The PRIMARY objective of promoting business ethics within the IT enterprise should be to ensure:

• A.trust among internal and external stakeholders.
• B.employees act more responsibly.
• C.corporate social responsibility.
• D.legal and regulatory compliance.

Comment: *

Name: *

Email: *

Verification: *

A multinational enterprise is planning to migrate to cloud-based systems. Which of the following should be of MOST concern to the risk management committee?

• A.Cost considerations
• B.Security breaches
• C.Resource alignment
• D.Regulatory compliance

Comment: *

Name: *

Email: *

Verification: *

An analysis of an organization's security breach is complete. The results indicate that the quality of the code used for updates to its primary customer-facing software has been declining and security flaws were introduced. The FIRST IT governance action to correct this problem should be to review:

• A.the change management control framework.
• B.the qualifications of developers to write secure code.
• C.compliance with the user testing process.
• D.the incident response plan.

Comment: *

Name: *

Email: *

Verification: *

An enterprise is trying to increase the maturity of its IT process from being ad hoc to being repeatable. Which of the following is the PRIMARY benefit of this change?

• A.Required outcomes are more frequently achieved.
• B.Process performance is measured in business terms.
• C.Required outcomes are mapped to business objectives.
• D.Process optimization is embedded across the organization.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is used as a tool that assists in risk identification?

• A.Status report
• B.Performance report
• C.Variance analysis
• D.Issue log

Comment: *

Name: *

Email: *

Verification: *