ISACA CGEIT Dumps Updated [Sep-2021] Get 100% Real Exam Questions! [Q140-Q159]

Share

[Sep-2021] Pass ISACA CGEIT Exam in First Attempt Guaranteed!

Full CGEIT Practice Test and 409 unique questions with explanations waiting just for you, get it now!

NEW QUESTION 140
When establishing an enterprise data model, the BEST way to ensure the integrity of data is to:

  • A. classify information using an agreed-upon schema.
  • B. implement the highest level of protection to data across the enterprise.
  • C. establish a privileged access management platform.
  • D. implement a data loss prevention (DLP) program.

Answer: D

 

NEW QUESTION 141
Which of the following is a practice of forecasting possible risks to the organization and taking steps to mitigate their impact on operations?

  • A. Timekeeping
  • B. Enterprise risk management
  • C. HR audit
  • D. Applicant tracking systems

Answer: B

 

NEW QUESTION 142
Portfolio management in a large enterprise BEST enables which of the following?

  • A. Performance management
  • B. Human resource optimization
  • C. Risk reduction
  • D. Value creation

Answer: C

 

NEW QUESTION 143
CORRECT TEXT
Fill in the blank with an appropriate phrase.
The _________ provides investment management services to the firm and directs on how to take decisions on fund.

Answer:

Explanation:
fund manager

 

NEW QUESTION 144
An IT audit report indicates that a lack of IT employee risk awareness is creating serious security issues in application design and configuration. Which of the following would be the BEST key risk indicator (KRI) to show progress in IT employee behavior?

  • A. Results of application security awareness training quizzes
  • B. Number of IT employees attending security training sessions
  • C. Results of application security testing
  • D. Number of reported security incidents

Answer: C

 

NEW QUESTION 145
Fred is the project manager of the PKL project. He is working with his project team to complete the quantitative risk analysis process as a part of risk management planning.
Fred understands that once the quantitative risk analysis process is complete, the process will need to be completed again in at least two other times in the project. When will the quantitative risk analysis process need to be repeated?

  • A. Quantitative risk analysis process will be completed again after the plan risk response planning and as part of procurement.
  • B. Quantitative risk analysis process will be completed again after the risk response planning and as a part of monitoring and controlling.
  • C. Quantitative risk analysis process will be completed again after the cost management planning an as a part of monitoring and controlling.
  • D. Quantitative risk analysis process will be completed again after new risks are identified and as pa of monitoring and controlling.

Answer: B

 

NEW QUESTION 146
When determining the optimal IT service levels to support business, which of the following is MOST important?

  • A. Available IT budget.
  • B. Cost/benefit to the business.
  • C. Business user requests
  • D. IT capacity utilization and availability.

Answer: B

 

NEW QUESTION 147
Which of the following domains of CGEIT aims to guarantee that the IT function remains aligned with the organization's strategic objectives?

  • A. Value Delivery
  • B. Risk Management
  • C. IT Governance Framework
  • D. Strategic Alignment

Answer: C

 

NEW QUESTION 148
Which of the following processes ensures that all vital assets and resources of the organization are safeguarded?

  • A. Risk management process
  • B. Defining Resource Requirements process
  • C. Cost estimating process
  • D. Vendor contract administration process

Answer: A

 

NEW QUESTION 149
Which of the following is the BEST outcome measure to determine the effectiveness of IT risk management processes?

  • A. Number of events impacting business processes due to delays in responding to risks
  • B. Time lag between when IT risk is identified and the enterprise's response
  • C. Frequency of updates to the IT risk register
  • D. Percentage of business users satisfied with the quality of risk training

Answer: B

 

NEW QUESTION 150
An enterprise is implementing a new IT governance program. Which of the following is the BEST way to increase the likelihood of its success?

  • A. Implementation follows an IT audit recommendation.
  • B. The CIO communicates why IT governance is important to the enterprise.
  • C. The IT steering committee approves the implementation efforts.
  • D. The CIO issues a mandate for adherence to the program.

Answer: C

 

NEW QUESTION 151
Which of the following processes contained in the Portfolio Management domain of Val IT establishes an investment threshold?

  • A. PM7
  • B. PM5
  • C. PM6
  • D. PM4

Answer: C

Explanation:
Section: Volume C

 

NEW QUESTION 152
A large bank has completed several acquisitions in the last few years that have resulted in redundant IT applications. To align with the strategic initiative of providing integrated services to customers, the IT steering committee has decided to share data and integrate applications. Which of the following would be MOST important to review in this situation?

  • A. Balanced scorecard measures
  • B. Enterprise architecture (EA)
  • C. IT risk register
  • D. IT strategic plan

Answer: B

 

NEW QUESTION 153
You work as a project manager for BlueWell Inc. You are working on a project and the management wants a rapid and cost-effective means for establishing priorities for planning risk responses in your project.
Which risk management process can satisfy management's objective for your project?

  • A. Rolling wave planning
  • B. Quantitative analysis
  • C. Qualitative risk analysis
  • D. Historical information

Answer: C

 

NEW QUESTION 154
Which of the following areas addresses the safeguarding of IT assets, disaster recovery and continuity of operations?

  • A. Value delivery
  • B. Risk management
  • C. Strategic alignment
  • D. Performance measurement

Answer: B

 

NEW QUESTION 155
The board of a start-up company has directed the CIO to develop a technology resource acquisition and management policy. Which of the following should be the MOST important consideration during the development of this policy?

  • A. Enterprise growth plans
  • B. Organizational knowledge retention
  • C. IT staff competencies
  • D. Industry best practices

Answer: A

 

NEW QUESTION 156
Which of the following should be the PRIMARY input when developing IT strategy?

  • A. Balanced scorecard
  • B. Vision statement
  • C. Process and capability maturity
  • D. Governance objectives

Answer: D

 

NEW QUESTION 157
A board of directors wants to ensure the enterprise is responsive to changes in its environment that would directly impact critical business processes. Which of the following will BEST facilitate meeting this objective?

  • A. Regularly reviewing the enterprise risk appetite
  • B. Monitoring key risk indicators (KRIs)
  • C. Implementing a competitive intelligence tool
  • D. Scheduling frequent threat analyses

Answer: B

 

NEW QUESTION 158
It has been discovered that multiple business units across an enterprise are using duplicate IT applications and services to fulfill their individual needs. Which of the following would be MOST helpful to address this concern?

  • A. IT service management
  • B. Enterprise risk framework
  • C. IT project roadmap
  • D. Enterprise architecture (EA)

Answer: A

 

NEW QUESTION 159
......

Prepare for your ISACA certification with the updated VCETorrent CGEIT exam questions: https://drive.google.com/open?id=1Pz9Mu132MZslv4BPacMR9u2ExIXl6Yx-

Get Latest CGEIT Dumps Exam Questions in here: https://www.vcetorrent.com/CGEIT-valid-vce-torrent.html