Which of the following metrics would BEST enable an enterprise to evaluate an alignment goal specifically related to security of information and privacy?
A. Ratio and extent of erroneous business decisions in which erroneous IandT-related information was a key factor
B. Number of critical business processes supported by up-to-date infrastructure and applications
C. Number of confidentiality incidents causing financial loss, business disruption or public embarrassment.
The primary target audience for COBIT is:
A. anyone responsible for the governance solution.
B. assurance professionals responsible for evaluating and reporting on the existence of internal controls.
C. business and IT management responsible for building and deploying IandT solutions.
What is the PRIMARY role of business leadership when defining the future state in a business case?
A. Assess proposed solutions against goals.
B. Review compliance with legal issues.
C. Verify the as-is assessment results.
D. Determine capabilities required from IT.
Which of the following statements BEST describes the features and properties of the COBIT 2019 governance system design workflow?
A. The governance system design workflow allows for consideration of all design factors in order to develop a customized governance system.
B. When executing the governance system design workflow, design factors that produce inconsistent priorities for governance and management objectives need to be discarded.
C. The governance system design workflow only considers enterprise goals.
D. When executing the governance system design workflow, reliable results can only be obtained by considering all design factors.
When tailoring COBIT 2019 to enterprise requirements, which of the following is the PRIMARY objective of preparing a risk profile?
A. To identify areas of risk that require mitigation
B. To identify areas of risk that cause technology disruption
C. To identify areas of risk that impact business continuity
D. To identify areas of risk that exceed risk appetite
Which of the following components is important to update in a COBIT RACI chart to align with the enterprise's context, priorities and preferred terminology?
A. Enterprise process practices and activities
B. Enterprise roles and organizational structures
C. Enterprise procedures and job descriptions
Which of the following is the PRIMARY purpose of implementing an enterprise governance of information and technology (EGIT) system?
A. To document IandT business objectives and processes
B. To deliver stakeholder value from IandT-enabled investments
C. To comply with IandT regulatory requirements
Using the COBIT 2019 Governance System Design Workflow allows enterprises to:
A. design a governance system that focuses primarily on compliance requirements,
B. ensure each of the stages and steps in the design process are closely adhered to.
C. implement a governance framework that is strictly aligned to industry standards.
D. realize a governance system that is tailored to their needs.
Which of the following cascades to enterprise goals?
A. Stakeholder needs
B. Organizational objectives
C. Enterprise strategy
Once IT governance is implemented, what is the NEXT phase in the life cycle of governance?
A. Measuring objectives
B. Initiating improvements
C. Updating the program
An enterprise has hired a consultant to resolve the issue of multiple IT-enabled change initiatives frequently being delivered late and failing to meet business needs. Which of the following management objectives from the COBIT core model is BEST for the consultant to recommend for developing a governance and management system?
A. DSS03 Managed Problems
B. APO10 Managed Vendors
C. AP014 Managed Data
D. BAI11 Managed Projects
The alignment goal "Delivery of IandT services in line with business requirements" is organized into which IT balanced scorecard (BSC) dimension?
A. Customer
B. Financial
C. Internal
Ensuring the program team knows and understands the enterprise goals is a part of which of the following implementation phases?
A. Where are we now?
B. How do we get there?
C. Where do we want to be?
D. What are the drivers?
Which of the following frameworks has been used as a basis for developing guidance for the COBIT governance component of people, skills and competencies?
A. Sans Security Policy Framework
B. Cyber Security Framework
C. Skills Framework for the Information Age
Which of the following is a characteristic of the COBIT framework?
A. COBIT addresses the activities required to manage all IandT within an enterprise.
B. COBIT organizes enterprise business processes.
C. COBIT distinguishes between governance and management activities.