無料ダウンロードISACA CGEITリアル試験問題ゲットせよ [Q17-Q41]

Share

無料ダウンロードISACA CGEITリアル試験問題ゲットせよ

最新のISACA CGEITリアル試験問題集PDF


エンタープライズIT(CGEIT)認定の認定は、エンタープライズITのガバナンスと管理において重要な役割を果たすITプロフェッショナル向けに設計されたグローバルに認められた資格情報です。この認定は、組織のビジネス目標と目標に合わせたガバナンスプログラムの管理、設計、および実装に関する個人の専門知識を示しています。 CGEIT認定は、Information Systems Audit and Control Association(ISACA)によって提供され、ITガバナンス、リスク管理、コンプライアンスの重要な経験を持つIT専門家向けに特別に設計されています。


ISACA CGEIT認定試験は、雇用主から非常に尊敬される世界的に認められた認定です。 ITガバナンス、リスク管理、コンプライアンスの分野におけるIT専門家の知識とスキルを検証するように設計されています。この認定は、これらの分野でのキャリアを前進させたい個人にとって不可欠であり、潜在的な雇用主に専門知識を実証する優れた方法です。

 

質問 # 17
A CEO wants to establish a governance framework to facilitate the alignment of IT and business strategies.
Which of the following should be a KEY requirement of this framework?

  • A. Defined resourcing levels
  • B. A service delivery strategy
  • C. A defined enterprise architecture
  • D. An outsourcing strategy

正解:C


質問 # 18
You are the project manager of the NHQ Project for your company. You have completed qualitative and quantitative analysis of your identified project risks and you would now like to find an approach to increase project opportunities and to reduce threats within the project. What project management process would best help you?

  • A. Create the project risk register
  • B. Plan risk responses
  • C. Create a risk governance approach
  • D. Monitor and control project risks

正解:B


質問 # 19
Which of the following individuals/team allocates business resources for effective IT governance?

  • A. Business Executive
  • B. CIO
  • C. IT Strategy Committee
  • D. CEO

正解:A


質問 # 20
Beth is a project team member on the JHG Project. Beth has added extra features to the project and this has introduced new risks to the project work. The project manager of the JHG project elects to remove the features Beth has added. The process of removing the extra features to remove the risks is called what?

  • A. Corrective action
  • B. Scope creep
  • C. Defect repair
  • D. Preventive action

正解:D


質問 # 21
An enterprise has established a new department to oversee the life cycle of activities that support data management objectives. Which of the following should be done NEXT?

  • A. Assess the current data business model.
  • B. Review data privacy requirements.
  • C. Develop a business continuity plan (BCP).
  • D. Establish a RACI chart

正解:D


質問 # 22
Service Transition contains detailed descriptions of which of the following processes?

  • A. Service Asset and Configuration Management, Release Management, and Request Fulfillment
  • B. Change Management, Capacity Management, Event Management, and Service Request Management
  • C. Change Management, Service Asset and Configuration Management, Release and Deployment Management
  • D. Service Level Management, Service Portfolio Management, Service Asset and Configuration Management

正解:C


質問 # 23
Event Management, Problem Management, Access Management, and Request Fulfillment are part of which of the following stages of the Service Lifecycle?

  • A. Continual Service Improvement
  • B. Service Strategy
  • C. Service Operation
  • D. Service Transition

正解:C

解説:
Section: Volume B


質問 # 24
In which of the following editions of COBIT was "Management Guidelines" added?

  • A. The first edition
  • B. The third edition
  • C. The second edition
  • D. The fourth edition

正解:C


質問 # 25
Which of the following activity loops describes improvement of the existing processes?

  • A. Loop 2
  • B. Loop 3
  • C. Loop 1
  • D. Loop 4

正解:A


質問 # 26
What is the BEST criterion for prioritizing IT risk remediation when resource requirements are equal?

  • A. Impact on business
  • B. IT audit recommendations
  • C. IT strategy alignment
  • D. Deviation from IT standards

正解:A


質問 # 27
Which of the following processes is responsible for controlling, recording and reporting on versions, attributes, and relationships relating to components of the Information Technology (IT) infrastructure?

  • A. Service Level Management
  • B. ICT Operations Management
  • C. Service Asset and Configuration Management
  • D. Service Catalogue Management

正解:C

解説:
Section: Volume B


質問 # 28
A major data leakage incident at an enterprise has resulted in a mandate to strengthen and enforce current data governance practices. Which of the following should be done FIRST to achieve this objective?

  • A. Verify data owners.
  • B. Analyze data quality.
  • C. Review data logs.
  • D. Assess data security controls.

正解:D


質問 # 29
Which of the following would be the BEST way for a CIO to enhance security risk management alignment between IT and business?

  • A. Perform a trend analysis based on security investment levels and business initiatives.
  • B. Facilitate joint workshops for IT and the business on risk assessment techniques.
  • C. Analyze benchmark reports to understand the organization's security investments against competitors.
  • D. Establish a process in which IT and the business collaborate on risk assessment and mitigation prioritization.

正解:D


質問 # 30
A company is considering selling products online, and the CIO has been asked to advise the board of directors of potential problems with this strategy. Which of the following is the ClO's BEST course of action?

  • A. Perform a risk assessment.
  • B. Review the enterprise architecture (EA).
  • C. Review the security framework.
  • D. Conduct a return on investment (ROI) analysis.

正解:A


質問 # 31
You are the project manager of the HJK project for your organization. You and the project team have created risk responses for many of the risk events in the project. A teaming agreement is an example of what risk response?

  • A. Acceptance
  • B. Transference
  • C. Mitigation
  • D. Sharing

正解:D


質問 # 32
In a successful enterprise that is profitable in its marketplace and consistently growing in size, the non-IT workforce has grown by 50% in the last two years. The demand for IT staff in the marketplace is more than the supply, and the enterprise is losing staff to rival organizations. Due to the rapid growth, IT has struggled to keep up with the enterprise, and IT procedures and associated job roles are not well-defined. The MOST critical activity for reducing the impact caused by IT staff turnover is to:

  • A. increase compensation for IT staff.
  • B. document processes and procedures.
  • C. outsource the IT operation.
  • D. hire temporary staff.

正解:B


質問 # 33
Which of the following is the BEST way to demonstrate that IT strategy supports a new enterprise strategy?

  • A. Map IT programs to business goals.
  • B. Review and update the portfolio management process.
  • C. Measure return on IT investments against balanced scorecards.
  • D. Monitor new key risk indicators (KRIs).

正解:A


質問 # 34
The PRIMARY benefit of integrating IT resource planning into enterprise strategic planning is that it enables the enterprise to:

  • A. adjust business goals depending upon resource availability.
  • B. develop tactical plans to achieve resource optimization.
  • C. prioritize resource allocation based on sourcing strategy.
  • D. allocate resources efficiently to achieve desired goals.

正解:D


質問 # 35
What business analysis element tries to identify as many potential options as possible to meet the business objectives and fill identified gaps in capabilities?

  • A. Documentation of assumptions and constraints
  • B. Alternative generation
  • C. Decision analysis
  • D. Ranking of approaches

正解:B


質問 # 36
An IT governance committee wants to ensure there is a clear description of the "data owner" in the enterprise data policy. Which of the following would BEST define the owner of data stored in an external cloud?

  • A. The contract manager who monitors the security of the cloud provider.
  • B. The vendor who submits the data to the organization via online forms
  • C. The business leader who is most impacted by the loss of data.
  • D. The risk manager who is responsible for protecting data stored in the cloud.

正解:C


質問 # 37
Gary is the project manager of the MMQ project for his company. He is working with his project team to plan the risk responses for his project. Sarah, a project team member, does not understand the process that Gary is using to plan the risk responses. Which approach is the preferred method to address project risks and the risk responses?

  • A. Risks in the project should be addressed by the organization's risk tolerance for creating risk responses.
  • B. Risks in the project should be addressed by their probability for creating risk responses.
  • C. Risks in the project should be addressed by their priority for creating risk responses.
  • D. Risks in the project should be addressed by their impact for creating risk responses.

正解:C


質問 # 38
Which of the following is PRIMARILY achieved through performance measurement?

  • A. Transparency
  • B. Benefit realization
  • C. Process improvement
  • D. Cost efficiency

正解:C


質問 # 39
Which of the following groups should approve the implementation of new technology?

  • A. Program management office
  • B. Portfolio management office
  • C. IT audit department
  • D. IT steering committee

正解:D


質問 # 40
Which of the following problems occur with performance measurement systems that limit their usefulness? Each correct answer represents a complete solution. Choose all that apply.

  • A. It is dependent on gross aggregates, which tend to understate or ignore distributional contributions and consequences.
  • B. It is dependent on the timely occurrence of corrective action which is required for effective management control.
  • C. It is dependent on summary data, which emphasizes averages and discounts outliers.
  • D. It is dependent on historical patterns and reluctant to accept new structural changes that are capable of generating different outcomes

正解:A、C、D


質問 # 41
......

PDF問題(2024年最新)実際のISACA CGEIT試験問題:https://jp.fast2test.com/CGEIT-premium-file.html

CGEIT試験問題集、CGEIT練習テスト問題はここ:https://drive.google.com/open?id=1Szh7t8Lw-NH6huF_kraBtxj07v22aR5l


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어