What is the role of the internal audit function when defining the EGIT target state?
Correct Answer: A
Explanation The internal audit function is an independent and objective assurance and consulting activity that evaluates and improves the effectiveness of governance, risk management, and control processes in an enterprise. The internal audit function has a role in defining the EGIT target state, which is the desired state of information and technology governance in an enterprise that is aligned with its strategy, objectives, and stakeholder needs. The role of the internal audit function in this process is to provide advice and assist with target-state positioning and gap priorities. This means that the internal audit function can help to identify the current state of information and technology governance in an enterprise, assess the gaps and issues that need to be addressed, determine the target state of information and technology governance that is optimal for the enterprise, and prioritize the actions and initiatives that are required to achieve the target state. The internal audit function can also provide assurance on the design and implementation of the EGIT target state by evaluating its adequacy, effectiveness, efficiency, and compliance.References: : COBIT 2019 Implementation Guide, page 51-52 : COBIT 2019 Framework: Introduction and Methodology, page 30-31
Question 162
The COBIT framework is designed to meet the I&T goals for which of the following?
Correct Answer: A
Question 163
Which of the following includes capability levels that can be used as benchmarks?
Correct Answer: B
According to the Official COBIT 2019 Study Manual from ISACA, Process Practices "are capability levels that can be used as benchmarks for the maturity of processes and for assessing process performance." Process Practices are the second layer in the COBIT 2019 Framework, and they are composed of seven categories that provide detailed guidance on how to design, implement, and maintain processes.
Question 164
Within an organizational structure chart (RACI chart), which role drives a given task or process?
Which enterprise role ensures the board is kept informed of major decisions related to value delivery of I&T deployment in accordance with the enterprise strategy?
