AAISM Best Training Material and Practice Test Q&A from CertLibrary.com

Question 1

From a risk perspective, which of the following is the MOST important step when implementing an adoption strategy for AI systems?

A. Establishing a comprehensive AI risk assessment framework
B. Implementing a robust risk analysis methodology tailored to AI-specific tasks
C. Conducting an AI risk assessment and updating the enterprise risk register
D. Benchmarking against peer organizations' AI risk strategies

Answer : C

Question 2

Which of the following is MOST important to monitor in order to ensure the effectiveness of an organization's AI vendor management program?

A. Vendor results in compliance training programs
B. Vendor participation in industry AI research
C. Vendor reviews of external AI threat reports
D. Vendor compliance with AI-related requirements

Answer : D

Question 3

After deployment, an AI model's output begins to drift outside of the expected range. Which of the following is the development team's BEST course of action?

A. Return to an earlier phase in the AI life cycle.
B. Take the AI model offline.
C. Adjust the hyperparameters of the AI model.
D. Create an emergency change request to correct the issue.

Answer : B

Question 4

The PRIMARY ethical concern of generative AI is that it may:

A. cause information integrity issues.
B. cause information to become unavailable.
C. breach the confidentiality of information.
D. produce unexpected data that could lead to bias.

Answer : A

Question 5

To ensure AI tools do not jeopardize ethical principles, it is MOST important to validate that:

A. stakeholders have approved alignment with company values.
B. AI tools are evaluated by the privacy department before implementation.
C. outputs of AI tools do not perpetuate adverse biases.
D. the organization has implemented a responsible development policy.

Answer : C

Question 6

Which of the following is the MOST effective use of AI-enabled tools in a security operations center (SOC)?

A. Employing AI-enabled tools to reduce false negatives by detecting subtle attack patterns
B. Replacing human analysis with automated AI decision-making processes
C. Assigning AI-enabled tools to triage non-critical alerts to preserve SOC resources
D. Using AI-enabled tools exclusively to classify all types of security incidents

Answer : A

Question 7

When implementing a generative AI system, which of the following approaches will BEST prevent misalignment between the corporate risk appetite and tolerance?

A. Creating and maintaining an AI risk register
B. Establishing and monitoring acceptable levels of AI system risk
C. Performing an AI impact assessment
D. Ensuring effective AI key performance indicators (KPIs)

Answer : B

Question 8

Which of the following controls BEST mitigates the inherent limitations of generative AI models?

A. Adopting AI-specific regulations
B. Classifying and labeling AI systems
C. Ensuring human oversight
D. Reverse engineering the models

Answer : C

Question 9

Which of the following recommendations would BEST help a service provider mitigate the risk of lawsuits arising from generative AI's access to and use of internet data?

A. Review log information that records how data was collected.
B. Disclose service provider policies to declare compliance with regulations.
C. Activate filtering logic to exclude intellectual property flags.
D. Appoint a data steward specialized in AI to strengthen security governance.

Answer : B

Question 10

Which of the following types of testing can MOST effectively mitigate prompt hacking?

A. Adversarial
B. Input
C. Load
D. Regression

Answer : A

Question 11

An organization recently introduced a generative AI chatbot that can interact with users and answer their queries. Which of the following would BEST mitigate hallucination risk identified by the risk team?

A. Performing model testing and validation
B. Ensuring model developers have been trained in AI risk
C. Fine-tuning the foundational model
D. Training the foundational model on large data sets

Answer : A

Question 12

An organization plans to implement a new AI system. Which of the following is the MOST important factor in determining the level of risk monitoring activities required?

A. The organization's risk appetite
B. The organization's risk tolerance
C. The organization's number of AI system users
D. The organization's compensating controls

Answer : B

Question 13

Which of the following employee awareness topics would MOST likely be revised to account for AI-enabled cyber risk?

A. Malicious insider threats
B. Clean desk policy
C. Authentication controls
D. Social engineering

Answer : D

Question 14

Which of the following BEST ensures the integrity of data sets used to train AI models?

A. Collection and retention of only necessary data sets
B. Tracking and verification of data sets via cryptographic controls
C. Clear documentation of data sources, types used, and processing steps
D. Appropriate storage of data sets according to documented classification processes

Answer : B

Question 15

An organization decides to contract a vendor to implement a new set of AI libraries. Which of the following is MOST important to address in the master service agreement to protect data used during the AI training process?

A. Data pseudonymization
B. Right to audit
C. Independent certification
D. Continuous data monitoring

Answer : B

Advanced in AI Security Management v1.0

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Talk to us!