From an ethical standpoint, what should the enterprise do NEXT?
An enterprise has lost an unencrypted backup tape of archived customer data. A data breach report is not mandatory in the relevant jurisdiction. From an ethical standpoint, what should the enterprise do NEXT?A . Initiate disciplinary proceedings against relevant employees.B . Mandate a review of backup tape inventory procedures.C ....
Which of the following BEST indicates the success of an enterprise's IT governance framework after implementation?
Which of the following BEST indicates the success of an enterprise's IT governance framework after implementation?A . A high percentage of business owners involved with the approval of the IT strategic planB . A high percentage of IT systems complying with corporate information security standardsC . A high percentage of...
Which of the following is MOST critical for the successful implementation of an IT process?
Which of the following is MOST critical for the successful implementation of an IT process?A . Process frameworkB . Service delivery process modelC . Objectives and metricsD . IT process assessmentView AnswerAnswer: B
Risk management strategies are PRIMARILY adopted to:
Risk management strategies are PRIMARILY adopted to:A . avoid risks for business and IT assets.B . take necessary precautions for claims and losses.C . achieve acceptable residual risk levels.D . achieve compliance with legal requirements.View AnswerAnswer: C
Which of the following is the BEST approach when reviewing The security status of a new business acquisition?
Which of the following is the BEST approach when reviewing The security status of a new business acquisition?A . Embed IT risk management strategies in service level agreements (SLAs).B . Establish a committee to oversee the alignment of IT security in new businesses.C . Incorporate IT security objectives to cover...
Which of the following is MOST important for an enterprise to review when classifying information assets?
Which of the following is MOST important for an enterprise to review when classifying information assets?A . Procedures for information handlingB . Requirements for information retention.C . Media used for storage and backupD . Impact of information exposureView AnswerAnswer: D
Which of the following should be the FIRST step in planning an IT governance implementation?
Which of the following should be the FIRST step in planning an IT governance implementation?A . Assign decision-making responsibilities.B . Obtain necessary business funding.C . Define key business performance indicators.D . Identify business drivers.View AnswerAnswer: D
Which of the following is an ADVANTAGE of using strategy mapping?
Which of the following is an ADVANTAGE of using strategy mapping?A . It provides effective indicators of productivity and growth.B . It depicts the maturity levels of processes that support organizational strategy.C . It identifies barriers to strategic alignment and links them to specific outcomes.D . It depicts the cause-and-effect...
Which of the following BEST facilitates the standardization of IT vendor selection?
Which of the following BEST facilitates the standardization of IT vendor selection?A . Cost-benefit analysisB . Contract management officeC . Service level agreements (SLAs)D . Procurement frameworkView AnswerAnswer: D
Which of the following should be the FIRST step in creating an effective long-term mobile application strategy?
Results of an enterprise's customer survey indicate customers prefer using mobile applications. However, this same survey shows the enterprise's mobile applications are considered inferior compared to legacy browser-based applications . Which of the following should be the FIRST step in creating an effective long-term mobile application strategy?A . Establish service...