APRP FINAL PAPER 2026 COMPLETE
QUESTIONS AND CORRECT ANSWERS
◉ "known" authentication
Answer: PIN, password
◉ "has" authentication
Answer: fingerprint, biometric, ATM card
◉ The exchange of check and check images between financial
institutions is governed by...
Answer: agreement
◉ biometrics for payment initiation and authentication is governed
by
Answer: FFIEC Guidance
◉ Regulation Z
Answer: Governs credit card transactions
◉ COSO
, Answer: Supplies important considerations for Boards in defining
and addressing their risk oversight responsibilities
◉ Segregation of duties for critical/sensitive tasks helps mitigate..
Answer: fraud risk
◉ Risk Measurement
Answer: The process to determine the likelihood of an adverse event
or threat occurring and the potential impact of such an event on the
institution
◉ Risk Assessment includes...
Answer: Analysis of threats based on the impact to the institution
and its customers
◉ Identify potential impact of business disruption
Answer: Step in Business Impact Analysis
◉ Use of logon ID, token, and fingerprint is what?
Answer: multifactor authentication
◉ Who should control administrative rights related to computer
networks and systems?
QUESTIONS AND CORRECT ANSWERS
◉ "known" authentication
Answer: PIN, password
◉ "has" authentication
Answer: fingerprint, biometric, ATM card
◉ The exchange of check and check images between financial
institutions is governed by...
Answer: agreement
◉ biometrics for payment initiation and authentication is governed
by
Answer: FFIEC Guidance
◉ Regulation Z
Answer: Governs credit card transactions
◉ COSO
, Answer: Supplies important considerations for Boards in defining
and addressing their risk oversight responsibilities
◉ Segregation of duties for critical/sensitive tasks helps mitigate..
Answer: fraud risk
◉ Risk Measurement
Answer: The process to determine the likelihood of an adverse event
or threat occurring and the potential impact of such an event on the
institution
◉ Risk Assessment includes...
Answer: Analysis of threats based on the impact to the institution
and its customers
◉ Identify potential impact of business disruption
Answer: Step in Business Impact Analysis
◉ Use of logon ID, token, and fingerprint is what?
Answer: multifactor authentication
◉ Who should control administrative rights related to computer
networks and systems?
