Which of the following risk functions ensures the product/service alignment with the customer requirements?
Correct Answer: C
Question 102
The BEST way to ensure an IT steering committee meets enterprise objectives is to:
Correct Answer: D
According to the web search results, the best way to ensure an IT steering committee meets enterprise objectives is to have key business stakeholders represented on the committee. This is because business stakeholders are the ones who define and own the enterprise objectives, and who can provide the strategic direction, guidance, and support for IT initiatives that align with these objectives. Having key business stakeholders represented on the committee can help to ensure that IT decisions are made in the best interest of the enterprise, and that IT projects deliver value and benefits to the business12. The other options are less effective than option D, as they do not address the alignment and integration of IT and business objectives. Requiring a member of the committee to have IT governance expertise may be helpful, but not sufficient, to ensure that the committee meets enterprise objectives. IT governance expertise is not a substitute for business knowledge and involvement. Benchmarking against industry best practices may be useful, but not necessary, to ensure that the committee meets enterprise objectives. Industry best practices may not always suit the specific needs and context of the enterprise. Establishing key performance indicators (KPIs) may be important, but not enough, to ensure that the committee meets enterprise objectives. KPIs are metrics that measure the performance and outcomes of IT projects and processes, but they do not guarantee that these projects and processes are aligned with the enterprise objectives. References := What is an IT Steering Committee? - BMC Software | Blogs IT Governance Committee - The Role and Importance of ... - Exceeders
Question 103
Which of the following is MOST important to ensure when aligning IT and enterprise resource management processes?
Correct Answer: C
Themost critical factor in aligning IT and enterprise resource managementis ensuring thatIT resources are mapped to business priorities. This guarantees that resource allocation supports strategic objectives and delivers maximum value. Without this alignment, IT efforts may be misdirected, underutilized, or not supporting enterprise goals-even if sourcing and monitoring are in place. Reference: CGEIT Review Manual: Domain 2 - IT Resources COBIT 2019: APO07 (Manage Human Resources), BAI01 (Manage Programs and Projects).
Question 104
An interna! health organization has been notified that a data breach has resulted in patient records being published online. Which of the following is MOST important consideration when determining the process for meeting the organization's legal and regulatory obligations?
Correct Answer: C
When determining the process for meeting an internal health organization's legal and regulatory obligations following a data breach, the most important consideration is the context of the breach, including data ownership and location. Understanding who owns the breached data and where it was stored or processed is crucial for determining jurisdictional and regulatory requirements. This context informs the organization's legal obligations, such as notification requirements and potential liabilities. While organizational structure, data classification, security policy, and details of the breach and incident response efforts are relevant, the context of the breach is paramount in guiding the legal and regulatory response.
Question 105
Which of the following would provide the MOST useful information to measure the alignment of IT with the enterprise?
