更新された2023年06月テストエンジンに練習CGEITテスト問題 [Q66-Q87]

Share

更新された2023年06月テストエンジンに練習CGEITテスト問題

CGEITリアル試験問題テストエンジン問題集トレーニングには409問あります


ISACA CGEIT 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • その適切な方針と手順を見るためのあなたの適性を確認します
トピック 2
  • 企業目標の達成を促進する能力を認証します
トピック 3
  • それを可能にする投資が投資のポートフォリオとして管理されていることを確認するための専門知識をしっかりと確立します
トピック 4
  • プロセスを配置する方法を知っていることを確立して特定する
トピック 5
  • それをサポートし、企業の戦略的調整


CGEIT試験を受験するためには、少なくとも1年間のITガバナンスフレームワークまたは標準の開発または実装を含む、ITガバナンスまたは管理の分野での5年間の経験が必要です。

 

質問 # 66
A regional business unit of a major financial institution is considering the use of a Software as a Service (SaaS) cloud vendor to implement a new system. Which of the following should be performed FIRST?

  • A. Determine if the cloud vendor has a secure data center.
  • B. Investigate on-premise software solutions.
  • C. Develop a business case.
  • D. Update the outsourcing policy.

正解:A


質問 # 67
Which of the following is NOT a valid maturity level of the Software Capability Maturity Model (CMM)?

  • A. Defined level
  • B. Fundamental level
  • C. Managed level
  • D. Repeatable level

正解:B


質問 # 68
The IT program manager does not see the value of conducting risk assessments for a new major IT project.
The manager is reluctant to cooperate with internal auditors and the newly formed steering committee. Midway through the project, program requirements were changed because the CEO is a friend of a vendor and wants to implement this vendor's new technology. This decision will cause the current IT program budget to be insufficient and will be shown as overspending, After the requirement change request, the IT program manager should FIRST:

  • A. report the matter to internal audit as a program deviation to be reviewed.
  • B. request additional funding from the business owner to cover the additional scope.
  • C. align IT with the business and agree to the business request.
  • D. obtain confirmation from the business and a decision by the steering committee.

正解:D


質問 # 69
An enterprise embarked on an aggressive strategy requiring the implementation of several large IT projects impacting multiple business processes across all departments. Initially employees were supportive of the strategy, but there is growing fatigue and frustration with the ongoing new capabilities which must be learned. Which of the following would be the BEST action performed by senior management?

  • A. Establish "Reward and Recognition" efforts to boost employee morale.
  • B. Assess current business and IT competencies.
  • C. Improve the system development life cycle (SDLC) process.
  • D. Incorporate an organizational change management program.

正解:A


質問 # 70
Shawn is the project manager of the WHT Project for his company. In this project Shawn's team reports that they have found a way to complete the project work for less cost than
what was originally planned. The project team presents a new software that will help to automate the project work. While the software and the associated training costs $25,000 it will save the project nearly $65,000 in total costs. Shawn agrees to the software and changes to the project management plan accordingly. What type of risk response has been used in this instance?

  • A. Exploiting
  • B. Accepting
  • C. Enhancing
  • D. Avoidance

正解:A


質問 # 71
Which of the following outsourcing defines the performance objectives reached by negotiation between the user and the provider of a service, or between an outsourcer and an organization?

  • A. Contract
  • B. Outsource
  • C. Service level Agreement (SLA)
  • D. Proposal

正解:C


質問 # 72
Which of the following groups should approve the implementation of new technology?

  • A. Portfolio management office
  • B. IT steering committee
  • C. IT audit department
  • D. Program management office

正解:B


質問 # 73
The PRIMARY objective of promoting business ethics within the IT enterprise should be to ensure:

  • A. corporate social responsibility.
  • B. legal and regulatory compliance.
  • C. trust among internal and external stakeholders.
  • D. employees act more responsibly.

正解:C


質問 # 74
An enterprise plans to expand into new markets in countries lacking data privacy regulations, increasing risk exposure. Which of the following is the BEST course of action for the CIO?

  • A. Limit the personal data available to the high-risk countries.
  • B. Quantify the risk impact and evaluate possible countermeasures.
  • C. Identify business risk appetite and tolerance levels.
  • D. Mandate the strengthening of user access controls.

正解:C


質問 # 75
Which of the following guides provides risk and value statements to help identify and validate the need to execute each control objective?

  • A. COBIT control practices guide
  • B. IT control objectives for Basel II guide
  • C. IT assurance guide
  • D. IT control for Sarbanes Oxley guide

正解:A


質問 # 76
Which of the following techniques builds various plausible views of possible futures for a business?

  • A. SWOT Analysis
  • B. Market Segmentation
  • C. Scenario Planning
  • D. PEST analysis

正解:C

解説:
Section: Volume C
Explanation


質問 # 77
What does the T in SWOT analysis mean?

  • A. Threats
  • B. Test
  • C. Time
  • D. Trial

正解:A


質問 # 78
Despite an adequate training budget, IT staff are not keeping skills current with emerging technologies critical to the enterprise. The BEST way for the enterprise to address this situation would be to:

  • A. allow staff to attend technology conferences.
  • B. create a standard-setting center of excellence.
  • C. assign human resources (HR) to develop an IT skills matrix.
  • D. establish an agreed-upon skills development plan with each employee.

正解:C


質問 # 79
The CEO of a large enterprise has announced the commencement of a major business expansion that will double the size of the organization. IT will need to support the expected demand expansion. The CIO should FIRST:

  • A. embed IT personnel in the business units.
  • B. review the resource utilization matrix.
  • C. recruit IT resources based on the expansion decision.
  • D. update the IT strategic plan to align with the decision.

正解:B


質問 # 80
The PRIMARY benefit of integrating IT resource planning into enterprise strategic planning is that it enables the enterprise to:

  • A. allocate resources efficiently to achieve desired goals.
  • B. prioritize resource allocation based on sourcing strategy.
  • C. adjust business goals depending upon resource availability.
  • D. develop tactical plans to achieve resource optimization.

正解:A


質問 # 81
What are the various phases of the Software Assurance Acquisition process according to the U.S. Department of Defense (DoD) and Department of Homeland Security (DHS) Acquisition and Outsourcing Working Group?

  • A. Requirements, planning, monitoring, auditing
  • B. Planning, contracting, monitoring and acceptance, follow-on
  • C. Implementing, contracting, auditing, monitoring
  • D. Designing, implementing, contracting, monitoring

正解:B


質問 # 82
A CIO determines IT investment management processes are not fully realizing the benefits identified in business cases. Which of the following would be the BEST way to prevent this issue?

  • A. Document lessons learned throughout the investment life cycle.
  • B. Establish a requirement for CIO review and approval of each business case.
  • C. Evaluate the delegation of investment approval authorities.
  • D. Perform stage-gate reviews throughout the life cycle of each project.

正解:A


質問 # 83
Which of the following examples are included in the general controls embedded in IT processes and services? Each correct answer represents a complete solution. Choose all that apply.

  • A. Accuracy
  • B. Systems development
  • C. Completeness
  • D. Change management

正解:B、D


質問 # 84
Which of the following has the GREATEST influence on data quality assurance?

  • A. Data stewardship
  • B. Data encryption
  • C. Data classification
  • D. Data modeling

正解:D


質問 # 85
You work as a project manager for TechSoft Inc. You are working with the project stakeholders on the qualitative risk analysis process in your project. You have used all the tools to the qualitative risk analysis process in your project. Which of the following techniques is NOT used as a tool in qualitative risk analysis process?

  • A. Risk Reassessment
  • B. Risk Urgency Assessment
  • C. Risk Data Quality Assessment
  • D. Risk Categorization

正解:A


質問 # 86
Which of the following objectives are used by the system to increase costs or revenues?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Creating new distribution channels
  • B. Erecting barriers to entry by competitors
  • C. Improving product quality
  • D. Increasing production rates

正解:A、B


質問 # 87
......

CGEIT実際の問題解答PDFには100%カバー率リアル試験問題:https://jp.fast2test.com/CGEIT-premium-file.html

CGEIT試験問題解答:https://drive.google.com/open?id=1XOtbQ4II2vuv4eSs5Ox1ZDuJYHv2Li7t


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어