ExamGecko
Search Search Login
Home Home / Isaca / COBIT 2019
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following is an important component for an enterprise strategy archetype of growth/acquisition as defined by COBIT 2019?
What functional task area is responsible for assessing the potential return on investment (ROI) during future state planning?
Who is accountable for monitoring the performance of the execution of an EGIT implementation program plan against success metrics and adjusting long-term targets when necessary?
l&T-related issues should be considered as part of the design factors for a governance system in order to manage:
Which of the following is the MOST essential attribute of the highest process capability level (Level 5)?
According to Capability Maturity Model Integration (CMMI), which of the following BEST describes Level 2 within the five maturity levels for processes?
Innovation and differentiation are examples of:
Which of the following is a principle associated with the key components of a governance framework?
Which of the following benefits derived from the use of COBIT is PRIMARILY associated with an external stakeholder?
Which of the following is an important component for an enterprise strategy archetype of cost leadership as defined by COBIT 2019?

Question 144 - COBIT 2019 discussion

Report
Export

When reviewing the risk profile of an enterprise during the governance design phase, what MUST be established prior to conducting a high-level risk analysis?

A.

Risk response strategy

Answers
A.

Risk response strategy

B.

Key risk indicators (KRIs)

Answers
B.

Key risk indicators (KRIs)

C.

Enterprise's risk appetite

Answers
C.

Enterprise's risk appetite

D.

Risk management framework

Answers
D.

Risk management framework

Suggested answer: C

Explanation:

The risk profile of an enterprise is a design factor that describes how an enterprise identifies, assesses, responds to, monitors, and reports on information and technology risks. The risk profile helps to determine the level of risk appetite and tolerance that an enterprise has for its information and technology activities, as well as the level of control and assurance that is required for its governance framework. When reviewing the risk profile of an enterprise during the governance design phase, one of the prerequisites that must be established prior to conducting a high-level risk analysis is the enterprise's risk appetite. The risk appetite is the amount and type of risk that an enterprise is willing to accept in pursuit of its objectives. The risk appetite provides a basis for defining the risk criteria, thresholds, indicators, and responses that will be used in the risk analysis process. The risk appetite also helps to align the governance framework with the enterprise's strategy and objectives.

Reference:: COBIT 2019 Design Guide, page 41-43 : COBIT 2019 Framework: Introduction and Methodology, page 28-29

Show Answer
asked 19/11/2024
Ntombifuthi Shabangu
28 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms