QUESTION 21
Which of the following is the MOST effective way for a board of directors to engage in an enterprise’s digital strategy?
A. Require a benchmarking analysis of digital strategies of peer organizations.
B. Review portfolio management to ensure it aligns with the digital strategy.
C. Require updates on the digital strategy as part of regular board meeting agendas.
D. Recruit new board members with expertise in digital transformation.
Correct Answer: D
QUESTION 22
Which of the following is a PRIMARY benefit of restricting the procurement of IT products and services to a centralized purchasing group?
A. Quicker completion of the acquisition process
B. Assurance that service level agreements (SLAs) will be met
C. Assurance that only approved vendors are used
D. Standardization of demand management
Correct Answer: C
QUESTION 23
A financial institution has learned of a new regulatory requirement that issues severe fines for IT service interruptions of more than 24 hours. Which of the following should be requested FIRST by IT governance in response to the new requirement?
A. Business continuity plan (BCP)
B. Business impact analysis (BIA)
C. Single point-of-failure analysis
D. High availability infrastructure investment
Correct Answer: B
QUESTION 24
Which of the following BEST enables the alignment of IT and enterprise strategy?
A. Project portfolio management
B. IT resource planning
C. IT performance monitoring and reporting
D. Enterprise compliance audits
Correct Answer: A
QUESTION 25
An enterprise has just finished the initial implementation of an IT training and performance program. Which of the following will provide the BEST support to the ongoing success of the program?
A. Obtain executive leadership approval.
B. Implement an audit program focusing on staff metrics.
C. Implement a continuous improvement program.
D. Implement an employee incentive program.
Correct Answer: A
QUESTION 26
An enterprise’s IT organization launched new portfolio management policies and processes to improve the alignment of IT projects with enterprise goals. The latest audit report indicates no improvements have been made A root cause analysis shows the IT project performance criteria emphasize different benefits metrics. Which of the following is the BEST course of action for the CIO with respect to IT project management?
A. Direct a mapping of the IT metrics to the enterprise architecture (EA),
B. Require a business case for each IT project
C. Mandate training on new portfolio policies and processes for IT staff.
D. Mandate the inclusion of enterprise metrics.
Correct Answer: D
QUESTION 27
Which of the following should be the PRIMARY consideration when implementing IT governance in a small, newly established organization?
A. Approving enterprise architecture (EA) and standards
B. Assigning IT roles and responsibilities
C. Defining IT project management methodology
D. Assigning a budget for IT governance applications
Correct Answer: B
QUESTION 28
Which of the following is MOST helpful in determining whether an enterprise’s quality assurance (QA) program is meeting business requirements?
A. Perform a quality audit
B. Review the quality framework.
C. Perform a SWOT analysis.
D. Review service outage reports.
Correct Answer: A
QUESTION 29
An IT department has identified events that could lead to major outage of a key business application. Of the following, who is accountable for determining the risk response?
A. Chief information officer (CIO)
B. Chief risk officer (CRO)
C. Director of IT applications
D. Business line executive
Correct Answer: B
QUESTION 30
What is the BEST way for an IT steering committee to determine if IT’s proposed upgrade to the enterprise’s service management information system will meet critical business availability requirements?
A. Perform an availability trend analysis.
B. Develop key risk indicators (KRIs).
C. Develop key performance indicators (KPIs)
D. Require a business impact analysis (BIA).
Correct Answer: D
QUESTION 31
Which of the following is the FIRST step when developing a data governance strategy?
A. Identifying use cases
B. Establishing data minimization requirements
C. Defining key performance indicators (KPIs)
D. Establishing information architecture
Correct Answer: D
QUESTION 32
The rate of IT employees leaving the enterprise has increased significantly in the past year. What should be the IT steering committee’s FIRST step to address this issue?
A. Request a benchmark of industry salaries.
B. Research outsourcing strategies.
C. Require exit interviews.
D. Mandate a skills development program.
Correct Answer: C
QUESTION 33
An audit report has revealed that data scientists are analyzing sensitive big data files using an offsite cloud because corporate servers do not have the necessary processing capabilities. A review of policies indicates this practice is not prohibited. Which of the following should be the FIRST strategic action to address the report?
A. Revise the information security policy.
B. Update data governance practices.
C. Authorize a risk analysis of the practice.
D. Recommend the use of a private cloud.
Correct Answer: C
QUESTION 34
Which of the following has PRIMARY responsibility to define the requirements for IT service levels for the enterprise?
A. The business continuity vendor
B. The business manager
C. The help desk
D. The CIO
Correct Answer: B
QUESTION 35
Which of the following BEST enables an enterprise to identify the impact resulting from unintentional disclosure of confidential data by outsourced partners?
A. Vulnerability assessment
B. Continuous monitoring
C. IT controls analysis
D. Risk scenario analysis
Correct Answer: D
QUESTION 36
What should a CIO a do NEXT when informed of board approval to migrate a critical business application system to the cloud for the first time?
A. Direct a cost-benefit analysis of potential cloud provider options.
B. Review the current enterprise architecture (EA).
C. Develop minimal service level agreements (SLAs) to include in the contract.
D. Review IT policy to ensure sourcing cloud services is addressed.
Correct Answer: D
QUESTION 37
Upcoming IT-related regulations carry costly penalties for an enterprise. The Issuing regulatory agency has a history of weak enforcement The IT steering committee should FIRST direct management to:
A. develop mitigation plans for noncompliance.
B. update the enterprise architecture (EA).
C. perform benchmarking activities.
D. evaluate the impact of the emerging risk.
Correct Answer: D
QUESTION 38
An enterprise is considering a radical shit in the way it operates, and the CEO has asked the CIO to ensure IT is adequately positioned to support the new operating model Which of the following is the CIO’s BEST course of action?
A. Adjust the IT risk appetite.
B. Request an IT SWOT analysis be conducted
C. Establish a governance framework.
D. Request a review of the IT change management process.
Correct Answer: B
QUESTION 39
An enterprise’s strategic plan includes deploying artificial intelligence (Al) functionality. which has resulted in renewed focus on managing the life cycle of information assets. Which of the following should be done FIRST to support this plan?
A. Understand the business requirements for using Al.
B. Develop policies and procedures outlining the ethical use of Al products.
C. Define the archival processes for information assets.
D. Ensure changes to shared data sets are managed by information governance.
Correct Answer: A
QUESTION 40
A CIO has been tasked with establishing an IT governance program. What should be done FIRST to accomplish this objective?
A. Request that a business case be created.
B. Request that a risk assessment be conducted.
C. Authorize a governance charter.
D. Develop a phased implementation plan.
Correct Answer: C
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.