Hard1 markMultiple Choice

Area III: SOC EngagementsRisk ManagementArea III

CPA · Question 62 · Area III: SOC Engagements

Which of the following is a 'Risk Response' strategy where the company decides to stop the activity that causes the risk?

Answer options:

A.

Risk Mitigation

B.

Risk Acceptance

C.

Risk Avoidance

D.

Risk Transfer

How to approach this question

Avoid = Don't do it. Mitigate = Fix it. Transfer = Insure it. Accept = Live with it.

Full Answer

C.Risk Avoidance✓ Correct

Risk Avoidance involves eliminating the risk by discontinuing the activity that generates it.

Common mistakes

Confusing Avoidance (stopping) with Mitigation (reducing).

Question 61 All questions Question 63

Practice the full CPA ISC Practice Exam 4

82 questions · hints · full answers · grading

Sign up free Take the exam

More questions from this exam

Q01A CPA is advising a client who is migrating their legacy on-premise ERP system to a cloud environ...Hard Q02An auditor is reviewing the Service Level Agreement (SLA) for a client using a public cloud provi...Hard Q03A company uses an Infrastructure as a Service (IaaS) model. During an IT audit, the auditor disco...Hard Q04An organization is implementing the COSO Enterprise Risk Management (ERM) framework to govern its...Hard Q05During a walkthrough of an order-to-cash process, the auditor observes that the sales manager can...Hard

View all 82 questions →