What should be the FIRST high-level initiative for a newly created IT strategy committee in order to support this business goal?
A large retail chain realizes that while there has not been any loss of data, IT security has not been a priority and should become a key goal for the enterprise. What should be the FIRST high-level initiative for a newly created IT strategy committee in order to support this...
Which of the following will provide the BEST information to make an assessment?
A newly established IT steering committee is concerned whether a system is meeting availability objectives. Which of the following will provide the BEST information to make an assessment?A . Balanced scorecardB . Capability maturity levelsC . Performance indicatorsD . Critical success factors (CSFs)View AnswerAnswer: C
Which of the following is the MOST effective way to manage risks within the enterprise?
Which of the following is the MOST effective way to manage risks within the enterprise?A . Assign individuals responsibilities and accountabilities for management of risks.B . Make staff aware of the risks in their area and risk management techniques.C . Provide financial resources for risk management systems.D . Document procedures...
Which of the following would be the BEST way to facilitate the adoption of strong IT governance practices throughout a multi-divisional enterprise?
Which of the following would be the BEST way to facilitate the adoption of strong IT governance practices throughout a multi-divisional enterprise?A . Ensuring each divisional policy is consistent with corporate policyB . Ensuring divisional governance fosters continuous improvement processesC . Mandating data standardization across the distributed enterpriseD . Documenting...
Which of the following is the ClO's BEST course of action?
A company is considering selling products online, and the CIO has been asked to advise the board of directors of potential problems with this strategy. Which of the following is the ClO's BEST course of action?A . Review the security framework.B . Conduct a return on investment (ROI) analysis.C ....
Which of the following presents the GREATEST risk?
An enterprise's information security function is making changes to its data retention and backup policies. Which of the following presents the GREATEST risk?A . Business data owners were not consulted.B . The new policies Increase the cost of data backups.C . Data backups will be hosted at third-party locations.D ....
Which of the following should be the ClO's NEXT step?
The board of directors of an enterprise has approved a three-year IT strategic program to centralize the core business processes of its global entities into one core system. Which of the following should be the ClO's NEXT step?A . Engage a team to perform a business impact analysis (BIA).B ....
Which of the following is the MOST effective way of assessing enterprise risk?
Which of the following is the MOST effective way of assessing enterprise risk?A . Business impact analysis (BIA)B . Business vulnerability assessmentC . Likelihood of threat analysisD . Operational risk assessmentView AnswerAnswer: D
Which of the following is the BEST method to monitor IT governance effectiveness?
Which of the following is the BEST method to monitor IT governance effectiveness?A . Service level managementB . Balanced scorecardC . Risk control self-assessment (CSA)D . SWOT analysisView AnswerAnswer: B
Which of the following should be the FIRST governance action?
A business case indicates an enterprise would reduce costs by implementing a bring your own device (BYOD) program allowing employees to use personal devices for email. Which of the following should be the FIRST governance action?A . Assess the enterprise architecture (EA).B . Update the network infrastructure.C . Update the...