Which of the following is the MOST effective means for IT management to report to executive management regarding the value of IT?
A. IT process maturity level
B. Cost-benefit analysis
C. Resource assessment
D. Balanced scorecard
A global enterprise is experiencing an economic downturn and is rapidly losing market share. IT senior management is reassessing the core activities of the business, including IT, and the associated resource implications. Management has decided to focus on its local market and to close international operations. A critical issue from a resource management perspective is to retain the most capable staff. This is BEST achieved by:
A. reviewing current goals-based performance appraisals across the enterprise.
B. ranking employees across the enterprise based on their compensation.
C. ranking employees across the enterprise based on length of service.
D. retaining capable staff exclusively from the local market.
Senior management is reviewing the results of a recent security incident with significant business impact. Which of the following findings should be of GREATEST concern?
A. Significant gaps are present m the incident documentation.
B. The incident was not logged in the ticketing system.
C. Response decisions were made without consulting the appropriate authority.
D. Response efforts had to be outsourced due to insufficient internal resources.
An enterprise plans to implement a business intelligence (Bl) tool with data sources from various enterprise applications. Which of the following is the GREATEST challenge to implementation?
A. Interface issues between enterprise and Bl applications
B. Large volumes of data fed from enterprise applications
C. The need for staff to be trained on the new Bl tool
D. Data definition and mapping sources from applications
Which of the following is the BEST way to demonstrate that IT strategy supports a new enterprise strategy?
A. Monitor new key risk indicators (KRIs).
B. Measure return on IT investments against balanced scorecards.
C. Review and update the portfolio management process.
D. Map IT programs to business goals.
A newly established IT steering committee is concerned whether a system is meeting availability objectives. Which of the following will provide the BEST information to make an assessment?
A. Balanced scorecard
B. Capability maturity levels
C. Performance indicators
D. Critical success factors (CSFs)
Which of the following is MOST important for IT governance to have in place to ensure the enterprise can maintain operations during extensive system downtime?
A. Fault-tolerant hardware
B. An incident response plan
C. A crisis communications plan
D. A business continuity plan (BCP)
During an IT strategy review, a new CIO determined that numerous important internal processes have not been updated for several years and should be reexamined. Which of the following would be the BEST approach to address this concern?
A. Implement a process review policy.
B. Assemble a project review team
C. Verify that the processes are still needed
D. Map the processes to a capability maturity model.
Which of the following provides the BEST assurance on the effectiveness of IT service management processes?
A. Performance of incident response
B. Continuous monitoring
C. Key risk indicators (KRIs)
D. Compliance with internal controls
Which of the following is the MOST effective way of assessing enterprise risk?
A. Business impact analysis (BIA)
B. Business vulnerability assessment
C. Likelihood of threat analysis
D. Operational risk assessment
An enterprise is planning a transformation initiative by leveraging emerging technology that will have a significant impact on existing products and services Which of the following is the BEST way for IT to prepare for this change?
A. Use a balanced scorecard to measure IT outcomes.
B. Analyze emerging technology products and related training needs.
C. Procure appropriate resources to support emerging technology
D. Assess the impact on the existing IT strategy
The BEST way to manage an outsourced vendor relationship is by:
A. conducting periodic risk assessments.
B. reviewing annual independent third-party reports.
C. providing clear objectives and transparency.
D. analyzing performance statistics from the vendor.
Which of the following roles should approve major IT purchases to help prevent conflicts of interest?
A. IT steering committee
B. Chief information officer (CIO)
C. Chief compliance officer
D. Project management office (PMO)
Which of the following are the MOST critical enablers for implementing IT governance in an enterprise?
A. Involvement of IT strategy and steering committees
B. Assigning roles and responsibilities for IT governance
C. Commitment and promotion by senior management
D. Prioritizing IT projects and funding for IT governance
An enterprise is implementing its FIRST mobile sales channel. Final approval for accepting the associated IT risk should be obtained from which of the following?
A. IT steering committee
B. Chief information officer
C. Business sponsor
D. Risk manager