ExamGecko
Search Search Login
Home Home / Isaca / CGEIT

Isaca CGEIT Practice Test - Questions Answers, Page 19

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An enterprise is planning a transformation initiative by leveraging emerging technology that will have a significant impact on existing products and services Which of the following is the BEST way for IT to prepare for this change?
Results of an enterprise's customer survey indicate customers prefer using mobile applications. However, this same survey shows the enterprise's mobile applications are considered inferior compared to legacy browser-based applications. Which of the following should be the FIRST step in creating an effective long-term mobile application strategy?
Which of the following is the MOST important consideration when integrating a new vendor with an enterprise resource planning (ERP) system?
A CEO wants to establish a governance framework to facilitate the alignment of IT and business strategies. Which of the following should be a KEY requirement of this framework?
An organization's board of directors has questioned the value provided by IT key performance indicators (KPIs). Which of the following is the BEST way to determine whether the KPIs adequately support organizational objectives?
A CIO is concerned with the potential of vendor system failures that could cause a large amount of unintended system downtime. To determine how to prepare for this concern, what is MOST important for the CIO to review?
A financial services company has implemented the use of a cloud-based centralized customer relationship management (CRM) system. The company has decided to go multi-national. Which of the following should be the enterprise risk management (ERM) committee's PRIMARY consideration?
Acceptance of an enterprise's newly implemented IT governance initiatives has been resisted by a functional group requesting more autonomy over technology choices. Which of the following is MOST important to accommodate this need for autonomy?
A regulatory audit assessed an enterprise's main transactional application as noncompliant. In addition to fines and required corrections, an agreement was reached to implement a set of governance controls over IT. Accountability for these controls is BEST assigned to which of the following?
The accountability for a business continuity program for business-critical systems is BEST assigned to the:

Question 181

Report
Export
Collapse

Which of the following is the MOST effective means for IT management to report to executive management regarding the value of IT?

A.
IT process maturity level
A.
IT process maturity level
Answers
B.
Cost-benefit analysis
B.
Cost-benefit analysis
Answers
C.
Resource assessment
C.
Resource assessment
Answers
D.
Balanced scorecard
D.
Balanced scorecard
Answers
Suggested answer: A

Question 182

Report
Export
Collapse

Which of the following is the PRIMARY benefit of communicating the IT strategy across the enterprise?

A.
On-time and on-budget delivery of strategic projects
A.
On-time and on-budget delivery of strategic projects
Answers
B.
Improvement in IT balanced scorecard performance
B.
Improvement in IT balanced scorecard performance
Answers
C.
Optimization of IT investment in supporting business objectives
C.
Optimization of IT investment in supporting business objectives
Answers
D.
Reduced organizational resistance during strategy execution
D.
Reduced organizational resistance during strategy execution
Answers
Suggested answer: D

Question 183

Report
Export
Collapse

The CIO in a large enterprise is seeking assurance that significant IT risk is being proactively monitored and does not exceed agreed risk tolerance levels. The BEST way to provide this ongoing assurance is to require the development of:

A.
an IT risk appetite statement.
A.
an IT risk appetite statement.
Answers
B.
a risk management policy.
B.
a risk management policy.
Answers
C.
key risk indicators (KRIs).
C.
key risk indicators (KRIs).
Answers
D.
a risk register.
D.
a risk register.
Answers
Suggested answer: C

Question 184

Report
Export
Collapse

The BEST way to ensure an IT steering committee meets enterprise objectives is to:

A.
require a member of the committee to have IT governance expertise.
A.
require a member of the committee to have IT governance expertise.
Answers
B.
benchmark against industry best practices.
B.
benchmark against industry best practices.
Answers
C.
establish key performance indicators (KPIs).
C.
establish key performance indicators (KPIs).
Answers
D.
have key business stakeholders represented on the committee.
D.
have key business stakeholders represented on the committee.
Answers
Suggested answer: D

Question 185

Report
Export
Collapse

Establishing a uniform definition for likelihood and impact through risk management standards PRIMARILY addresses which of the following concerns?

A.
Inconsistent categories of vulnerabilities
A.
Inconsistent categories of vulnerabilities
Answers
B.
Conflicting interpretations of risk levels
B.
Conflicting interpretations of risk levels
Answers
C.
Inconsistent data classification
C.
Inconsistent data classification
Answers
D.
Lack of strategic IT alignment
D.
Lack of strategic IT alignment
Answers
Suggested answer: B

Question 186

Report
Export
Collapse

An enterprise embarked on an aggressive strategy requiring the implementation of several large IT projects impacting multiple business processes across all departments. Initially employees were supportive of the strategy, but there is growing fatigue and frustration with the ongoing new capabilities which must be learned. Which of the following would be the BEST action performed by senior management?

A.
Incorporate an organizational change management program.
A.
Incorporate an organizational change management program.
Answers
B.
Establish 'Reward and Recognition' efforts to boost employee morale.
B.
Establish 'Reward and Recognition' efforts to boost employee morale.
Answers
C.
Improve the system development life cycle (SDLC) process.
C.
Improve the system development life cycle (SDLC) process.
Answers
D.
Assess current business and IT competencies.
D.
Assess current business and IT competencies.
Answers
Suggested answer: B

Question 187

Report
Export
Collapse

An enterprise decides to accept the IT risk of a subsidiary located in another country even though it exceeds the enterprise's risk appetite. Which of the following would be the BEST justification for this decision?

A.
Risk framework alignment
A.
Risk framework alignment
Answers
B.
Local market common practices
B.
Local market common practices
Answers
C.
Compliance with local regulations
C.
Compliance with local regulations
Answers
D.
Technical gaps among subsidiaries
D.
Technical gaps among subsidiaries
Answers
Suggested answer: C

Question 188

Report
Export
Collapse

Which of the following is the MOST valuable input when quantifying the loss associated with a major risk event?

A.
Key risk indicators (KRIs)
A.
Key risk indicators (KRIs)
Answers
B.
IT environment threat modeling
B.
IT environment threat modeling
Answers
C.
Business impact analysis (BIA) report
C.
Business impact analysis (BIA) report
Answers
D.
Recovery time objectives (RTOs)
D.
Recovery time objectives (RTOs)
Answers
Suggested answer: C

Question 189

Report
Export
Collapse

To reduce the risk of reputational damage through inappropriate use of social media by employees outside of the workplace, the enterprise approach regarding social media should PRIMARILY focus on;

A.
implementing preventative controls.
A.
implementing preventative controls.
Answers
B.
developing policies on social media.
B.
developing policies on social media.
Answers
C.
implementing a review of processes utilizing social media.
C.
implementing a review of processes utilizing social media.
Answers
D.
ensuring each use of social media is approved by management.
D.
ensuring each use of social media is approved by management.
Answers
Suggested answer: B

Question 190

Report
Export
Collapse

An enterprise's internal audit group has scheduled a control review of a payroll system project but has been told to wait until the system is implemented. Which of the following is the GREATEST risk associated with the delay?

A.
delay in the development of new key performance indicators (KPIs)
A.
delay in the development of new key performance indicators (KPIs)
Answers
B.
Continued dependency on compliant legacy systems
B.
Continued dependency on compliant legacy systems
Answers
C.
Increased cost to mitigate deficiencies
C.
Increased cost to mitigate deficiencies
Answers
D.
Lack of adherence to industry best practices
D.
Lack of adherence to industry best practices
Answers
Suggested answer: C
Total 577 questions
Go to page: of 58
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms