Free ISACA NIST-COBIT-2019 Exam Dumps Questions & Answers

When aligning to the NIST Cybersecurity Framework, what should occur after tier levels and framework core outcomes are determined?

• A.  Report discovered issues to senior management.
• B.  Compare current and target profiles.
• C.  Assign mitigating control development.

Which COBIT implementation phase directs the development of an action plan based on the outcomes described in the Target Profile?

• A.  Phase 3 -Where Do We Want to Be?
• B.  Phase 4 -What Needs to Be Done?
• C.  Phase 5 -How Do We Get There?

Which of the following is MOST likely to cause an organization's NIST Cybersecurity Framework (CSF) implementation to fail?

• A.  The implementation timeline is too long.
• B.  Potential benefits of proposed improvements are not considered.
• C.  Organizational training on the CSF is not provided.

Which function of the CSF is addressed by incorporating governance, risk, and compliance (GRC) elements into the implementation plan?

• A.  Detect
• B.  Protect
• C.  Identify

An organization is concerned that there will be resistance in attempts to close gaps between the current and target profiles. Which of the following is the BEST approach to gain support for the process?

• A.  Identify quick wins for implementation first.
• B.  Communicate management opinions regarding the project.
• C.  Implement organization-wide training on the CSF.