10 free, exam-style RIMS Certified Risk Management Professional (RIMS-CRMP) practice questions with answers and explanations. No signup required. Work through them below, then take the full free RIMS-CRMP practice test to study every exam domain.
A risk management professional is analyzing an organization's operations to identify where risks may concentrate along its production and delivery chain. The professional categorizes 'Technology Development' as part of the analysis. According to Porter's Value Chain framework, Technology Development is BEST classified as which type of activity?
Correct answer: B - A support activity, because it enables primary activities across the value chain
Following a series of supply chain disruptions, the board of a multinational manufacturer asks the risk professional to strengthen the organization's resilience program. The risk professional recommends building capacity for the organization to reorganize and innovate when facing disruptions that were not anticipated in existing continuity plans. This recommendation PRIMARILY reflects which type of organizational resilience?
Correct answer: C - Adaptive resilience focused on the ability to respond to unanticipated change
A global financial services firm's board has approved a statement defining the total exposed amount the organization wishes to undertake on the basis of risk-return trade-offs for its desired outcomes. The chief risk officer then establishes specific boundaries for each business unit that define the amount of uncertainty each unit is prepared to accept. The board's statement BEST represents the organization's risk:
Correct answer: C - Appetite, because it reflects a deliberate choice about desired exposure levels
A risk professional is evaluating whether the organization's risk management framework aligns with ISO 31000:2018. The professional reviews a principle requiring that risk management anticipates, detects, acknowledges, and responds to changes in the external and internal environment. Which ISO 31000:2018 principle does this BEST describe?
Correct answer: C - Dynamic
A risk professional is designing a monitoring dashboard for the ERM program. One metric tracks a rising trend in employee turnover within the IT department. Another metric tracks the deviation between actual cybersecurity incident response times and the target response times established in the risk treatment plan. The rising employee turnover trend is BEST classified as a:
Correct answer: B - Key Risk Indicator (KRI), because it serves as a leading indicator of emerging risk to objectives
A risk professional needs to gather comprehensive risk information from leaders across finance, operations, legal, and supply chain simultaneously to identify cross-functional risks for a new market expansion. The professional wants to ensure that participants can build on each other's insights in real time. Which risk identification technique is MOST appropriate?
Correct answer: C - Facilitating a cross-functional risk workshop
An organization identifies a significant cyber liability exposure during its annual risk assessment. The risk professional recommends purchasing a cyber insurance policy to address the financial impact of a potential data breach. In the context of the ISO 31000 risk management process, this recommendation BEST represents which step?
Correct answer: D - Risk treatment, because the policy transfers the financial consequences to a third party
A risk professional is selecting an analysis method for a complex operational risk where sufficient historical loss data exists. The professional wants to model the range of potential financial outcomes by running thousands of iterations using probability distributions for key input variables. This approach is BEST described as:
Correct answer: C - A quantitative analysis using Monte Carlo simulation
A risk professional spends two hours working one-on-one with a business unit leader, guiding the leader through how to apply the organization's risk assessment process to a specific acquisition target. The risk professional asks open-ended questions and helps the leader develop their own approach to identifying and evaluating the acquisition risks. This activity BEST represents which competency development method?
Correct answer: B - Risk coaching, because the professional is helping an individual apply risk techniques to a specific situation
During a board meeting to decide whether to enter a new international market, the risk professional leads a structured discussion to help board members surface, examine, and prioritize the risks and opportunities associated with the expansion. The risk professional draws out perspectives from each board member without imposing conclusions. In this scenario, the risk professional is PRIMARILY acting in which role?
Correct answer: C - Facilitator, because the professional is leading a structured risk discussion without imposing conclusions
Practice hundreds more RIMS-CRMP questions with instant scoring, weak-area drills, and full exam simulations.