CGEIT無料問題集「ISACA Certified in the Governance of Enterprise IT」

質問 1

IT governance within an enterprise is attempting to drive a cultural shift to enhance compliance with IT security policies. The BEST way to support this objective is to ensure that enterprise IT policies are:

（A）integrated into individual performance objectives.

（B）centrally posted and contain detailed instructions.

（C）acknowledged and signed by each employee.

（D）communicated on a regular basis.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Which of the following metrics is MOST useful to ensure IT services meet business requirements?

（A）Number of business disruptions due to IT incidents

（B）Frequency Of IT services risk profile updates

（C）Number of discontinued business transformation programs

（D）Frequency Of IT policy updates

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

An organization is evaluating vendors to provide mobile device management (MDM) services. Which of the following is a KEY governance consideration for the IT steering committee?

（A）The MDM services are delivered via a cloud.

（B）Technology-owned devices will be covered by the service

（C）Employee-owned devices will be covered by the service.

（D）Service level targets align with business requirements.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

When conducting a risk assessment in support of a new regulatory
requirement, the IT risk committee should FIRST consider the:

（A）readiness of IT systems to address the risk.

（B）disruption to normal business operations.

（C）risk profile of the enterprise.

（D）cost burden to achieve compliance.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

When determining the optimal IT service levels to support business, which of the following is MOST important?

（A）Business user requests

（B）Cost/benefit to the business.

（C）IT capacity utilization and availability.

（D）Available IT budget.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Which of the following is the GREATEST expected strategic organizational benefit from the standardization of technical platforms?

（A）Reduces IT operational training costs

（B）Optimizes infrastructure investments

（C）Reduces response time

（D）Meets regulatory compliance requirements

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

An IT audit reveals inconsistent maintenance of data privacy in enterprise systems primarily due to a lack of data sensitivity categorizations. Once the categorizations are defined, what is the BEST long-term strategic response by IT governance to address this problem?

（A）Standardize data classification processes throughout the enterprise.

（B）Incorporate enterprise privacy categorizations into contracts.

（C）Require business impact analyses (BIAs) for enterprise systems.

（D）Reassess the data governance policy.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

An IT governance committee wants to ensure there is a clear description of the "data owner" in the enterprise data policy. Which of the following would BEST define the owner of data stored in an external cloud?

（A）The vendor who submits the data to the organization via online forms

（B）The business leader who is most impacted by the loss of data.

（C）The risk manager who is responsible for protecting data stored in the cloud.

（D）The contract manager who monitors the security of the cloud provider.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Two large financial institutions with different corporate cultures are engaged in a merger. From a governance perspective, which of the following should be the GREATEST concern?

（A）Technology infrastructure

（B）Risk appetite

（C）Enterprise architecture (EA) integration

（D）Combined cost of operations

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

What is the PRIMARY objective for performing an IT due diligence review prior to the acquisition of a competitor?

（A）Determine whether the competitor is using industry-accepted practices.

（B）Document the competitor's governance structure.

（C）Ensure that the competitor understands significant IT risks.

（D）Assess the status of the risk profile of the competitor.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

An enterprise has launched a series of critical new IT initiatives that are expected to produce substantial value Which of the following would BEST provide the board with an indication of progress of the IT initiatives?

（A）Critical risk and issue walk-through

（B）Full life cycle cost-benefit analysis

（C）Demonstration of prototype and user testing

（D）Portfolio management review

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

Supply chain management has established a supplier policy requiring multiple technology suppliers. What is the BEST way to ensure the success of this policy?

（A）Implement a master service agreement.

（B）Identity and select suppliers based on cost.

（C）Align enterprise architecture (EA) and procurement strategies.

（D）Align the vendor selection process with the security policy.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

CGEIT 無料問題集「ISACA Certified in the Governance of Enterprise IT」

弊社を連絡する

関連リンク

トップ試験