Isaca AAIR - Advanced in AI Risk Exam
Page: 1 / 18
Total 90 questions
Question #1 (Topic: Exam A)
A risk practitioner is developing risk scenarios related to successful data poisoning attacks on an AI model used across the organization. Which of the following is the BEST approach to help ensure the scenarios are relevant?
A. Perform adversarial testing in a sandbox environment.
B. Gather information on similar attacks impacting industry peers
C. Create comprehensive data flow diagrams.
D. Engage key stakeholders in risk scenario development.
Answer: D
Question #2 (Topic: Exam A)
Which of the following is a risk practitioner's BEST recommendation to establish accountability for AI system outputs and decisions?
A. Centralized governance task force for model decision authority
B. Continuous monitoring and key performance indicators (KPIs)
C. Regular reviews of resource allocation for AI projects
D. Formal documented role assignments with named owners
Answer: D
Question #3 (Topic: Exam A)
Which of the following is the PRIMARY purpose of maintaining comprehensive model cards and documentation?
A. Justifying model use cases
B. Preserving audit trails
C. Listing technical specifications
D. Providing model transparency
Answer: D
Question #4 (Topic: Exam A)
Which of the following BEST enables an organization adopting AI solutions to foster an ethical and risk-aware culture?
A. All business units use checklists to ensure AI risk and ethical concerns are addressed.
B. Senior management representatives actively participate in industry conferences related to AI ethics.
C. AI policies include clear disciplinary actions for violations of risk and ethical standards.
D. Leadership consistently models ethical behavior and values for AI development and use.
Answer: D
Question #5 (Topic: Exam A)
To reinforce organization-wide ethical norms and risk recognition, which of the following is MOST important to integrate into AI user training?
A. Acceptable use policy and acknowledgment
B. Ethical risk indicators and reporting
C. Cyber threat identification and AI incident handling
D. External regulations and compliance checklists
Answer: B
