ExamGecko
Search Search Login
Home Home / Isaca / CGEIT
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Results of an enterprise's customer survey indicate customers prefer using mobile applications. However, this same survey shows the enterprise's mobile applications are considered inferior compared to legacy browser-based applications. Which of the following should be the FIRST step in creating an effective long-term mobile application strategy?
Which of the following is the MOST important consideration when integrating a new vendor with an enterprise resource planning (ERP) system?
An enterprise is planning a transformation initiative by leveraging emerging technology that will have a significant impact on existing products and services Which of the following is the BEST way for IT to prepare for this change?
Acceptance of an enterprise's newly implemented IT governance initiatives has been resisted by a functional group requesting more autonomy over technology choices. Which of the following is MOST important to accommodate this need for autonomy?
A regulatory audit assessed an enterprise's main transactional application as noncompliant. In addition to fines and required corrections, an agreement was reached to implement a set of governance controls over IT. Accountability for these controls is BEST assigned to which of the following?
Which of the following BEST enables an enterprise to determine how business expectations should be addressed in a governance program?
Which of the following decisions would be made by the IT strategy committee?
An organization's board of directors has questioned the value provided by IT key performance indicators (KPIs). Which of the following is the BEST way to determine whether the KPIs adequately support organizational objectives?
A CIO is concerned with the potential of vendor system failures that could cause a large amount of unintended system downtime. To determine how to prepare for this concern, what is MOST important for the CIO to review?
Which of the following is MOST important for a data steward to verify when a system's data is edited by an automated tool to fix an incident?

Question 512 - CGEIT discussion

Report
Export

When an enterprise is evaluating potential IT service vendors, which of the following BEST enables a clear understanding of the vendor's capabilities that will be critical to the enterprise's strategy?

A.

Due diligence process

Answers
A.

Due diligence process

B.

Independent audit results

Answers
B.

Independent audit results

C.

Historical service level agreements (SLAs)

Answers
C.

Historical service level agreements (SLAs)

D.

Benchmarking analysis results

Answers
D.

Benchmarking analysis results

Suggested answer: A

Explanation:

A due diligence process is the best way to enable a clear understanding of the vendor's capabilities that will be critical to the enterprise's strategy. A due diligence process is a systematic and comprehensive investigation and evaluation of the vendor's background, reputation, performance, quality, reliability, security, compliance, and suitability for the enterprise's needs and expectations. A due diligence process can help the enterprise:

Verify the vendor's claims and credentials, and validate the vendor's references and testimonials

Assess the vendor's financial stability, legal status, and ethical standards

Identify the vendor's strengths, weaknesses, opportunities, and threats

Compare the vendor's offerings, capabilities, and prices with other vendors and market benchmarks

Determine the risks and benefits of engaging with the vendor, and the mitigation and contingency plans

Negotiate the terms and conditions of the contract, service level agreement (SLA), and key performance indicators (KPIs)

According to the CGEIT Review Manual 2022, 'Due diligence is a comprehensive appraisal of a business undertaken by a prospective buyer or partner to establish its assets and liabilities and evaluate its commercial potential.'1

According to the ISACA article on Third-Party Vendor Selection: If Done Right, It's a Win-Win2, ''Once you have identified which processes can be outsourced as well as their inherent risks, you can begin performing due diligence on potential vendors. The level of due diligence should be tailored to the significance of the relationship as well as the potential risks it poses.''

According to the Gartner article on How to Evaluate Technology Vendors in 4 Rigorous Steps1, ''Evaluating vendors requires detailed objectives, criteria, prioritization and monitoring. Here's help. When it comes to choosing a vendor, enterprise tech buyer teams can easily become bogged down in the details and documentation provided by sales teams.''

Show Answer
asked 18/11/2024
Prinesh Chain
38 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms