What should be the FIRST action of a new CIO when considering an IT governance framework for an enterprise?
Correct Answer: A
This action is important because corporate culture is the shared set of norms, beliefs, and values that influence the behavior and attitudes of the organization's members. Corporate culture can support or hinder IT governance, depending on how well it aligns with the IT governance objectives. IT's role in providing business value is the extent to which IT contributes to the achievement of the business strategy, goals, and needs. IT's role in providing business value can vary depending on the industry, market, and competitive environment of the enterprise12. By understanding corporate culture and IT's role in providing business value, the new CIO can gain insight into the current state and challenges of IT governance in the enterprise, as well as the expectations and requirements of the stakeholders. The new CIO can also identify the gaps and opportunities for improvement or innovation in IT governance, and develop a vision and strategy for IT governance that is aligned with the corporate culture and business value34. The other options are not the first action of a new CIO when considering an IT governance framework for an enterprise, but rather subsequent actions that depend on the outcome of understanding corporate culture and IT's role in providing business value. Understanding critical IT processes to define the scope of the IT governance framework is a step that occurs after the new CIO has established the objectives and priorities for IT governance, and needs to determine which processes are essential for delivering value and managing risk5. Verifying stakeholder sponsorship of the IT governance initiative is a step that occurs after the new CIO has developed a business case and a communication plan for IT governance, and needs to secure the support and commitment of the key decision-makers and influencers6. Developing an IT balanced scorecard to monitor and track IT performance is a step that occurs after the new CIO has implemented and executed the IT governance framework, and needs to measure and report on the outcomes and benefits of IT governance7. References: 1: Corporate governance of information technology - Wikipedia8 2: What is Business Value? Definition & Examples - Talend 3: How to Create an Effective IT Governance Framework | Smartsheet 4: 7 Rules for Demonstrating the Business Value of IT - Gartner 5: The internal process perspective within the Balanced Scorecard 6: Here's What You Need in Your Whistleblower Policy (and Why) - Case IQ 7: The Balanced Scorecard Customer Perspective : What is Enterprise Architecture? | Gartner
Question 137
You are the project manager of the GHY Project and would like to perform a review of your project from several different characteristics. You would like to review what worked in the project and what needed improvement. What type of analysis would be most appropriate for the end of project review?
Correct Answer: D
Question 138
The MAIN responsibility of the board of directors regarding the management of enterprise risk is to:
Correct Answer: D
Question 139
Which of the following concepts is the business practice of developing and implementing comprehensive risk management and security practices for a firm's entire value chain?
Correct Answer: D
Section: Volume A
Question 140
Which of the following components of the COSO ERM identifies the required information, captures it, and communicates it in a form and time frame that enable people to carry out their responsibilities?
