Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. ISACA
  5. CGEIT

ISACA CGEIT Exam Questions
Certified in the Governance of Enterprise IT (Page 6 )

Updated On: 17-Feb-2026
Page 6 of 96
PDF with 682 Questions

Once an IT governance framework has been defined, which of the following is the MOST effective approach to align IT to business objectives?

  1. Auditing the alignment of IT to business objectives regularly
  2. Reviewing the return on investment of IT initiatives on a regular basis
  3. Establishing a cross business unit committee to prioritize IT investment
  4. Reporting IT investment and performance to senior management regularly

Answer(s): A


Reference:

https://books.google.com.pk/books?id=r2e7NmwoFGoC&pg=PA137&lpg=PA137&dq=Once+an+IT
+governance+framework+has+been+defined,+which+of+the+following+is+the+MOST+effective+approach+to+align+IT+to+business+objectives&source=bl&ots=tz7jATmLvQ&sig=ACfU3U1dkpiL5L1JJLfyOORIf9gBtlFSDQ&hl=en&sa=X&ved=2 ahUKEwjCqv7_-ffpAhXGN8AKHSOpDoAQ6AEwCnoECAkQAQ#v=onepage&q=Once%20an%20IT%20governance%20framework%20has%20been%20defined%2C%20which%20of%20the%20following%20is%20the%20MOST%20effective%20approach%20to%20align%20IT%20to%20business%20objectives&f=false



An IT governance committee is defining a risk management policy for a portfolio of IT-enabled investments. Which of the following should be the PRIMARY consideration when developing the policy?

  1. Risk appetite of the enterprise
  2. Risk management framework
  3. Value obtained with minimum risk
  4. Possible investment failures

Answer(s): B



A contracted company employs key IT systems operational personnel to oversee technology used to manage a critical line of business. Management is concerned that a mass resignation by many disgruntled personnel may lead to a shutdown of these key systems. Which of the following should be the PRIMARY responsibility of IT governance to address this risk?

  1. Renegotiate employment agreements to lessen the likelihood of a mass resignation.
  2. Cross train management to assume support of the technology.
  3. Develop a resourcing strategy that quickly replaces staff.
  4. Survey key support staff to determine what is causing them to be disgruntled.

Answer(s): D



A CIO determines IT investment management processes are not fully realizing the benefits identified in business cases. Which of the following would be the BEST way to prevent this issue?

  1. Document lessons learned throughout the investment life cycle.
  2. Perform stage-gate reviews throughout the life cycle of each project.
  3. Evaluate the delegation of investment approval authorities.
  4. Establish a requirement for CIO review and approval of each business case.

Answer(s): A



How does an enterprise benefit from implementing a set of key risk indicators (KRIs)?

  1. The set of KRIs remains relevant over time.
  2. Risk exposures are monitored to ensure they remain within risk appetite.
  3. The need for a formal risk and control assessment program is eliminated.
  4. The frequency of risk data gathering and reporting is minimized.

Answer(s): B


Reference:

https://www.metricstream.com/insights/Key-Risk-indicators-ERM.htm






Post your Comments and Discuss ISACA CGEIT exam dumps with other Community members:

Join the CGEIT Discussion