Free ISC2 CGRC Exam Questions
Absolute Free CGRC Exam Practice for Comprehensive Preparation
-
ISC2 CGRC Exam Questions
-
Provided By: ISC2
- Exam: Certified in Governance Risk and Compliance
- Certification: ISC certification
-
Total Questions: 393
-
Updated On: Jan 13, 2026
-
Rated: 4.9 |
-
Online Users: 786
-
Question 1
-
An organization has implemented network segmentation as a security control to prevent unauthorized access to sensitive data. However, the organization has recently experienced a data breach in which an attacker was able to move laterally between different segments of the network. Which of the following is the most likely reason for the failure of this control?
Answer: C
-
-
Question 2
-
Security controls are assessed for a number of reasons. Which of the following are reasons for assessing security controls? Select all that apply.
Answer: A,D
-
-
Question 3
-
Which of the following is NOT typically included in the system registration process in the NIST RMF?
Answer: D
-
-
Question 4
-
In the prepare step of the NIST RMF, which of the following should be established to ensure an effective risk management process?
Answer: A
-
-
Question 5
-
Which of the following best describes the benefits of using automation to support control assessments in the context of an information security program?
Answer: B
-
Which of the following best describes the benefits of using automation to support control assessments in the context of an information security program?