Home » Articles posted by Shraddha Khedkar

Author Archives: Shraddha Khedkar

QuickLinks

Blood Request
Gallery
Donor
Case Studies
Reported Cases
News
Jugnoo’s Kit
Privacy Policy

TakeUThere

What We Aim ?
What We Do ?
How We Work ?
Report Us
Testimonial by a Friend
Founder’s Message
Upload a Case Study

News/Events@HB

Recent Events »

#170 – 14th Cyber Security and Cyber Crime Awareness Session, at Ambalika Institute of Professional Studies.
#169 – 13th Cyber Security and Cyber Crime Awareness Session, at KVPF Kerala
#168 – 12th Cyber Security and Cyber Crime Awareness Session, at SKIET Kurukshetra
#167 – 11th Cyber Security and Cyber Crime Awareness Session at PaGE, Ranchi and Hyderabad
#121 World Compliment Day at Sahara Old Age Home
#120 New Year Eve celebrations at Jivodaya and Sai Sahara
#119 Educational Counselling at Hamara Kartyav
#118 Ujjwal – a Day with Chotus – Noida Sector 62
#117 Helping Brainz Green VEINS at GBM, Dwarka
#116 2019 Mother’s Day at Jeevodaya Ashralayaa
#115 CrafTShaala 2019 – Kizhadoor, Thrissur (An empowerment session for the flood effected women)
#114 VanitaJyoti Kochi 2019, A workshop on Women Entrepreneurship and Empowerment.
#113 New Year Celebrations with the grandmas and grandpas of Sai Sahara.
#112 Phase#2 Clothes Donations Drive at West and Central Delhi, on New Year Eve.
#111 Phase#1 Clothes Donations Drive at West and Central Delhi, on Christmas Eve.
#110 Workshop on ‘being a leader’ at Government School in Badshahpur
109# Creative-Crafts Making workshop by Mini Sajan at Annamanada.
#108 VanitaJyoti – Annamanada

2nd TPRM Master Class by International TPRM Alliance

May 23, 2026

TPRM Master Class Series by ITA

2nd TPRM Master Class

Please enter your full name, email address and location for certificate/score-generations! You will receive a certificate only if you score above 70%.

1 / 28

Category: 2ndTPRMMasterclass

1. Which framework is specifically associated with climate-related financial disclosure?

A. General Data Protection Regulation (GDPR)

B. Task Force on Climate-related Financial Disclosures (TCFD)

C. Sarbanes-Oxley Act (SOX)

D. Integrated Reporting Framework (IR)

2 / 28

Category: 2ndTPRMMasterclass

2. What does transition climate risk primarily refer to in Third‑Party Risk Management (TPRM)?

A. Risks from floods, hurricanes, and other extreme weather events

B. Risks arising from policy, legal, technology, or market changes during the shift to a low‑carbon economy

C. Risks from suppliers missing invoice deadlines

D. Risks from outdated marketing strategies

3 / 28

Category: 18th RT-International TPRM Alliance

How would you rate the overall experience of the event?

3. Highly insightful and engaging
Informative and valuable
Average / satisfactory
Lengthy but useful
Too long and less engaging
Not relevant / could be improved

4 / 28

Category: 2ndTPRMMasterclass

4. Which advanced capability is MOST aligned with the future state of TPRM?

A. AI-enabled predictive risk analytics integrated across ESG, legal, cyber, and operational domains

B. Automated regulatory compliance mapping powered by machine learning

C. Continuous monitoring through blockchain-based immutable audit trails

D. Real-time external threat intelligence integration for supplier ecosystems

5 / 28

Category: 2ndTPRMMasterclass

5. What is the BEST reason for integrating ESG and legal risk into TPRM?

A. To strengthen compliance with evolving regulatory requirements

B. To proactively identify and mitigate sustainability-related liabilities

C. To enhance stakeholder trust and corporate reputation

D. To create a unified view of enterprise exposure and improve decision-making

6 / 28

Category: 2ndTPRMMasterclass

6. Which of the following BEST reflects the latest trend in financial crime risk impacting Third‑Party Risk Management (TPRM)?

A. Criminals exploiting AI to create synthetic identities and cyber‑enabled fraud

B. Automated social engineering attacks powered by generative AI targeting vendor communications

C. Sanctions evasion through layered shell companies and opaque beneficial ownership structures

D. Use of generative AI to produce convincing fake documents and certificates for vendor onboarding

7 / 28

Category: 2ndTPRMMasterclass

7. What is a key objective of anti-bribery and corruption (ABC) due diligence?

A. To evaluate supplier financial performance

B. To enhance product quality assurance

C. To identify potential bribery and unethical conduct risks

D. To streamline procurement processes

8 / 28

Category: 2ndTPRMMasterclass

8. Which of the following is the STRONGEST indicator of ineffective third-party due diligence?

A. Reliance solely on self‑attested questionnaires without independent verification

B. . Continuous monitoring alerts reviewed monthly

C. Vendor onboarding completed without sanctions, ABC, or ESG screening

D. Third‑party risk assessments conducted only once at onboarding, with no ongoing monitoring

9 / 28

Category: 2ndTPRMMasterclass

9. Why are third parties considered a major compliance risk?

A. They eliminate cybersecurity controls

B. They can expose organizations to bribery, sanctions, and regulatory violations

C. They always reduce operational efficiency

D. They may fail to comply with contractual or regulatory obligations

10 / 28

Category: 2ndTPRMMasterclass

10. Which technology capability is increasingly used for continuous third-party monitoring?

A. Real-time cybersecurity threat detection tools

B. Automated compliance management systems

C. AI-driven risk intelligence platforms

D. Blockchain-based audit trails

11 / 28

Category: 2ndTPRMMasterclass

11. What is the PRIMARY purpose of sanctions screening in TPRM?

A. To increase procurement speed only

B. To identify restricted or prohibited entities

C. . To improve employee engagement

D. To ensure compliance with international trade and financial regulations

12 / 28

Category: 18th RT-International TPRM Alliance

Which topics would you like to see covered in future roundtables or masterclasses?
e.g.,

12. Third-Party Cyber Risk & Continuous Monitoring
AI Risk in Vendor Ecosystems
Cloud & SaaS Risk Management
Regulatory Compliance (e.g., outsourcing, data protection)
Fourth-Party / Concentration Risk
Incident & Breach Management involving vendors
Other (please specify): __________

13 / 28

Category: 2ndTPRMMasterclass

13. Which approach BEST demonstrates maturity in integrated third-party risk governance?

A. Decentralized oversight with ad‑hoc controls

B. Continuous monitoring supported by enterprise‑wide risk intelligence platforms

C. Federated model with standardized policies but localized execution

D. Centralized governance with shared risk taxonomy, unified controls, and integrated reporting

14 / 28

Category: 2ndTPRMMasterclass

14. A multinational organization uses distributors in high-risk jurisdictions. Which combined due diligence approach BEST addresses regulatory and ESG concerns?

A. Financial review only

B. Annual procurement reviews only

C. ABC screening, sanctions checks, ESG assessment, and ongoing monitoring

D. Contract execution without due diligence

15 / 28

Category: 2ndTPRMMasterclass

15. Which of the following BEST reflects a human rights risk consideration in Third‑Party Risk Management (TPRM)?

A. Suppliers engaging in forced or child labor practices

B. Vendors restricting workers’ freedom of association and collective bargaining rights

C. Third parties discriminating in hiring and promotion based on gender or ethnicity

D. Contractors failing to provide safe and healthy working conditions

16 / 28

Category: 2ndTPRMMasterclass

16. Which of the following is the BEST example of integrated risk assessment in modern TPRM?

A. Evaluating only financial stability of suppliers

B. Evaluating only procurement costs

C. Evaluating only ESG disclosures

D. Evaluating cybersecurity, ESG, legal, and operational risks together

17 / 28

Category: 2ndTPRMMasterclass

17. Which practice BEST reflects labor rights under the Social function of ESG?

A. Ensuring fair wages, safe working conditions, and freedom of association for employees

B. Expanding marketing campaigns to attract new customers

C. Automating reporting processes to reduce compliance costs

D. Maximizing quarterly profits through aggressive cost-cutting

18 / 28

Category: 2ndTPRMMasterclass

18. Which risk category is most closely linked to supplier greenhouse gas emissions?

A. Operational risk

B. Climate risk

C. Financial risk

D. Inventory risk

19 / 28

Category: 2ndTPRMMasterclass

19. Which of the following best illustrates a legal risk in Third‑Party Risk Management (TPRM)?

A. Non‑compliance with data protection laws by a vendor

B. Supplier’s failure to deliver goods on time

C. Poor customer service ratings for a supplier

D. High greenhouse gas emissions from a supplier

20 / 28

Category: 2ndTPRMMasterclass

20. Which ESG-related metric is most commonly used to assess climate impact?

A. Customer satisfaction score

B. Revenue growth percentage

C. Scope 1, Scope 2, and Scope 3 emissions

D. Employee turnover rate

21 / 28

Category: 2ndTPRMMasterclass

21. Which factor MOST increases climate-related third-party risk exposure?

A. Suppliers relying heavily on fossil fuels for production

B. Third parties with limited marketing budgets

C. Suppliers operating in regions vulnerable to floods and extreme weather

D. Vendors with outdated IT systems

22 / 28

Category: 2ndTPRMMasterclass

22. Which statement BEST reflects the future direction of third-party due diligence?

A. Due diligence will expand to include beneficial ownership transparency and geopolitical risk assessments

B. Due diligence will focus only on financial audits

C. Due diligence will leverage AI‑driven continuous monitoring and predictive analytics for proactive risk detection

D. Due diligence will integrate ESG, climate, legal, cyber, operational, and ethical risks into a unified framework

23 / 28

Category: 18th RT-International TPRM Alliance

23. Please share your feedback on the event

What did you find most valuable?
What could be improved?
Any suggestions for future sessions?

24 / 28

Category: 2ndTPRMMasterclass

24. Which of the following BEST describes “legal risk” in Third‑Party Risk Management (TPRM)?

A. Exposure to fines, penalties, or lawsuits due to third‑party non‑compliance

B. Risk eliminated through insurance coverage

C. Risk arising only from poor customer satisfaction scores

D. Risk limited to operational delays in supply chain

25 / 28

Category: 2ndTPRMMasterclass

25. Which ESG pillar primarily focuses on carbon emissions and energy usage?

A. Governance

B. Social

C. Ethical

D. Environmental

26 / 28

Category: 2ndTPRMMasterclass

26. Which scenario presents the HIGHEST Anti Bribery Corruption(ABC_ risk)?

A. A third-party agent requesting unusually high commission payments in a high-risk country

B. A supplier updating sustainability reports annually

C. A vendor submitting invoices on time

D. A contractor failing to follow internal meeting protocols

27 / 28

Category: 2ndTPRMMasterclass

27. Which document is commonly used during third-party due diligence?

A. Service Level Agreement (SLA)

B. Non-Disclosure Agreement (NDA)

C. Vendor questionnaire

D. Contract renewal form

28 / 28

Category: 2ndTPRMMasterclass

28. Which of the following BEST reflects how conflict minerals create ESG risks within Third‑Party Risk Management (TPRM)?

A. Third parties lacking transparency in reporting on human rights and labor practices

B. Contractors not implementing OECD‑aligned responsible mineral sourcing policies

C. Vendors failing to disclose smelter and refinery certifications in their supply chain

D. Suppliers sourcing tin, tantalum, tungsten, or gold (3TG) from conflict‑affected regions without due diligence

Your score is

LinkedIn Facebook Twitter

Exit

1st TPRM Master Class by International TPRM Alliance

May 9, 2026

RTInternationalTPRMAlliance

1st TPRM Master Class

Please enter your full name, email address and location for certificate/score-generations! You will receive a certificate only if you score above 70%.

1 / 28

Category: 1st-TPRMMasterclass

1. What is a key benefit of AI in TPRM?

A. Less data accuracy

B. Reduced transparency

C. Faster decision-making

D. Manual intervention at every step

2 / 28

Category: 1st-TPRMMasterclass

2. AI contributes to continuous monitoring by

A. Ignoring feedback

B. Learning from new data over time

C. Static rule enforcement only

D. Eliminating human oversight

3 / 28

Category: 1st-TPRMMasterclass

3. In AI-driven TPRM, “contextual risk analysis” refers to

A. Static scoring models

B. Evaluating risk based only on internal metrics

C. Ignoring external factors

D. Assessing risk considering environment and dependencies

4 / 28

Category: 1st-TPRMMasterclass

4. Which risk type can AI detect in TPRM?

A. Cyber risk

B. Financial risk

C. Reputational risk

D. All (Cyber + Financial + Reputational)

5 / 28

Category: 1st-TPRMMasterclass

5. AI enhances third-party risk visibility by

A. Integrating multiple data streams

B. Removing dashboards

C. Delaying reporting

D. Limiting external data sources

6 / 28

Category: 1st-TPRMMasterclass

6. Which best describes AI-driven continuous monitoring in TPRM?

A. Continuous adaptive and contextual risk scoring

B. Continuous adaptive risk scoring

C. Periodic automated risk scoring

D. Continuous automated risk scoring

7 / 28

Category: 1st-TPRMMasterclass

7. AI helps identify risks earlier by:

A. Ignoring historical data

B. Reducing data inputs

C. Recognizing patterns and anomalies

D. Eliminating alerts

8 / 28

Category: 18th RT-International TPRM Alliance

Which topics would you like to see covered in future roundtables or masterclasses?
e.g.,

8. Third-Party Cyber Risk & Continuous Monitoring
AI Risk in Vendor Ecosystems
Cloud & SaaS Risk Management
Regulatory Compliance (e.g., outsourcing, data protection)
Fourth-Party / Concentration Risk
Incident & Breach Management involving vendors
Other (please specify): __________

9 / 28

Category: 1st-TPRMMasterclass

9. Continuous monitoring using AI primarily supports

A. Reactive risk management

B. Proactive risk management

C. Static risk assessments

D. No risk management

10 / 28

Category: 1st-TPRMMasterclass

10. Which type of data is commonly analyzed by AI in TPRM?

A. Only legal contracts

B. Structured and unstructured data

C. Only financial statements

D. Only internal company data

11 / 28

Category: 1st-TPRMMasterclass

11. What is the biggest challenge in AI-driven continuous monitoring?

A. No computing power

B. Lack of vendors

C. Lack of algorithms

D. Data quality and bias

12 / 28

Category: 1st-TPRMMasterclass

12. Which option most accurately differentiates “continuous monitoring” from “continuous assessment”?

A. Both are identical

B. Monitoring = evaluation; Assessment = observation

C. Monitoring = manual; Assessment = automated

D. Monitoring = data collection; Assessment = analysis and judgment

13 / 28

Category: 18th RT-International TPRM Alliance

13. Please share your feedback on the event

What did you find most valuable?
What could be improved?
Any suggestions for future sessions?

14 / 28

Category: 1st-TPRMMasterclass

14. Which of the following best describes the role of AI-based scoring models in Third-Party Risk Management (TPRM)?

A. They provide dynamic and continuous risk ratings

B. They replace all existing risk frameworks

C. They ignore real-time risk inputs

D. They are always static in nature

Explanation:

AI-based scoring models in Third-Party Risk Management help organizations continuously assess and monitor vendor risks using real-time and historical data. These models analyze multiple risk indicators such as cybersecurity posture, financial health, compliance status, threat intelligence, and operational performance to generate dynamic risk scores.

Unlike traditional static assessments conducted annually or periodically, AI-driven models enable:

Continuous monitoring
Predictive risk analysis
Faster identification of anomalies or emerging threats
Automated risk prioritization

Why the other options are incorrect:

Replace all existing risk frameworks
AI enhances existing frameworks but does not completely replace governance, compliance, or regulatory risk frameworks.
Ignore real-time risk inputs
AI models are specifically designed to leverage real-time data for more accurate and timely risk insights.
Are always static in nature
AI-based scoring models are dynamic and adaptive, not static. They evolve as new data and threat intelligence become available.

15 / 28

Category: 1st-TPRMMasterclass

15. AI-driven monitoring typically reduces

A. Operational efficiency

B. Human workload

C. Data availability

D. Risk visibility

16 / 28

Category: 1st-TPRMMasterclass

16. Which AI technique is commonly used for anomaly detection?

A. Sorting

B. Clustering

C. Regression

D. Encryption

Clustering

Clustering is a widely used AI/ML technique for anomaly detection because it groups similar data points together and identifies outliers that do not fit into any cluster pattern.

Clustering → Detects unusual behavior by finding data points far from normal groups.
Regression → Mainly used for prediction and forecasting.
Encryption → Used for data protection, not anomaly detection.
Sorting → Basic data arrangement method.

Clustering

Clustering is a widely used AI/ML technique for anomaly detection because it groups similar data points together and identifies outliers that do not fit into any cluster pattern.

Clustering → Detects unusual behavior by finding data points far from normal groups.
Regression → Mainly used for prediction and forecasting.
Encryption → Used for data protection, not anomaly detection.
Sorting → Basic data arrangement method.

17 / 28

Category: 18th RT-International TPRM Alliance

How would you rate the overall experience of the event?

17. Highly insightful and engaging
Informative and valuable
Average / satisfactory
Lengthy but useful
Too long and less engaging
Not relevant / could be improved

18 / 28

Category: 1st-TPRMMasterclass

18. What is the primary goal of using AI in continuous TPRM monitoring?

A. Replace human risk managers

B. Eliminate all third-party risks

C. Automate periodic audits

D. Continuously detect and assess third-party risks

19 / 28

Category: 1st-TPRMMasterclass

19. AI reduces third-party risk exposure primarily through

A. Ignoring low-risk vendors

B. Predicting and mitigating risks proactively

C. Eliminating vendors

D. Increasing manual reviews

20 / 28

Category: 1st-TPRMMasterclass

20. The key differentiator between AI and rule-based systems in TPRM is

A. Automation

B. Learning capability

C. Predefined logic

D. Data storage

21 / 28

Category: 1st-TPRMMasterclass

21. Which scenario best demonstrates AI’s advantage in TPRM?

A. Annual vendor review

B. Real-time detection of vendor breach signals

C. Static risk scoring

D. Manual compliance checklist

22 / 28

Category: 1st-TPRMMasterclass

22. AI improves TPRM monitoring mainly by

A. Reducing data usage

B. Slowing down risk detection

C. Increasing paperwork

D. Providing real-time insights

23 / 28

Category: 1st-TPRMMasterclass

23. Which combination best represents an effective AI-driven TPRM system?

A. Static rules + periodic audits

B. Automated alerts without validation

C. Dynamic models + real-time data + human oversight

D. Manual reviews + limited data

24 / 28

Category: 1st-TPRMMasterclass

24. Continuous AI monitoring helps organizations

A. Avoid compliance

B. Eliminate all uncertainties

C. Identify emerging threats early

D. React slower to risks

25 / 28

Category: 1st-TPRMMasterclass

25. One limitation of AI in TPRM is

A. Inability to process data

B. No scalability

C. Lack of automation

D. Over-reliance on accurate data

One of the major limitations of AI in Third-Party Risk Management is its heavy dependence on high-quality, accurate, and relevant data. AI models generate insights and risk predictions based on the data they receive. If the data is incomplete, outdated, biased, or inaccurate, the AI output may also become unreliable or misleading.

This is commonly known as:

“Garbage In, Garbage Out (GIGO)”
Poor data quality leading to poor risk decisions

Why the other options are incorrect:

Inability to process data
AI is specifically designed to process and analyze large volumes of structured and unstructured data efficiently.
No scalability
AI systems are highly scalable and can monitor thousands of third parties simultaneously.
Lack of automation
AI actually enhances automation in vendor monitoring, risk scoring, alerting, and reporting processes.

26 / 28

Category: 1st-TPRMMasterclass

26. AI models in TPRM are most effective when

A. No training data is required

B. Data is limited

C. Data is diverse and high-quality

D. Only historical data is used

27 / 28

Category: 1st-TPRMMasterclass

27. Continuous monitoring differs from traditional TPRM because it

A. Is ongoing and automated

B. Focuses only on compliance

C. Happens once a year

D. Is manual

28 / 28

Category: 1st-TPRMMasterclass

28. False positives in AI monitoring refer to

A. Data breaches

B. Missed risks

C. Correct detections

D. Incorrect risk alerts

Your score is

LinkedIn Facebook Twitter

Exit

International TPRM Alliance – 17th TPRM Roundtable 2026 – Post Summit Quiz

April 25, 2026

You have 20 mins to complete this QUIZ! Wish you all the best!

Time is UP!

RTInternationalTPRMAlliance

17th TPRM Roundtable 2026

Please enter your full name, email address and location for certificate/score-generations! You will receive a certificate only if you score above 70%.

1 / 28

Category: 25th April 2026 session quiz

1. Full compliance but failure to detect geopolitical cyber threats indicates:

A. Ineffective compliance frameworks 

B. Limitation of compliance without resilience 

C. Inadequate vendor oversight

D. Weak governance structures 

Source: WEF – Cyber Resilience

2 / 28

Category: 25th April 2026 session quiz

2. Why do data localization laws elevate geopolitical risk?

A. Greater dependency on local infrastructure providers 

B. Constraints on cross-border data transfer and operations 

C. Fragmentation of global data management strategies

D. Increased regulatory oversight across jurisdictions 

Source: World Bank – Data Localization

3 / 28

Category: 18th RT-International TPRM Alliance

Which topics would you like to see covered in future roundtables or masterclasses?
e.g.,

3. Third-Party Cyber Risk & Continuous Monitoring
AI Risk in Vendor Ecosystems
Cloud & SaaS Risk Management
Regulatory Compliance (e.g., outsourcing, data protection)
Fourth-Party / Concentration Risk
Incident & Breach Management involving vendors
Other (please specify): __________

4 / 28

Category: 25th April 2026 session quiz

4. Which scenario best reflects cyber being used as a geopolitical instrument?

A. Exploitation of zero-day vulnerabilities by cybercriminal groups

B. State-sponsored disruption of another nation’s critical infrastructure 

C. Coordinated ransomware attacks on global corporations 

D. Large-scale phishing campaigns targeting financial institutions 

Source: NATO CCDCOE

5 / 28

Category: 25th April 2026 session quiz

5. What is the most strategic immediate action for a CISO?

A. Strengthen incident response frameworks

B. Reassess critical vendor classifications 

C. Map dependencies with geopolitical exposure 

D. Enhance vendor due diligence processes 

Map dependencies with geopolitical exposure

This is the most strategic immediate action because you can’t manage or mitigate what you don’t see. Mapping dependencies—especially across third- and nth-parties—gives visibility into where geopolitical risks actually exist, which then informs all other actions (reclassification, due diligence, incident response).

The other options are important, but they are downstream activities. Without a clear view of exposure, those efforts may be misaligned or incomplete.

Source: McKinsey – Cyber Risk

Map dependencies with geopolitical exposure

The other options are important, but they are downstream activities. Without a clear view of exposure, those efforts may be misaligned or incomplete.

Source: McKinsey – Cyber Risk

6 / 28

Category: 25th April 2026 session quiz

6. Why might vendor diversification fail during geopolitical disruption?

A. Vendors operate within similar geopolitical regions 

B. Lack of independent operational capabilities 

C. Overlap in service delivery models

D. Vendors share underlying infrastructure dependencies 

Source: BIS – Operational Risk

7 / 28

Category: 25th April 2026 session quiz

7. What is the most immediate impact of sanctions on third-party relationships?

A. Reassessment of vendor contracts

B. Enhanced due diligence processes 

C. Restriction or termination of business relationships 

D. Increased compliance requirements for vendors 

Source: OFAC Guidelines

8 / 28

Category: 25th April 2026 session quiz

8. What is the most underestimated geopolitical risk in supply chains?

A. Lack of regulatory compliance 

B. Over-reliance on key vendors 

C. Vendor financial instability

D. Hidden interdependencies across ecosystems 

Source: Deloitte – Risk Survey

9 / 28

Category: 18th RT-International TPRM Alliance

How would you rate the overall experience of the event?

9. Highly insightful and engaging
Informative and valuable
Average / satisfactory
Lengthy but useful
Too long and less engaging
Not relevant / could be improved

10 / 28

Category: 18th RT-International TPRM Alliance

10. Please share your feedback on the event

What did you find most valuable?
What could be improved?
Any suggestions for future sessions?

11 / 28

Category: 25th April 2026 session quiz

11. Which scenario best illustrates the innovation vs sovereignty trade-off?

A. Balancing access to cutting-edge technology with regulatory obligations 

B. Selecting advanced global cloud providers despite regulatory uncertainty 

C. Delaying cloud adoption due to unclear policies

D. Choosing local vendors with limited capabilities to ensure compliance 

Source: McKinsey – Digital Sovereignty

12 / 28

Category: 25th April 2026 session quiz

12. How are “critical vendors” being redefined in geopolitical contexts?

A. Based on operational dependency and impact 

B. Based on geographic location of operations

C. Based on financial and contractual importance 

D. Based on exposure to geopolitical and systemic risks 

Source: KPMG – TPRM Outlook

13 / 28

Category: 25th April 2026 session quiz

13. What is the core geopolitical concern related to cloud adoption?

A. Cost optimization across cloud providers

B. Jurisdictional control over data and infrastructure 

C. Vendor reliability and uptime guarantees 

D. Data privacy and protection requirements 

Source: European Commission – Digital Sovereignty

14 / 28

Category: 25th April 2026 session quiz

14. What is the primary impact of regulatory fragmentation across regions?

A. Difficulty in standardizing global risk frameworks 

B. Increased compliance burden due to varying standards 

C. Increased legal uncertainty across jurisdictions

D. Operational complexity in managing multi-jurisdictional requirements 

Source: EY – Global Regulatory Outlook

15 / 28

Category: 25th April 2026 session quiz

15. What is the evolving role of boards in geopolitical risk management?

A. Monitoring operational risk metrics

B. Strategic oversight of systemic and geopolitical risks 

C. Oversight of compliance and regulatory adherence 

D. Identification of critical vendor dependencies 

Source: Harvard Law – Board Risk Oversight

16 / 28

Category: 25th April 2026 session quiz

16. Sanctions on a vendor’s operating country primarily lead to:

A. Contractual renegotiation challenges

B. Increased compliance obligations 

C. Immediate legal and operational disruption 

D. Reputational risk exposure 

Source: OFAC Framework

17 / 28

Category: 25th April 2026 session quiz

17. Why is cyber risk increasingly classified as a geopolitical issue?

A. Increased dependency on IT infrastructure

B. Growth in digital transformation initiatives across industries

C. Increase in cybercrime incidents globally 

D. Rise of nation-state-backed cyber operations targeting strategic assets 

Source: World Economic Forum – Global Cybersecurity Outlook 2024

18 / 28

Category: 25th April 2026 session quiz

18. What distinguishes resilience from compliance in a geopolitical context?

A. Emphasis on audits vs real-time monitoring 

B. Ability to respond dynamically to disruptions vs static controls 

C. Focus on regulatory adherence vs operational continuity 

D. Alignment with policies vs execution capabilities

Source: UK PRA – Operational Resilience

19 / 28

Category: 25th April 2026 session quiz

19. What is the key governance gap in TPRM today?

A. Insufficient regulatory guidance 

B. Limited adoption of risk tools

C. Lack of clarity in vendor classification 

D. Misalignment between policy and execution 

Source: PwC – Risk Survey

20 / 28

Category: 25th April 2026 session quiz

20. What defines cloud concentration risk in a geopolitical context?

A. Dependence on providers headquartered in specific geopolitical regions 

B. Limited portability across cloud environments 

C. Centralization of workloads within specific providers

D. Over-reliance on a small number of cloud providers 

Source: FSB – Cloud Risk

21 / 28

Category: 25th April 2026 session quiz

21. What primarily drives systemic vendor dependency risk in a geopolitical disruption?

A. Over-reliance on strategically critical suppliers

B. Limited diversification across vendor portfolios 

C. Concentration of vendors within a specific geography 

D. Shared reliance on common infrastructure across vendors 

Source: BIS – Operational Resilience

22 / 28

Category: 25th April 2026 session quiz

22. How do geopolitical tensions reshape enterprise cybersecurity strategies most directly?

A. Reduction in reliance on external vendors

B. Increased investment in traditional perimeter security 

C. Shift from preventive controls to resilience-focused frameworks

D. Transition toward intelligence-led and adaptive defense mechanisms

Source: ENISA Threat Landscape 2023

23 / 28

Category: 25th April 2026 session quiz

23. Multiple SaaS vendors hosted in the same region create what risk?

A. Operational concentration risk

B. Vendor concentration risk 

C. Geographic concentration risk 

D. Infrastructure dependency risk 

Geographic concentration risk

When multiple SaaS vendors are hosted in the same region, a single geopolitical event, regulatory action, or regional outage can impact all of them simultaneously. This creates a shared point of failure tied to location, which is the essence of geographic concentration risk.

The other options are related but less precise:

Vendor concentration risk = too much reliance on a single vendor
Infrastructure dependency risk = reliance on specific underlying tech (e.g., one cloud provider)
Operational concentration risk = concentration in processes or teams

Source: FSB – Cloud Dependencies

Geographic concentration risk

The other options are related but less precise:

Vendor concentration risk = too much reliance on a single vendor
Infrastructure dependency risk = reliance on specific underlying tech (e.g., one cloud provider)
Operational concentration risk = concentration in processes or teams

Source: FSB – Cloud Dependencies

24 / 28

Category: 25th April 2026 session quiz

24. Why is continuous monitoring critical in geopolitical environments?

A. Enables proactive identification of emerging risks 

B. Enhances visibility into third-party activities 

C. Supports real-time response to geopolitical developments 

D. Strengthens compliance with regulatory requirements

Source: Gartner – Continuous Monitoring

25 / 28

Category: 25th April 2026 session quiz

25. What is the most effective resilience approach against geopolitical shocks?

A. Strengthened vendor due diligence processes 

B. Real-time intelligence integrated with dependency mapping 

C. Increased redundancy across critical operations

D. Periodic risk assessments with updated controls 

Source: World Economic Forum – Resilience

26 / 28

Category: 25th April 2026 session quiz

26. Which is the most direct geopolitical risk affecting global supply chains?

A. Trade restrictions, sanctions, and export controls 

B. Increasing operational costs across vendors 

C. Vendor performance inconsistencies

D. Regulatory compliance requirements across regions 

Source: OECD – Global Value Chains

27 / 28

Category: 25th April 2026 session quiz

27. What is a key trade-off in geopolitical risk management?

A. Innovation vs regulatory compliance 

B. Cost optimization vs risk mitigation

C. Globalization vs localization strategies 

D. Efficiency vs operational resilience 

Source: Accenture – Tech Vision

(From a geopolitical risk standpoint only)

28 / 28

Category: 25th April 2026 session quiz

28. Why do nth-party risks significantly increase geopolitical exposure?

A. Hidden exposure to high-risk or sanctioned jurisdictions 

B. Lack of visibility into extended supply chain dependencies 

C. Difficulty in enforcing contractual obligations downstream

D. Increased operational complexity in vendor management 

Nth-party risks amplify geopolitical exposure because organizations often don’t know where their vendors’ vendors operate. This creates blind spots where activities may be tied to sanctioned, unstable, or high-risk regions without direct visibility or control. The other options are valid challenges of nth-party risk, but they are more operational and management-related. This option directly ties to geopolitical exposure, which is the core of the question.

Source: Deloitte – Extended Enterprise Risk

Your score is

LinkedIn Facebook Twitter

Exit

International TPRM Alliance – 16th TPRM Roundtable 2025 – Post Summit Quiz

December 27, 2025

The quiz has expired!

International TPRM Alliance – 14th TPRM Roundtable 2025 – Post Summit Quiz

October 18, 2025

The quiz has expired!

International TPRM Alliance – 13th TPRM Roundtable 2025 – Post Summit Quiz

August 30, 2025

The quiz has expired!

International TPRM Alliance – 12th TPRM Roundtable 2025 – Post Summit Quiz

May 31, 2025

The quiz has expired!

International TPRM Alliance – 10th TPRM Roundtable 2024 – Post Summit Quiz

December 20, 2024

The quiz has expired!

International TPRM Alliance – 9th TPRM Roundtable 2024 – Post Summit Quiz

October 5, 2024

The quiz has expired!

20th National Cyber Security and Cyber Crime Awareness Session at RMDSMS, Pune

May 25, 2023

713

You have 10 mins to complete this QUIZ! Wish you all the best!

Time is UP!

Cyber Security General Awareness

20th National Cyber Security and Cyber Crime Awareness Session at R. M. Dhariwal Sinhgad Management School, Kondhapuri, Pune

Please enter your full name and email address for certificate/score-generations! You will receive only if you score above 70%.

1 / 20

Category: Cyber Security General Awareness

1. You receive a phone call from the bank that particular person is asking you for your account details for a vertification. Unfortunately, you give your details and your money and has been withdrawn. You have been victim of which cyber attack?

A. Whaling

B. Spoofing

C. Vishing

D. Pharming

That's a wrong answer!

Voice phishing also known as Vishing is the use of telephony to conduct phishing attacks. Landline telephone services have traditionally been trustworthy to steal money.

That's a correct answer!

Voice phishing also known as Vishing is the use of telephony to conduct phishing attacks. Landline telephone services have traditionally been trustworthy to steal money.

2 / 20

Category: Cyber Security General Awareness

2. Select the fullform of "DDoS"

A. Dos Direct Operating System

B. Distributed Direct of Service

C. Direct denial of service

D. Distributed denial of service

That's a wrong answer!

A distributed denial-of-service (DDoS) attack is a malicious attempt to disrupt the normal traffic of a targeted server, service or network by overwhelming the target or its surrounding infrastructure with a flood of Internet traffic.

That's a correct answer!

3 / 20

Category: Cyber Security General Awareness

3. Which portal is used to report a cyber crime in India ?

A. cyber.gov.au

B. cybercrime.gov.in

C. report.insight.gov.in/reporting-webapp/portal/homePage

D. None of the above

That's a wrong answer!

If Hyundai would ask you to reset your password the mail would come from an official Hyundai.com email address. This is a malicious email to steal your Hyundai password.

That's a correct answer!

The portal to complaints pertaining to cyber crimes only with special focus on cyber crimes against women and children. Complaints reported on this portal are dealt by law enforcement agencies/ police based on the information available in the complaints.

4 / 20

Category: Cyber Security General Awareness

4. Is the following statement true or false? Reusing the same password across multiple sites is a good idea. It's very convenient after all.

A. True

B. False

That's a wrong answer!

It sure is convenient, but this convenience comes with a price. If your password is stolen in a hack of 1 site user can use that to gain access to your accounts on other sites.

That's a correct answer!

It sure is convenient, but this convenience comes with a price. If your password is stolen in a hack of 1 site user can use that to gain access to your accounts on other sites.

5 / 20

Category: Cyber Security General Awareness

5. You receive a text message from an unknown number. The text says that if you click the link provided, it will redirect you to a site where you can watch the latest award-winning movie that is still in theatres. You see that the link referenced is from a popular URL shortening site. You should:

A. Assume that the URL shortening site does some background checks on who uses their services to ensure that every link is safe.

B. Click on the link but exit out if the site asks you to input any personal information

C. Ignore and delete the message and block the sender.

D. As scammers only use emails to trick people, assume the link is safe and watch the movie.

That's a wrong answer!

Threat actors will try and manipulate your emotions by getting you to act quickly by creating a sense of urgency and making you feel a strong emotion (fear, excitement). It’s important to STOP, THINK, then ACT. Watch out for malicious messages (including, but not restricted to emails, instant messages and text messages). Be suspicious of any emails that have a sense of urgency, make feel a strong emotion (fear, excitement, etc.), or contain unexpected attachments.

That's a correct answer!

6 / 20

Category: Cyber Security General Awareness

6. Which of the following best describes a grandparent scam?

A. A common scam that targets young people by claiming that their grandparents are in trouble and money needs to be wired immediately to resolve the issue.

B. A scam that attempts to take advantage of a person's generosity by raising money for a fake charity.

C. A scam that claims that there is a fool-proof investment that guarantees high returns.

D. A common scam that targets seniors by claiming that their grandchildren are in trouble and money needs to be wired immediately to resolve the issue.

That's a wrong answer!

When conducting a grandparent scam, threat actors target senior citizens by telling them their grandchildren are in trouble, and in order to help them, the grandparent must immediately wire money to the threat actors.

That's a correct answer!

7 / 20

Category: Cyber Security General Awareness

7. Which of the following would be the best password (hardest to crack)?

A. Summ3r2023

B. 12345678

C. t3chnologyRulz

D. iLm!J@c)&dl^A

That's a wrong answer!

A strong password is: At least 12 characters long but 14 or more is better. A combination of uppercase letters, lowercase letters, numbers, and symbols. Not a word that can be found in a dictionary or the name of a person, character, product, or organization.

That's a correct answer!

8 / 20

Category: Cyber Security General Awareness

8. You fell victim to a scam, through which an attacker stole money from you. What should you do?

A. Try and hide any evidence that you’ve fallen victim to the attack and pretend nothing ever happened.

B. Seek revenge on the attacker.

C. Report fraud to the to the National Cyber Crime Reporting portal , either online, or by calling the Helpline Number -1930

D. Do nothing, assume there is no corrective action, and that you’ve been duped.

That's a wrong answer!

Report any fraudulent activity. Even if you feel embarrassed that you fell for it, reporting fraud can help police catch the fraudsters and try to keep others from falling victim to the same scam.

That's a correct answer!

Report any fraudulent activity. Even if you feel embarrassed that you fell for it, reporting fraud can help police catch the fraudsters and try to keep others from falling victim to the same scam.

9 / 20

Category: Cyber Security General Awareness

9. What is the meaning of Encryption?

A. The process of converting information or data into a code, especially to prevent unauthorized access.

B. The process of copying data from one file to another.

C. Decline of the original form of data into its binary form.

D. The process of checking whether the data has been modified or not.

That's a wrong answer!

Encryption is the process of converting information or data into a code, especially to prevent unauthorized access.

That's a correct answer!

Encryption is the process of converting information or data into a code, especially to prevent unauthorized access.

10 / 20

Category: Cyber Security General Awareness

10. Which computer virus records every movement you make on your computer?

A. Malware Android

B. Key logger

C. DoS

D. Trapper

That's a wrong answer!

Keystroke logging, often referred to as keylogging or keyboard capturing, is the action of recording the keys struck on a keyboard, typically covertly, so that a person using the keyboard is unaware that their actions are being monitored. Data can then be retrieved by the person operating the logging program.

That's a correct answer!

11 / 20

Category: Cyber Security General Awareness

11. What is a person called when they try to hurt a group of people with the use of a computer?

A. White-hat intruder

B. Cracker

C. Social engineer

D. Cyber terrorist

That's a wrong answer!

Cyberterrorism is the use of the Internet to conduct violent acts that result in, or threaten, the loss of life or significant bodily harm, in order to achieve political or ideological gains through threat or intimidation.

That's a correct answer!

12 / 20

Category: Cyber Security General Awareness

12. Is it generally considered safe to use Starbucks Public Wi-Fi network for performing an online banking operation?

A. Yes, it is safe

B. No, it can be dangerous

That's a wrong answer!

While a lot more websites are served over HTTPS nowadays, the security risks of using public Wi-Fi are lower but it's still not to recommend to do online banking on a public Wi-Fi. It might be a better idea to use your mobile data and/or switch on a VPN.

That's a correct answer!

13 / 20

Category: Cyber Security General Awareness

13. Which of the following should you NOT publish on social media sites?

A. Your date of birth

B. Your browsing history

C. Public posts with your address, phone or email address

D. All of the above

That's a wrong answer!

Your social media profiles often contain personal details such as your full name, date of birth, location, workplace, and sometimes even your contact information. Scammers can exploit this information to steal your identity or perform identity-related crimes, such as applying for credit cards or loans in your name, accessing your financial accounts, or committing other fraudulent activities.

That's a correct answer!

14 / 20

Category: Cyber Security General Awareness

14. Is the following statement true or false. Because operating system updates are time consuming and may need to restart the machine it's a good idea to postpone them as long as possible.

A. Yes

B. No

That's a wrong answer!

It's not a good idea to postpone operating system updates because they often contain fixes for security vulnerabilities. If you wait with installing these updates attackers might use these vulnerabilities to gain access to your device and infect it with malware and/or steal your data.

That's a correct answer!

15 / 20

Category: Cyber Security General Awareness

15. Mary downloaded a free software program from an unknown website. After installing the program, her computer started behaving strangely and her files were encrypted. What likely happened, and what should Mary do?

A. Mary's computer is infected with malware. She should disconnect from the internet and contact a cybersecurity professional.

B. Mary's computer is experiencing a hardware failure. She should restart the computer and see if the issue persists.

C. Mary's computer is undergoing a routine software update. She should wait for the update to complete.

D. All of the above

That's a wrong answer!

The likely scenario in this case is option (a): Mary's computer is infected with malware. To handle the situation, Mary should follow these steps:1. Disconnect from the internet: By disconnecting from the internet, Mary can prevent the malware from further spreading or communicating with its command-and-control servers. 2. Stop using the infected computer: Continuing to use the compromised computer can lead to additional damage and compromise other files or systems. 3. Contact a cybersecurity professional: Mary should reach out to a cybersecurity professional or an IT support team to assist with removing the malware and assessing the extent of the damage.

That's a correct answer!

16 / 20

Category: Cyber Security General Awareness

16. Rahul sees an advertisement promising immediate job placements in reputable companies without requiring any prior qualifications. All he needs to do is provide his personal information. What should Rahul do?

A. Provide his personal information as requested.

B. Report the advertisement to the authorities.

C. Be skeptical and avoid providing personal information without thorough research and verification.

D. None of the above

That's a wrong answer!

Rahul should be cautious when encountering such advertisements. Immediate job placements without requiring qualifications and requesting personal information upfront are often red flags for potential placement fraud. It is important for Rahul to protect his personal information and exercise due diligence. He should research the advertisement, verify the legitimacy of the company, and only provide personal information to trusted and reputable sources. If he suspects fraudulent activity, he can report the advertisement to the authorities to help prevent others from falling victim to the scam.

That's a correct answer!

17 / 20

Category: Cyber Security General Awareness

17. How was the event ?

(a) Interesting

(b) Boring

(d) Lengthy

Please mention the option in the answer-box below

18 / 20

Category: Cyber Security General Awareness

Will you try sharing whatever you learnt today with your friends, relatives and neighbours ?

18. (We will be also interested to conduct an event in your friend's school or college, so that they are also cyber secure. If you are interested to nominate a school or a college, please email us at help@helpingbrainz.org or call us at 8921979187)

An opportunity for you to give back to the community!

(Note: This question doesn't have a score)

19 / 20

Category: Cyber Security General Awareness

19. When visiting a website, you notice a lock 🔒 icon next to the web address. What does the lock 🔒 represent?

A. A link to open another site

B. A webpage that has a secure connection

C. A program that prevents you from leaving the page

D. A warning that you are not allowed to view this webpage

That's a wrong answer!

A padlock (or lock 🔒) icon displayed in a web browser indicates a secure communication channel between the browser and the server on which the website is hosted. It signifies that the connection to the website is encrypted using HTTPS and has an SSL/TLS certificate.

That's a correct answer!

20 / 20

Category: 5th TPRM Roundtable 2024

20. Your esteemed feedback about the event ?

Your score is

LinkedIn Facebook Twitter

← Older posts

Quiz-time

Cyber Security Awarness Quiz Day 2

Denzel Washington Motivational & Inspiring Commencement Speech

Enrich your day

Blogs by HelpingBrainz »

Women Empowerment Month 2022
WhatsApp Use Survey
Role of NGOs in curbing unemployment
Linking Shopkeeper-Needy Model
Baby Nagma requires your support.
#DelhiTurkmanGate – LockdownDonations
ImportantDays
An article about Helping Brainz’s Child Empowerment Initiative “Paint Your Dreams” – Mathrubhumi

Author Archives: Shraddha Khedkar

QuickLinks

TakeUThere

News/Events@HB

Explanation:

Why the other options are incorrect:

Why the other options are incorrect:

Post navigation

Quiz-time

Denzel Washington Motivational & Inspiring Commencement Speech

Enrich your day

Tweet

YouTube

Contact Us