignment of security with business goals

To validate marketing strategies

To monitor employee satisfaction

Governance, Risk, and Compliance Quiz

Authored by Rohit Bathla

English

University

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

50 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a goal of GRC?

Maximize marketing outreach

Ensure compliance, manage risk, and align IT with business

Minimize IT investments

Increase employee turnover

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

BISA stands for:

Business Intelligent Security Analysis

Business-Information Security Alignment

Business Infrastructure Security Architecture

Binary Information System Alignment

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which framework provides guidelines for effective GRC?

OSI

ISO 9001

COBIT

TCP/IP

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Information security is considered a business enabler because it:

Increases operational costs

Reduces customer engagement

Supports compliance and improves trust

Limits innovation

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

One key requirement for BISA is:

Ignoring user needs

Complete separation of IT and business functions

Close alignment of business goals and IT security

Focus only on hardware implementation

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a global information security standard?

GDPR

ISO 27001

HIPAA

TCP/IP

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An information security professional is NOT responsible for:

Defining security policies

Managing human resources

Monitoring compliance

Risk analysis

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

51 questions

ALC Book 9 Lesson 2 Review Test

Quiz

•

University

50 questions

[0225] mixed Gr & vocab

Quiz

•

University

50 questions

English A2 Lessons 1-5

Quiz

•

University

45 questions

100 common verbs in English Communication (Part 2) Relationships

Quiz

•

11th Grade - University

50 questions

ENG301_Chapter 17_Adverb Clauses

Quiz

•

University

50 questions

BÀI KIỂM TRA TỔNG HỢP DANH TỪ - MẠO TỪ - ĐẠI TỪ

Quiz

•

University

47 questions

2ND EXAMEN; ENGLISH 1 DELEX

Quiz

•

University

51 questions

UTS/UAS ENTREPRENEURSHIP MR KOESWORO

Quiz

•

University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

15 questions

Hargrett House Quiz: Community & Service

Quiz

•

5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for English

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Subject verb agreement practice

Quiz

•

University

23 questions

Subject Verb Agreement

Quiz

•

9th Grade - University

Governance, Risk, and Compliance Quiz

Which of the following is a goal of GRC?

BISA stands for:

Which framework provides guidelines for effective GRC?

Information security is considered a business enabler because it:

One key requirement for BISA is:

Which of the following is a global information security standard?

An information security professional is NOT responsible for:

Which standard addresses governance of enterprise IT?

Which role is generally responsible for strategic decisions in security?

What does GRC stand for?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for English