GAQM ISO 31000 - Certified Lead Risk Manager ISO-31000-CLA Dumps in PDF

Free GAQM ISO-31000-CLA Real Questions (page: 11)

New definition of risk under ISO 31000 and 31010 is:

  1. Danger that injury, damage, or loss will occur
  2. Possibility of investment loss
  3. Probability of loss to an insurer
  4. Probability of an event that will have an impact on objectives

Answer(s): D

Explanation:

According to ISO/IEC Guide73 (2009), clause 1., risk is defined as "the effect of uncertainty on objectives". This definition applies to both ISO/IEC Guide73 (2009) and ISO31000 (2018), which are standards for risk management terminology and principles respectively.



Causes of risk include all the following except:

  1. Health, safety and environment
  2. Finance
  3. Insurance
  4. Chemical breakdown

Answer(s): C

Explanation:

According to ISO/IEC Guide73 (2009), clause B., causes are "elements which alone or in combination have potential to give rise to risk". Health, safety, environment, finance and chemical breakdown are examples of causes that can create risks for an organization or an individual 1. Insurance is not a cause but a method of transferring or mitigating some types of risks 1.



Risk management as defined by OCEG GRC model is:

  1. Capability to set and evaluate performance against objectives
  2. Capability to proactively identify, assess and address uncertainty and potential obstacles to achieving objectives
  3. Capability to proactively encourage and ensure compliance with established policies and boundaries

Answer(s): B

Explanation:

According to 1, OCEG GRC model is "a framework for integrating governance, risk management,

compliance and ethics/culture into a single capability". It defines risk management as "the capability that enables an organization to understand how uncertainty affects its ability to achieve objectives" 2.



Which of the following is the current trend in auditing, risk management and compliance?

  1. Providing assurance over threats
  2. Performing discrete audits in compliance with internal control
  3. Front office function providing leading indicators about risk

Answer(s): C

Explanation:

According to 3, page 6, one of the current trends in auditing, risk management and compliance is "moving from a back-office function providing lagging indicators about risk (e.g., audit findings) to a front-office function providing leading indicators about risk (e.g., key risk indicators)".



Which risk is sometimes called `retained risk.'?

  1. Residual risk
  2. Conceptualize risk
  3. Analytical risk
  4. Procedural risk

Answer(s): A

Explanation:

According to ISO/IEC Guide73 (2009), clause B., residual risk is "the level of remaining after controls have been applied". It is sometimes called `retained risk' because it represents the amount of risk that an organization decides to accept or retain after implementing its mitigation strategies 3.



Which of the following statements does not apply to ISO 31000?

  1. It is the first standard issued by ISO for risk management
  2. It can be used by any organization regardless of its size, activity or sector
  3. It can be used for certification purposes

Answer(s): C

Explanation:

According to ISO31000 (2018), clause 1., it is "not intended for certification purposes". It provides guidance on how organizations can manage their risks effectively using a systematic approach based on principles, framework and process 3.



Who is expected to take a more focused oversight role with respect to risk management control and governance process?

  1. Internal auditors
  2. External auditors
  3. Audit committee
  4. None of the above

Answer(s): A

Explanation:

According to 3, page 7, one of the current trends in auditing, risk management and compliance is "increasing expectations for internal auditors to take a more focused oversight role with respect to enterprise-wide governance processes". Internal auditors can provide independent assurance on how well an organization manages its risks using various tools such as audits, reviews, assessments and evaluations.



Where does an internal auditor typically spend most of his time auditing today?

  1. People
  2. Process
  3. Technology
  4. Infrastructure

Answer(s): B

Explanation:

According to , page 9, one of the current trends in auditing, risk management and compliance is "shifting from auditing people to auditing processes". This means that internal auditors focus more on how well an organization's processes are designed and implemented to achieve its objectives and manage its risks.



Share your comments for GAQM ISO-31000-CLA exam with other users:

P
Paul K
11/27/2023 2:28:00 AM

i think it should be a,c. option d goes against the principle of building anything custom unless there are no work arounds available

P
ph
6/16/2023 12:41:00 AM

very legible

S
sephs2001
7/31/2023 10:42:00 PM

is this exam accurate or helpful?

A
ash
7/11/2023 3:00:00 AM

please upload dump, i have exam in 2 days

S
Sneha
8/17/2023 6:29:00 PM

this is useful

S
sachin
12/27/2023 2:45:00 PM

question 232 answer should be perimeter not netowrk layer. wrong answer selected

T
tomAws
7/18/2023 5:05:00 AM

nice questions

R
Rahul
6/11/2023 2:07:00 AM

hi team, could you please provide this dump ?

T
TeamOraTech
12/5/2023 9:49:00 AM

very helpful to clear the exam and understand the concept.

C
Curtis
7/12/2023 8:20:00 PM

i think it is great that you are helping people when they need it. thanks.

S
sam
7/17/2023 6:22:00 PM

cannot evaluate yet

N
nutz
7/20/2023 1:54:00 AM

a laptops wireless antenna is most likely located in the bezel of the lid

R
rajesh soni
1/17/2024 6:53:00 AM

good examplae to learn basic

T
Tanya
10/25/2023 7:07:00 AM

this is useful information

N
Nasir Mahmood
12/11/2023 7:32:00 AM

looks usefull

J
Jason
9/30/2023 1:07:00 PM

question 81 should be c.

T
TestPD1
8/10/2023 12:22:00 PM

question 18 : response isnt a ?

A
ally
8/19/2023 5:31:00 PM

plaese add questions

D
DIA
10/7/2023 5:59:00 AM

is dumps still valid ?

A
Annie
7/7/2023 8:33:00 AM

thanks for this

A
arnie
9/17/2023 6:38:00 AM

please upload questions

T
Tanuj Rana
7/22/2023 2:33:00 AM

please upload the question dump for professional machinelearning

F
Future practitioner
8/10/2023 1:26:00 PM

question 4 answer is c. this site shows the correct answer as b. "adopt a consumption model" is clearly a cost optimization design principle. looks like im done using this site to study!!!

A
Ace
8/3/2023 10:37:00 AM

number 52 answer is d

N
Nathan
12/17/2023 12:04:00 PM

just started preparing for my exam , and this site is so much help

C
Corey
12/29/2023 5:06:00 PM

question 35 is incorrect, the correct answer is c, it even states so: explanation: when a vm is infected with ransomware, you should not restore the vm to the infected vm. this is because the ransomware will still be present on the vm, and it will encrypt the files again. you should also not restore the vm to any vm within the companys subscription. this is because the ransomware could spread to other vms in the subscription. the best way to restore a vm that is infected with ransomware is to restore it to a new azure vm. this will ensure that the ransomware is not present on the new vm.

R
Rajender
10/18/2023 3:54:00 AM

i would like to take psm1 exam.

B
Blessious Phiri
8/14/2023 9:53:00 AM

cbd and pdb are key to the database

A
Alkaed
10/19/2022 10:41:00 AM

the purchase and download process is very much streamlined. the xengine application is very nice and user-friendly but there is always room for improvement.

D
Dave Gregen
9/4/2023 3:17:00 PM

please upload p_sapea_2023

S
Sarah
6/13/2023 1:42:00 PM

anyone use this? the question dont seem to follow other formats and terminology i have been studying im getting worried

S
Shuv
10/3/2023 8:19:00 AM

good questions

R
Reb974
8/5/2023 1:44:00 AM

hello are these questions valid for ms-102

M
Mchal
7/20/2023 3:38:00 AM

some questions are wrongly answered but its good nonetheless

AI Tutor 👋 I’m here to help!