ISC2 Governance, Risk and Compliance (CGRC) Practice Question
While planning an assessment of an agency's information system, you need to confirm that emergency changes deployed in production are receiving the approvals required by the documented change control procedure. Which individual should be interviewed first to obtain the most direct evidence that the workflow is being followed in practice?
The operations shift supervisor who applies changes on the production servers
The organizational training coordinator responsible for user awareness programs
The information system security officer who reviews security documentation
The chairperson or coordinator of the Change Control Board
The chair (or coordinator) of the Change Control Board is the process owner who receives, records, and routes all change requests-including emergency changes-for approval. Interviewing this person provides first-hand evidence of how requests are vetted, which approvals are captured, and whether any steps are bypassed. Other stakeholders can offer supporting details, but they do not have primary responsibility for enforcing the change approval workflow (operations supervisors execute changes, the ISSO reviews for security impact after approval, and the training coordinator is not involved in change approvals).
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the role of the Change Control Board (CCB)?
Open an interactive chat with Bash
What constitutes 'emergency changes' in production systems?
Open an interactive chat with Bash
How does change approval workflow help ensure compliance and security?
Open an interactive chat with Bash
ISC2 Governance, Risk and Compliance (CGRC)
Compliance Maintenance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .