Free GARP FRM-Part-2 Exam Questions

Become GARP Certified with updated FRM-Part-2 exam questions and correct answers

Page: 1 / 101

Total 503 Questions | Updated On: Mar 21, 2026

Add To Cart

Question 1

A portfolio manager at a US-based hedge fund has been searching for potentialreturn opportunities in the environment of declining global interest rates experiencedafter the global financial crisis (GFC) of 2007-2009. The manager identifies theexistence of a positive cross-currency basis between two currencies and notes thatthis positive basis has persisted since the GFC. What is the most appropriateexplanation for this persistence?

A : proprietary trading activities.

B : basis.

C : decline in the overall level of interest rates in the global economy.

D : typically eliminate counterparty risks.

Answer: B

Question 2

Sovereign Bank has an internal audit department, but the bank CEO hires an external auditor to review their financial statements and assess their internal control system. The audit firm is most likely considered to be which line of defense?

A : Third.

B : Second.

C : Fourth.

D : First.

Answer: C

Question 3

The CRO at a bank wants to strengthen the bank’s capability to defend itself against emerging cyber-threats. To help achieve this goal, the CRO is assessing the current range of practices regarding the sharing of cybersecurity information between different types of institutions, as well as the potential benefits from sharing information. Which of the following statements would be most appropriate for the CRO to make?

A : Existing peer-sharing mechanisms among banks focus on the exchange of information related to cyber-security incidents, but such information is generally not shared from banks to regulators.

B : The scope and depth of information-sharing practices among banks may significantly vary between financial markets, depending on the level of trust among participating banks.

C : Information-sharing among different national regulators has evolved significantly over the past several years and is now a widespread practice at a large majority of jurisdictions.

D : The sharing of cybersecurity information among banks is less frequently observed and generally considered to be less effective than other cyber-security information-sharing practices.

Answer: B

Question 4

The board of directors of a fast-growing US-based bank is discussing a report offindings and recommendations issued after a recent regulatory review of the bank’srisk management framework. A board member notes that the regulators haveidentified deficiencies in the bank’s model validation process, and recommends thatthe CRO develop a plan for improvement in this area. The CRO consults theFederal Reserve guidelines for examples of best practices, and identifies ways thatthe bank can improve its validation approaches to conform with the guidelines.Which of the following recommendations is appropriate for the CRO to make?

A : the assumptions that were initially provided by the vendor.

B : model has been successfully completed.

C : management framework to also validate and backtest the models.

D : than a process that conducts reviews at specific points in time.

Answer: D

Question 5

A risk analyst is implementing an enterprise risk management system at a bank. During the process, the analyst takes an inventory of risks faced by the bank and categorizes these risks as market, credit, or operational risks. Which of the following observations of the bank’s data should be considered unexpected if compared to similar industry data?

A : The operational risk loss distribution is symmetric and fat-tailed.

B : The operational risk loss distribution has many small losses, and therefore a relatively low mode.

C : The market risk distribution is symmetric.

D : The credit risk distribution is asymmetric and fat-tailed.

Answer: A

Page: 1 / 101

Total 503 Questions | Updated On: Mar 21, 2026

Add To Cart