QUESTION: 173

An enterprise has a zero-tolerance policy regarding security. This policy is causing a large number of email attachments to be blocked and is a disruption to the enterprise. Which of the following should be the FIRST governance step to address this email issue?

Obtain senior management input based on identified risk.
Direct the development of an email usage policy.
Recommend business sign-off on the zero-tolerance policy.
Introduce an exception process.

Answer(s): B

Reveal Solution Next Question

QUESTION: 174

Which of the following is a CIO’s BEST approach to ensure IT executes against an approved strategy?

Request IT senior leaders to collectively plan tactics for execution.
Ask project management to define the IT activities for accomplishing the strategy.
Provide specific direction for execution of the tasks across IT.
Have IT leaders independently develop goals for their teams.

Answer(s): B

Reveal Solution Next Question

QUESTION: 175

Which of the following is the MOST important outcome of a formal, documented IT policy?

Alignment with IT service management
Communication of IT management intent
Mapping of business objectives
Resource optimization for enterprise initiatives

Answer(s): C

Reveal Solution Next Question

QUESTION: 176

Senior management is concerned about an increase in cybersecurity risk to the enterprise. Which of the following would be MOST helpful in establishing an early warning system to determine which potential threats should be escalated to senior management?

Agreed-upon risk thresholds
A risk appetite statement
Key performance indicators (KPIs)
Patch management logs

Answer(s): A

Reveal Solution Next Question

Free CGEIT Exam Braindumps (page: 45)

QUESTION: 173

QUESTION: 174

QUESTION: 175

QUESTION: 176

CGEIT Discussions & Posts