Question 13 - Isaca AAISM Real Exam Questions [March 2026 Update]

Q: 13

In the context of generative AI, which of the following would be the MOST likely goal of penetration testing during a red-teaming exercise?

Options

Discussion

Layla T. Feb 12, 2026 10:54 pm

Makes sense to go with A. Red teaming pen tests for generative AI are really about those unexpected outputs using adversarial inputs.

Luke C. Feb 12, 2026 12:18 am

Option A similar topic came up on an official practice test. Exam guide focuses on adversarial inputs for pen testing.

Nathan Feb 18, 2026 5:00 am

Nah, I don't think it's B. The real point of pen testing with generative AI is to see if adversarial prompts can get unexpected outputs, so A fits best here. B is more model robustness, not red-teaming. Pretty sure that's what exam guides say.

Morgan J. Mar 1, 2026 9:11 am

Feels like B, seen this phrased similarly in some practice sets and official guide reviews.

NoahT Feb 15, 2026 1:27 pm

Seen similar in practice sets, pretty sure it matches A. Official guide has good breakdowns on red-teaming AI too.

Casey Feb 14, 2026 9:10 am

A tbh, saw a similar theme in some exam reports. Pen testing for gen AI usually targets unexpected outputs with crafted prompts, fits red team objectives.

Meera N. Feb 24, 2026 9:27 am

Probably B, but does the question mean "most likely" from a security or reliability perspective? That could flip my pick.

SteadyDev3235 Feb 12, 2026 2:18 am

B tbh

Leo L. Feb 23, 2026 7:51 pm

A gets my pick. In red-teaming generative AI, you're usually crafting adversarial prompts to force the model into unexpected or unsafe outputs, not just stressing it or scrambling everything. Pretty sure that's what pen testers focus on for this context, but correct me if you see it differently.

Avery Feb 18, 2026 5:44 pm

Option B this time. Stress testing the model’s decision-making gets mentioned in some practice tests as a way to see how it handles edge cases, so I think it fits for pen testing sometimes. Definitely check the official guide though if you’re not sure.

Be respectful. No spam.

Correct Answer:

Explanation

The primary goal of a red-teaming exercise for generative AI, particularly during penetration testing, is to proactively identify and understand potential failures and vulnerabilities. This is achieved by simulating adversarial attacks. Testers craft specific adversarial inputs designed to bypass safety filters or exploit weaknesses in the model's logic, thereby causing it to generate unexpected, harmful, biased, or otherwise unintended outputs. This process directly evaluates the model's resilience against malicious use and helps developers implement more robust safeguards.

Why Incorrect

B. Stress test the model’s decision-making process: Stress testing primarily evaluates system performance and stability under high load or resource constraints, which is distinct from a security-focused red-teaming goal of finding behavioral exploits.

C. Degrade the model’s performance for existing use cases: While an attack might result in performance degradation, the red team's objective is to discover the vulnerability that enables such an attack, not simply to cause the degradation itself.

D. Replace the model’s outputs with entirely random content: This is too specific and narrow. The goal is to elicit a wide range of unintended behaviors, including harmful, biased, or private information, not just to generate random outputs.

References

1. National Institute of Standards and Technology (NIST). (2023). AI Risk Management Framework (AI RMF 1.0).

Reference: Page 31

Section 4.3.3

"Test

Evaluation

Verification

and Validation (TEVV)." The framework states that TEVV includes "red-teaming to search for vulnerabilities and to discover whether the system can be used in unintended ways." This aligns with generating unexpected outputs from adversarial inputs.

2. Perez

et al. (2022). Red Teaming Language Models to Reduce Harms: Methods

Scaling Behaviors

and Lessons Learned. arXiv preprint arXiv:2209.07858.

Reference: Section 2

"Red Teaming Methods." The paper

authored by researchers from Google

DeepMind

and affiliated universities

explicitly defines red teaming as "the practice of adversarially testing a model to find inputs that elicit harmful or otherwise undesirable outputs." This directly supports option A. (DOI not available for this version

but it is a foundational academic paper in the field).

3. MITRE. (2023). MITRE ATLAS™ (Adversarial Threat Landscape for Artificial-Intelligence Systems).

Reference: Technique: ML04-T1059

"Prompt Injection." The ATLAS framework details how adversaries "craft malicious inputs to manipulate a language model into generating unintended outputs." This is a core tactic used in red-teaming and penetration testing of generative AI.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE