Certified in Risk and Information Systems Control (CRISC) — Question 1328

Which of the following is the MOST important objective of the information system control?

Answer options

• A. Business objectives are achieved and undesired risk events are detected and corrected
• B. Ensuring effective and efficient operations
• C. Developing business continuity and disaster recovery plans
• D. Safeguarding assets

Correct answer: A

Explanation

The most critical objective of information system control is to ensure that business goals are met while identifying and mitigating potential risks, making option A the correct choice. While options B, C, and D are important aspects of information systems, they do not encompass the overarching aim of achieving business objectives alongside risk management.