CMPE Organizational Governance Practice Test

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all
Session length

1 / 20

What is the purpose of an IT risk register?

To track marketing campaigns

To catalog IT-related risks, assess likelihood and impact, assign owners, and track mitigation actions and status.

To list all software licenses.

The purpose of an IT risk register is to catalog IT-related risks, assess their likelihood and potential impact, assign owners, and track mitigation actions and status. It serves as a centralized, living document for managing risk across information systems, data, and operations. Each risk entry typically includes a description, estimated likelihood, potential impact, a risk rating, existing controls, residual risk, an action plan, the designated owner, and target dates. This structure helps teams prioritize what to address first, ensures accountability by naming responsible individuals, and provides ongoing visibility into remediation progress and risk trends for governance, reporting, and audits.

Other options describe records that serve different aims—tracking marketing campaigns, listing software licenses, or storing employee training records—rather than systematically managing IT risks and their mitigations.

To store employee training records.

Next Question
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy