究極のガイドは1z0-1058-23最新2024年07月17日時間限定!今すぐダウンロード!
2024年最新のな厳密検証された合格させる1z0-1058-23試験にはリアル問題と解答
質問 # 13
When running Synchronize Transaction from the Data Sources page of Application Configurations, which statement is true when you have two models using invoice and payment business objects?
- A. One job will run for the two objects based on transactions dated before the Transaction Created As of Date.
- B. One job will run for the two objects and the Transaction Created As of Date has no impact on the data.
- C. Two jobs will run for the two objects based on transactions dated after the Transaction Created As of Date.
- D. One job will run for the two objects based on transactions dated after the Transaction Created As of Date.
正解:D
解説:
* When you synchronize transaction data, the system uploads new and modified records from your Oracle Cloud data source for the business objects used by all current transaction models and controls1.
* The synchronization job updates all business objects used by all current transaction models and controls, and it does so based on the transactions dated after the Transaction Created As of Date1.
* This ensures that the transaction models (and controls) evaluate current data, which is crucial for maintaining the accuracy and relevance of the controls1.
References:
* For more information on the synchronization process and its impact on transaction models, you can refer to the Oracle documentation on Synchronizing Transaction Data1.
* Additional details regarding the scheduling and running of data synchronization jobs can be found in the Oracle documentation on Scheduling or Running Data Synchronization2.
* The Oracle Fusion Cloud Risk Management 23D What's New document provides insights into the necessity of running the Transaction Data Source Synchronization job when there are new attributes or attribute changes in business objects3.
質問 # 14
The GRC Business owner responsible for reviewing and investigating access incidents related to the "Order to Cash" perspective does not see any worklists for the generated results. You have validated that:
1. Other business owners are able to view their assigned worklists without any problem
2. Incidents have been generated for the controls related to Order to Cash
3. The business owner's assigned roles contain the correct functional privileges and data access to the correct perspective values What is the reason the business owner cannot see any worklists for the generated incidents?
- A. The Control Perspectives are not linked to the control.
- B. The business owner was recently assigned the role and the worklist needs to be refreshed.
- C. The Result Management Perspective Assignment has not been linked.
- D. Worklist assignment does not include the business owner.
- E. The underlying model is not linked to Order to Cash.
正解:B
解説:
In Oracle Risk Management, when a business owner is assigned a new role, there may be a delay before the worklist reflects this change. This is because the system needs to refresh the data to include the new role assignments in the worklist generation process. If the business owner responsible for the "Order to Cash" perspective does not see any worklists for the generated incidents, despite having the correct functional privileges and data access, it is likely due to the recent assignment of the role. The system has not yet refreshed the worklists to include the business owner's new role, which is necessary for them to view the worklists related to the generated incidents.
References:
* Oracle Risk Management Cloud documentation on role assignments and worklist generation1.
* Oracle support documents detailing how to regenerate worklists after changes to GRC security components2.
質問 # 15
Your client has three operating units.
What are two ways in which you can exclude an operating unit where there are not enough personnel to allow segregation of duties? (Choose two.)
- A. In a model, create a new condition logic filter, select the operating unit attribute and select the operating unit value.
- B. In a model, create a new condition logic filter, select the operating unit attribute, select the operating unit value, and then perform an exclusion though the advanced options check box.
- C. In a model, create a new condition logic filter, select the within same operating unit attribute, select the value yes, and then perform your exclusion though the advanced options check box.
- D. Navigate to the Create Access Global Condition page and create a new condition logic filter, select the within same operating unit attribute, select the value yes, and then perform your exclusion though the advanced options check box.
- E. Navigate to the Create Access Global Condition page and create a new condition logic filter, select the operating unit attribute, select the operating unit value, and then perform an exclusion though the advanced options check box.
正解:B、E
解説:
* In a model: You can create a new condition logic filter within a model, select the specific operating unit attribute and its value, and then apply an exclusion through the advanced options checkbox. This method allows you to set up a filter that specifically targets the operating unit you wish to exclude.
* Create Access Global Condition page: By navigating to this page, you can create a new condition logic filter, again selecting the operating unit attribute and its value, and perform an exclusion through the advanced options checkbox. This approach is similar to the first but is done through the global condition page, which may offer a broader scope of application.
References:The information provided here is based on Oracle's documentation on Risk Management and Compliance, which outlines the procedures for excluding an operating unit in scenarios where there is insufficient personnel to maintain segregation of duties12. For a detailed understanding of these processes, refer to the official Oracle documentation.
質問 # 16
You are advising your client on design and configuration related to how access incident results will be viewed and managed. The client has provided a list of business requirements:
* Incident results can be viewed by Department
* Groups of investigators receive assigned incidents based on Department
* Must ensure systematically that no incident is unassigned to an investigator Which three must be configured to support these requirements? (Choose three.)
- A. Custom perspective for Department linked to the Results object with Required set to "No"
- B. Worklist assignment Result Investigator should be set to "All Eligible Users"
- C. Custom perspective for Department linked to the Results object with Required set to "Yes"
- D. Worklist assignment Result Investigator should be set to specific users.
- E. Investigators are assigned job roles with custom Department perspective data roles attached for managing incidents. Other incident users are assigned job roles with custom Department perspective data roles attached for viewing only.
- F. Investigators are assigned job roles with custom Department perspective data roles attached. Other incident users receive job roles which only allow viewing of incidents.
正解:B、D、F
質問 # 17
Which three risk assessment activity types are available in Financial Reporting Compliance? (Choose three.)
- A. Quantitative Analysis
- B. Certify
- C. Design Review
- D. Assess Risk
- E. Audit
- F. Qualitative Analysis
正解:B、C、E
解説:
* Design Review - This activity type is used to determine if a control or process is designed effectively and meets its guidelines.
* Certify - This activity type is for the assessment of whether the information in an assessment of an object (process, risk, control) is accurate and complete.
* Audit - The audit test activity type checks if a risk, control, or process meets audit guidelines.
References:The information is verified and compiled from the Oracle Risk Management documentation, specifically from the section on Assessment Activity Types1.
Please note that while 'Assess Risk' is a valid activity type, it is not among the three options to choose from for this specific question according to the Oracle documentation.
質問 # 18
You can relate objects in Financial Reporting Compliance. Which statement is true about editing or creating related objects in the Related Objects section on the Risk Definition page?
- A. You can relate only process objects.
- B. You can relate a new process and a new control.
- C. You can relate only control objects.
- D. You can relate only an existing control, but not a new control.
正解:B
解説:
* Select the type of Oracle Financial Reporting Compliance object you want to relate to the advanced controls you're deploying. You may select Process, Risk, or Control.
* Select 'Add Related Object'.
* In a Search dialog, supply parameter values to list a filtered set of Oracle Financial Reporting Compliance objects.
* Click 'Search' to list the objects that satisfy your search parameters.
* From the list, select any number of objects, then click 'OK'.
* As needed, select another type and add objects of that type by repeating steps 1 through 5.
This process allows you to relate new processes and controls to the Financial Reporting Compliance objects.
References:
* Overview of Oracle Financial Reporting Compliance1.
* Relate Controls to Financial Reporting Compliance Objects2.
質問 # 19
What would happen to an access incident in Advanced Access Controls (AAC) that has been remediated and has a status of "Closed," but poses a conflict again during a subsequent evaluation of controls?
- A. The incident is copied and a new incident is created based on the original incident.
- B. The incident status changes to "Assigned."
- C. The incident remains in "Closed" status and assigned users receive a notification that additional access incidents have been identified.
- D. The incident is deferred.
- E. The incident remains in "Closed" status and additional remedial action cannot be taken.
正解:A
解説:
When an access incident in Advanced Access Controls (AAC) that has been previously remediated and closed is found to pose a conflict again during a subsequent evaluation, a new incident is created based on the original incident. This ensures that the incident is tracked and managed appropriately while maintaining the record of the original incident's closure.
References:The information is based on Oracle's documentation which states that if the status of an incident is "Closed" or "Control Inactive," its state is "Closed." However, it does not explicitly detail the process for incidents that reoccur after being closed. The answer provided is inferred from the standard practices of incident management where new occurrences of previously resolved issues are tracked as new incidents1.
質問 # 20
After adding a new control in Financial Reporting Compliance, the control owner clicks Submit. Users with the Control Reviewer and Control Approver roles exist.
What is the expected outcome?
- A. The control goes into the "In Review" state.
- B. The control goes into the "New" state.
- C. The control goes into the "Approved" state.
- D. The control goes into the "Waiting for Approval" state.
正解:D
質問 # 21
You have scheduled quarterly assessments for a Control object at the beginning of the year with future dates.
However, the test plans associated with the Control object were updated before the assessment could be started. Which statement is true about this scenario?
- A. The assessment will be associated with the version of the test plans from the time of assessment initiation.
- B. The user will have the option to select the older or newer versions of the test plans during the assessment process.
- C. The updated test plans will become available during the assessment.
- D. The scheduled assessment process will end in error.
正解:A
解説:
When a Control object has scheduled assessments with future dates and the test plans associated with it are updated before the assessment starts, the assessment will be associated with the version of the test plans that were current at the time the assessment was initiated. This ensures that the assessment is conducted with the relevant procedures and criteria that were intended for that specific period.
References:The information provided is based on the Oracle Risk Management documentation, which details the use of test plans in control assessments and how they are managed within the system123. The REST API documentation for Oracle Fusion Cloud Risk Management also provides insights into how test plans can be viewed and managed, indicating the behavior of the system when updates occur2.
質問 # 22
Which three statements are true about the purpose of perspectives? (Choose three.)
- A. Perspectives can be used to represent regional hierarchies.
- B. Perspectives enable functional security in Financial Reporting Compliance.
- C. Perspectives are used to enable data security on Financial Reporting Compliance objects.
- D. Perspectives can be used to define user privileges.
- E. Perspectives can be used for categorizing Financial Reporting Compliance objects.
正解:A、C、E
解説:
* Validate New Lookup Values: Before importing data, it's crucial to ensure that any custom list of values, such as Control Frequency, has new lookup values created. This is necessary because the import process relies on these values to correctly map the imported data to the corresponding fields in the Oracle Risk Management system.
* Validate Worksheet IDs: It's important to check that there are no duplicate worksheet IDs within the same worksheet. Duplicate IDs can cause conflicts and errors during the import process, leading to data corruption or loss.
* Validate System ID Column: The System ID column must be populated correctly to maintain data integrity. This column typically contains unique identifiers for records, which are used to track and manage data throughout the import process.
References:
* For the validation of new lookup values and ensuring the correct population of the System ID column, refer to the best practices outlined in the Oracle documentation on import and export management1.
* The importance of unique worksheet IDs and their validation is discussed in the Oracle Risk Management User Guide, which provides instructions on preparing data for import2.
質問 # 23
How do you populate the Control Method field with a new custom value, such as a third-party application'?
- A. Enter the new value directly in the Control method field.
- B. Use Lookup Meaning of the new lookup value.
- C. Use Lookup Type of the new lookup value.
- D. Use Lookup Code of the new lookup value.
正解:D
解説:
To populate the Control Method field with a new custom value, such as a third-party application, you would use the Lookup Code of the new lookup value. This process involves navigating to the Lookups page in the Setup and Administration work area, where you can manage the lookup codes and their meanings. Here's a step-by-step guide:
* Open the Lookups page by selecting the Lookups tab in the Setup and Administration work area.
* Click on 'Show Filters'.
* In the Meaning field of the Filters panel, enter the value you noted.
* Click 'Search' to find the specific lookup code.
* Once you have located the lookup code, you can use it to populate the Control Method field with the new custom value1.
References:
* Oracle Help Center documentation on adding a risk field2.
* Oracle documentation on managing lookups1.
質問 # 24
You have imported risks in Financial Reporting Compliance using data migration. Your client is asking if you can add controls for these risks.
Which two statements are true? (Choose two.)
- A. You can manually add control definitions and relate them to the risks in Financial Reporting Compliance.
- B. To relate controls to risks, the risks must be in "approved" state.
- C. To relate controls, risks must be assigned to the same perspective that is assigned to the control you want to map it to.
- D. You can use the Data Migration tool to add control records for the existing risks.
- E. You cannot use the Data Migration tool to add control records to map to existing risks.
正解:A、B
解説:
* In Oracle Risk Management Cloud, risks need to be in an "approved" state before you can associate controls with them. This ensures that only vetted and acknowledged risks are managed with corresponding controls.
* While the Data Migration tool is typically used for importing data from external sources, it is not designed for mapping controls to risks. Instead, controls are usually added manually within the system.
* After controls are defined, they can be related to the approved risks manually, ensuring that each risk is paired with appropriate control measures.
質問 # 25
Which filter can be used to identify expense reports that contain suspicious expense type combinations, such as, a report for a single trip that contains taxi, car rental, and mileage expenses?
- A. Inclusive function filter grouped by the "Expense Report Information" object's "Report Number" where the "Expense Type" has an "In" condition for values that include taxi, car, mileage.
- B. Inclusive function filter grouped by the "Expense Report Information" object's "Person" where the
"Expense Type" has an "In" condition for values that include taxi, car, mileage. - C. Inclusive function filter grouped by the "Expense Report Information" object's "Person" where the
"Expense Type" has an "In" condition for values that include taxi, car, mileage. - D. Inclusive function filter grouped by the "Expense Report Information" object's "Report Number" where the "Expense Type" has an "In" condition for values that include taxi, car, mileage.
- E. Inclusive function filter grouped by the "Expense Report Information" object's "Report Number" where the "Expense Type" has an "Equals" condition for values that include taxi, car, mileage.
正解:A
解説:
* Group the expense reports by "Report Number" to ensure each report is evaluated individually.
* Apply an inclusive filter to select reports where the "Expense Type" includes any of the specified suspicious combinations.
* The "In" condition allows the filter to match any of the listed expense types within a single report.
References For specific instructions and verified procedures, please refer to the Oracle Risk Management documentation available on the Oracle website or contact Oracle support directly for assistance.
Please note that the actual implementation details and available features may vary based on the version of the Oracle Risk Management system you are using and any customizations that have been applied. It's always best to consult the official documentation or a qualified Oracle consultant for the most accurate information.
質問 # 26
Identify the four statuses and states in which you can edit an issue's description, assuming you have the necessary privileges to edit the issue. (Choose four.)
- A. Status: On Hold; State: Awaiting Approval
- B. Status: On-Hold; State: Reported
- C. Status: Open; State: Approved
- D. Status: Closed; State: Closed - Awaiting Approval
- E. Status: Open; State: In Edit
- F. Status: On Hold; State: In Review
- G. Status: Open; State: New
- H. Status: Closed; State: Final Close
正解:B、E、F、G
解説:
* Status: Open; State: In Edit - When an issue is in the 'Open' status, it indicates that the issue is active and being worked on. The 'In Edit' state signifies that the issue has been updated and saved, but the update hasn't been submitted yet.
* Status: Open; State: New - An issue with the 'New' state has been created and saved but not submitted. It is still open for editing.
* Status: On Hold; State: In Review - An issue can be put 'On Hold' if it is not currently being worked on, but it is still under review, which means it can be edited.
* Status: On-Hold; State: Reported - When an issue is reported and put on hold, it is awaiting further action but can still be edited.
References:
* Oracle documentation on the state and status of records in Financial Reporting Compliance provides detailed information on how records move from one state and status to another and how these are connected to security and user permissions1.
* The Oracle guide on creating or editing an issue outlines the process and conditions under which an issue can be edited, including the different statuses and states2.
* Additional information on incident status and state can be found in the Oracle documentation, which explains the implications of various statuses and states on the ability to edit an issue3.
質問 # 27
You have built a transaction model to identify possible duplicate charges between invoicing and expense credit cards. The model logic already includes two standard filters that identify amounts and suppliers that are the same or similar, as shown:
Which additional date filter will further refine the set of duplicate charges found?
- A. The "Expense Report Credit Card Transaction" object's "Transaction Date" attribute is not blank.
- B. The "Payables Invoice" object's "Invoice Date" attribute is greater than the "Expense Report Credit Card Transaction" object's "Transaction Date" attribute.
- C. The "Payables Invoice" object's "Invoice Date" attribute is similar to the "Expense Report Credit Card Transaction" object's "Transaction Date" attribute within +/- 10 days.
- D. The "Expense Report Credit Card Transaction" object's "Last Updated Date" attribute is greater than the "Relative Value" of 3 months.
正解:C
解説:
This filter would allow the model to compare the dates of the invoice and the credit card transaction to ensure they are within a reasonable time frame of each other, which is indicative of a duplicate charge. A similarity within +/- 10 days is a common practice to account for processing delays while still capturing potential duplicates.
References: For the most accurate and detailed explanation, please refer to the Oracle Risk Management documentation on the Oracle site, specifically the sections that discuss building transaction models and setting up filters for identifying duplicate charges.
Please note that this is a logical deduction based on the information provided and not a verified answer from the official Oracle documentation. For a verified answer, you should consult the Oracle Risk Management documents directly.
質問 # 28
Your client has asked you to define a transaction model to identify duplicate invoices based on Invoice Numbers and Invoice Amounts.
Which two standard filters can be combined to accomplish this? (Choose two.)
- A. The "Payables Invoice" object's "Invoice Amount" is equal to itself.
- B. The "Payables Invoice" object's "Invoice Number" is equal to itself.
- C. The "Payables Invoice" object's "Invoice Number" is equal to the "Payables Invoice" object's "Invoice ID."
- D. The "Payables Invoice" object's "Invoice ID" is similar to the "Payables Invoice" object's "Invoice Number".
- E. The "Payables Invoice" object's "Supplier ID" does not equal itself.
正解:A、B
解説:
To define a transaction model for identifying duplicate invoices based on Invoice Numbers and Invoice Amounts, the following standard filters can be combined:
* Invoice Amount is equal to itself: This filter will identify records where the invoice amount matches exactly in more than one invoice, suggesting a potential duplicate1.
* Invoice Number is equal to itself: This filter will select records where the invoice number is the same across different invoices, which is a direct indicator of duplication1.
By combining these two filters, the transaction model can effectively pinpoint duplicate invoices by matching both the invoice number and the amount, which are the key identifiers for such duplicates.
References:
* Oracle's documentation on interpreting transaction model results explains how filters can be used to identify duplicate records, such as invoices, by setting an attribute of a business object equal to itself1.
* The overview of transaction models provided by Oracle outlines how a combination of filters defines a complete risk, with each filter evaluating records returned by filters that precede it2.
質問 # 29
You build an access model with two entitlements. Each entitlement has four access points. The entitlements do not have any access points in common.
How many access point combinations will be analyzed?
- A. 0
- B. 1
- C. 2
- D. 3
- E. 4
正解:D
解説:
* Identify the number of access points in each entitlement.
* Since the entitlements do not share access points, each access point in one entitlement can be paired with each access point in the other entitlement.
* Multiply the number of access points in the first entitlement by the number of access points in the second entitlement to find the total number of combinations.
質問 # 30
You completed the data migration successfully. You created 100 controls, an Organization Perspective, and relationship of controls to the Organization Perspective. All controls are related to one perspective item. The Control Manager logs in to the application to view the new controls, yet there are none available for his or her review.
Identify three reasons for this. (Choose three.)
- A. The Perspective Hierarchy is not in the Approved state.
- B. The Perspective Hierarchy was not associated to the Control Object.
- C. No risks were mapped to the imported controls.
- D. There was no Control Type associated with the controls.
- E. The Control Manager was not given the correct data security policy to access the controls.
正解:A、B、E
解説:
* Data Security Policy: The Control Manager must be assigned the correct data security policy to access the controls. Without this policy, the manager will not have the necessary permissions to view the controls within the application1.
* Association of Perspective Hierarchy: The Perspective Hierarchy must be associated with the Control Object for the controls to be visible. This association ensures that the controls are correctly linked to the organizational structure within the application2.
* Approval of Perspective Hierarchy: The Perspective Hierarchy needs to be in an Approved state. If it is not approved, the controls related to it will not be displayed for review in the application1.
References:
* The Oracle documentation on viewing and editing advanced controls provides insights into the necessity of correct data security policies and the approval status of the Perspective Hierarchy1.
* The overview of Oracle Advanced Controls explains the importance of associating the Perspective Hierarchy with the Control Object2.
質問 # 31
Which two filters must be combined to identify different suppliers who use the same taxpayer ID? (Choose two.)
- A. Function filter grouping by "Taxpayer ID" where count is greater than 1.
- B. Standard filter where the "Supplier" object's "Taxpayer ID" is not blank.
- C. Standard filter where the "Supplier" object's "Supplier ID" is equal to itself.
- D. Standard filter where the "Supplier" object's "Allow Withholding Tax" is not blank.
- E. Function filter grouping by "Supplier ID" where count is greater than 1.
正解:A、B
解説:
* Use the Function filter to group suppliers by their "Taxpayer ID". This will aggregate all suppliers under each unique taxpayer ID.
* Set the count condition to greater than 1 to ensure that only taxpayer IDs used by more than one supplier are selected.
* Apply a Standard filter to exclude any suppliers where the "Taxpayer ID" field is blank, ensuring that only suppliers with a valid taxpayer ID are considered.
References:
* Oracle documentation on supplier taxpayer ID sharing provides insights into managing suppliers with the same taxpayer ID1.
* Additional Oracle resources discuss the configuration of suppliers to share the same taxpayer ID and the implications of doing so234. These documents provide the necessary steps and considerations for identifying suppliers with shared taxpayer IDs, which align with the filters mentioned in the verified answer.
質問 # 32
You are configuring security and you do not want the risks to go through the review and approve process each time they are updated. How will you meet this requirement?
- A. Use only the Risk Approver Composite duty role in the configurations so the risks will not go through the review process.
- B. Ensure that no user has been assigned a job role that includes the Risk Reviewer Composite or Risk Approver Composite Duty Role.
- C. Add the Risk Reviewer Composite duty role to the person who creates the risks so he or she would be able to review them before saving the record.
- D. Ensure that only the upper management is given the Risk Reviewer Composite duty role so they could review the risks that they want to review.
正解:B
解説:
To bypass the approval process when updating risks, you should ensure that no user is assigned a job role that includes the Risk Reviewer Composite or Risk Approver Composite Duty Role. This configuration prevents the system from initiating the review and approval process each time a risk is updated.
References:
* Bypass the Approval Chain1.
* REST API for Oracle Fusion Cloud Risk Management2.
質問 # 33
Which two steps are required to set up two levels of approval for new controls, which are added after the initial import? (Choose two.)
- A. On the Controls tab of the Import template, set the control state to NEW for each control record.
- B. Identify the other roles to be provided for control managers.
- C. Identify the organizations or business units for which users will perform review or approval.
- D. Identify users who will perform control review and approval.
正解:C、D
解説:
* Identify the organizations or business units: This involves determining the specific parts of the organization where the new controls will be applied. It is crucial to understand the scope of the controls within the organizational structure to ensure that the appropriate levels of review and approval are established.
* Identify users who will perform control review and approval: After defining the scope, the next step is to specify the individuals who will be responsible for reviewingand approving the controls. This includes assigning users to the roles that will have the authority to review and approve the controls at each required level.
References:The information provided is based on the Oracle Risk Management documentation, which outlines the processes for setting up approvals within the system123. These references detail the necessary steps and considerations for managing approvals and ensuring proper control within the Oracle Risk Management framework.
質問 # 34
You are designing data for data import. The customer decided that they want to secure controls based on their company organization.
Which three worksheets of the import template are required to accomplish this requirement? (Choose three.)
- A. Control Test Plans
- B. Perspective-Control
- C. Perspective Items
- D. Controls
正解:B、C、D
解説:
To secure controls based on the company organization using the Oracle Risk Management import template, the following worksheets are essential:
* Perspective Items: This worksheet is used to define values for all perspectives. Each value must have a type code that matches the type code for the perspective it belongs to, which is set in the Perspective worksheet1.
* Controls: The Controls worksheet supplies data that defines the controls themselves. This is crucial for establishing the specific controls that will be secured1.
* Perspective-Control: This worksheet defines how perspective values relate to controls. It is necessary to associate specific controls with the relevant organizational perspectives1.
References:The information is based on the Oracle Risk Management documentation, which details the use of the Data Migration template and its worksheets for importing various types of data, including object data, transaction data, and association data1.
質問 # 35
......
問題集全額返金保証付き!1z0-1058-23問題公式問題集:https://jp.fast2test.com/1z0-1058-23-premium-file.html