Isaca Certified in Risk and Information Systems Control CRISC Question # 408 Topic 41 Discussion

CRISC Exam Topic 41 Question 408 Discussion:

Question #: 408

Topic #: 41

A new international data privacy regulation requires personal data to be
disposed after the specified retention period, which is different from the local
regulatory requirement. Which of the following is the risk practitioner ' s
BEST course of action?

The application code has not been version controlled.

Knowledge of the applications is limited to few employees.

An IT project manager is not assigned to oversee development.

Controls are not applied to the applications.

Get Premium CRISC Questions

Actual exam question for Isaca CRISC exam by Talon5704 at Apr 6, 2026, 12:15:02 PM

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: force70

Isaca Certified in Risk and Information Systems Control CRISC Question # 408 Topic 41 Discussion

Isaca Certified in Risk and Information Systems Control CRISC Question # 408 Topic 41 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: force70

Isaca Certified in Risk and Information Systems Control CRISC Question # 408 Topic 41 Discussion

Isaca Certified in Risk and Information Systems Control CRISC Question # 408 Topic 41 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval