Which term describes an internal control used to avoid undesirable events that could have a negative material effect on a process?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Prepare for the ISACA IT Risk Fundamentals Test. Find flashcards and multiple choice questions, complete with hints and explanations. Ace your exam with confidence!

Multiple Choice

Which term describes an internal control used to avoid undesirable events that could have a negative material effect on a process?

Preventive controls are designed to stop problems before they occur, reducing the likelihood that an undesirable event will happen and cause material damage to a process. This proactive approach fits the idea of an internal control used to avoid negative outcomes, with examples such as access controls to prevent unauthorized actions, input validation to catch errors before processing, and separation of duties to reduce opportunities for fraud. In contrast, an IT risk register is simply a record of risks, not a control; qualitative risk analysis and risk analysis are methods for assessing risk, not mechanisms that prevent harm. So the term described is preventive control.

Which term describes an internal control used to avoid undesirable events that could have a negative material effect on a process?

Prepare for the ISACA IT Risk Fundamentals Test. Find flashcards and multiple choice questions, complete with hints and explanations. Ace your exam with confidence!

Which term describes an internal control used to avoid undesirable events that could have a negative material effect on a process?

Get the latest from Examzify