Question Bank
Manage assessment questions by domain and category
| ID | Question Text | Domain | Category | Type | Risk Weight | Status | Actions |
|---|---|---|---|---|---|---|---|
| 99 | Do you have a formal user access provisioning process? Documented procedures for granting access |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 185 | Do you have a formal user access provisioning process? Documented procedures for granting access |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 100 | Do you have a formal user deprovisioning process? Procedures for removing access when employees leave |
IT Assets & Investments | Access Controls | YesNo | 2.5 | Active | |
| 186 | Do you have a formal user deprovisioning process? Procedures for removing access when employees leave |
IT Assets & Investments | Access Controls | YesNo | 2.5 | Active | |
| 101 | How quickly is access removed when an employee terminates? | IT Assets & Investments | Access Controls | MultipleChoice | 2.5 | Active | |
| 187 | How quickly is access removed when an employee terminates? | IT Assets & Investments | Access Controls | MultipleChoice | 2.5 | Active | |
| 102 | Do you conduct regular access reviews? Periodic review of who has access to what |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 188 | Do you conduct regular access reviews? Periodic review of who has access to what |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 103 | How frequently are access reviews conducted? | IT Assets & Investments | Access Controls | MultipleChoice | 1.5 | Active | |
| 189 | How frequently are access reviews conducted? | IT Assets & Investments | Access Controls | MultipleChoice | 1.5 | Active | |
| 104 | Do you follow the principle of least privilege? Users only have minimum necessary access |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 190 | Do you follow the principle of least privilege? Users only have minimum necessary access |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 105 | Do you have a password policy? Requirements for password complexity and expiration |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 191 | Do you have a password policy? Requirements for password complexity and expiration |
IT Assets & Investments | Access Controls | YesNo | 2.0 | Active | |
| 106 | What is your minimum password length requirement? Number of characters |
IT Assets & Investments | Access Controls | Numeric | 1.5 | Active | |
| 192 | What is your minimum password length requirement? Number of characters |
IT Assets & Investments | Access Controls | Numeric | 1.5 | Active | |
| 107 | How frequently are passwords required to change? | IT Assets & Investments | Access Controls | MultipleChoice | 1.0 | Active | |
| 193 | How frequently are passwords required to change? | IT Assets & Investments | Access Controls | MultipleChoice | 1.0 | Active |
Showing 18 of 242 questions
242 Active
0 Inactive