Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ecus65

Isaca CGEIT - Certified in the Governance of Enterprise IT Exam

Page: 4 / 14
Total 682 questions

What is the BEST way for a board of directors to improve its ability to identify material changes to the enterprise IT risk profile?

A.

Require management to present a comprehensive list of risks.

B.

Require the implementation of a security incident and event management (SIEM) tool.

C.

Review the key risk indicators (KRIs) on a regular basis.

D.

Focus on key performance indicators (KPIs) that predict future business performance.

Which of the following is the GREATEST benefit of using the life cycle approach to govern information assets?

A.

Information availability is improved.

B.

Operational costs are maintained.

C.

Compliance with regulatory requirements is ensured.

D.

Overall costs are optimized.

When an enterprise plans to deploy mobile device technologies, it is MOST important for leadership to ensure that:

A.

Users agree to an acceptable use policy

B.

Appropriate controls are implemented

C.

The IT policy addresses mobile devices

D.

The project management office (PMO) is engaged

Which of the following would be an IT steering committee's BEST course of action upon learning business units have been independently procuring cloud services?

A.

Require cancellation of cloud-based application services not vetted by IT leadership.

B.

Include business unit leadership in the enterprise architecture (EA) review board.

C.

Limit cloud-based application service usage to open source solutions.

D.

Define a procurement strategy based on business unit needs.

Despite an adequate training budget. IT staff are not keeping skills current with emerging technologies critical to the business. Which of the following is the BEST way for the enterprise to address this situation?

A.

Provide incentives for IT staff to attend outside conferences and training

B.

Create a standard-setting center of excellence for IT.

C.

Require human resources (HR) to recruit new talent using an established IT skills matrix.

D.

Establish an agreed-upon skills development plan with each employee

Which of the following metrics is MOST useful to ensure IT services meet business requirements?

A.

Number of discontinued business transformation programs

B.

Frequency Of IT services risk profile updates

C.

Frequency Of IT policy updates

D.

Number of business disruptions due to IT incidents

Which of the following will BEST help to ensure enterprise IT risk is effectively managed?

A.

Establishing an audit committee that reports to the board

B.

Establishing roles and responsibilities for IT risk at the senior management level

C.

Identifying the lowest IT risks and outsourcing the related IT functions

D.

Assigning a project sponsor and project manager to implement an IT risk register

What is the PRIMARY benefit of aligning information architecture with enterprise architecture (EA)?

A.

It improves communication with senior management and the business.

B.

It ensures the adoption of enterprise data quality standards.

C.

It enables the tracing of data to business functions.

D.

It facilitates appropriate access to data consumers.

Which of the following would BEST help assess the effectiveness of a newly established IT governance framework?

A.

Develop a business case for the program portfolio.

B.

Evaluate key performance indicator (KPI) results.

C.

Benchmark the IT governance framework to industry best practice.

D.

Review results of IT audit reports.

When identifying improvements focused on the information asset life cycle, which of the following is CRITICAL for enabling data interoperability?

A.

Standardization

B.

Replication

C.

Segregation

D.

Sanitization

Which of the following should be considered FIRST when assessing the implications of new external regulations on IT compliance?

A.

IT policies and procedures that need revision

B.

Resource burden for implementation

C.

Gaps in skills and experience of IT employees

D.

Impact on contracts with service providers

Which of the following is the BEST indicator for measuring performance when implementing DevSecOps in an enterprise?

A.

Mean time to repair

B.

Percentage of automated tests

C.

Deployments per day

D.

Number of defects released per day

An enterprise is evaluating both a virtual reality (VR) project and an augmented reality (AR) project. Which of the following should be the MOST important objective when evaluating these two projects within IT portfolio management?

A.

Maximizing the earned value of IT investments

B.

Determining which IT project to discontinue

C.

Implementing efficient and effective solutions

D.

Reducing the risk exposure of the projects

An IT value delivery framework PRIMARILY helps an enterprise:

A.

Improve value of successful IT projects.

B.

Increase transparency of value to the enterprise.

C.

Assist top management in approving IT projects.

D.

Optimize value to the enterprise.

The accountability for a business continuity program for business-critical systems is BEST assigned to the:

A.

enterprise risk manager.

B.

chief executive officer (CEO).

C.

director of internal audit.

D.

chief information officer (CIO).