Free CGEIT Exam Braindumps (page: 21)

Page 20 of 119

The MOST beneficial aspect of utilizing an IT risk management framework is that it:

  1. addresses a lack of data in risk reporting.
  2. facilitates the identification of technologies posing the greatest risk to IT.
  3. enables a consistent approach to risk management.
  4. drives inclusion of the technology function in enterprise risk management.

Answer(s): B



When defining an enterprise governance framework, the PRIMARY determination of the degree to which the framework is principle-based or policy-based is:

  1. enterprise architecture framework.
  2. organizational decision-making style.
  3. IT process maturity.
  4. organizational structure.

Answer(s): D


Reference:

https://www.isaca.org/resources/isaca-journal/past-issues/2013/it-policy-framework-based-on-cobit-5



A company is considering selling products online, and the CIO has been asked to advise the board of directors of potential problems with this strategy. Which of the following would be the CIO's BEST course of action?

  1. Perform a risk assessment.
  2. Review the security framework.
  3. Conduct a return on investment analysis.
  4. Review the enterprise architecture.

Answer(s): B



After shifting from lease to purchase of IT infrastructure and software licenses, an enterprise has to pay for unexpected lease extensions causing significant cost overruns. The BEST direction for the IT steering committee would be to establish:

  1. a program to annually review financial policy on overruns.
  2. an end-of-life program to remove aging infrastructure from the environment.
  3. budget cuts to compensate for the cost overruns.
  4. a policy to consider total cost of ownership in investment decisions.

Answer(s): D






Post your Comments and Discuss ISACA CGEIT exam with other Community members:

CGEIT Discussions & Posts