GAQM ISO-IEC-LI Exam - Topic 3 Question 106 Discussion

Actual exam question for GAQM's ISO-IEC-LI exam

Question #: 106
Topic #: 3

You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventory of threats and risks. What is the relation between a threat, risk and risk analysis?

AA risk analysis identifies threats from the known risks.

BA risk analysis is used to clarify which threats are relevant and what risks they involve.

CA risk analysis is used to remove the risk of a threat.

DRisk analyses help to find a balance between threats and risks.

Show Suggested Answer

Suggested Answer: B

by Genevive at Jan 05, 2026, 05:16 AM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-LI Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Gilma

14 days ago

I'd go with B as well. Seems like the most accurate description of the relationship between threats, risks, and risk analysis.

upvoted 0 times

...

Tonette

19 days ago

Definitely B. That's the whole point of a risk analysis - to identify and assess the risks.

upvoted 0 times

...

Alton

24 days ago

B) A risk analysis is used to clarify which threats are relevant and what risks they involve.

upvoted 0 times

...

Dalene

29 days ago

I recall a practice question that mentioned balancing threats and risks, which makes me lean towards option D.

upvoted 0 times

...

Olen

1 month ago

I feel like option C is not correct because a risk analysis doesn't actually remove risks, it just assesses them, right?

upvoted 0 times

...

Teddy

1 month ago

I'm not entirely sure, but I remember something about how risk analysis identifies threats from known risks. Maybe that's option A?

upvoted 0 times

...

Ocie

1 month ago

I think a risk analysis helps clarify which threats are relevant, so option B sounds right to me.

upvoted 0 times

...

Lashawnda

2 months ago

This question is testing our ability to differentiate between the terms. I'll need to carefully read through each answer choice and think about how they relate to the overall risk analysis process.

upvoted 0 times

...

Golda

2 months ago

I've got a good handle on this topic from our class discussions. I think option B is the best answer - a risk analysis is used to determine which threats are relevant and what risks they pose.

upvoted 0 times

...

Lorrie

2 months ago

I'm a bit confused on the relationship between the three concepts. I'll need to review my notes on risk management to make sure I understand the distinctions.

upvoted 0 times

...

Nelida

2 months ago

Okay, let's see. I think the key is understanding that a risk analysis is used to identify and assess the threats and risks, not necessarily to remove the risks entirely.

upvoted 0 times

...

Stevie

2 months ago

Hmm, this seems like a tricky one. I'll need to think carefully about the differences between threats, risks, and risk analysis.

upvoted 0 times

...