Who is responsible for the oversight of structures and mechanisms that drive enterprise governance of information and technology (EGIT)?
Answer(s): C
The board is responsible for the oversight of structures and mechanisms that drive enterprise governance of information and technology (EGIT). According to the ISACA Journal article, "the board is ultimately accountable for EGIT and should oversee its establishment and monitor its effectiveness" . The board should also ensure that EGIT aligns with the enterprise governance framework and supports the achievement of enterprise objectives.
COBIT defines stakeholder value creation as which of the following?
Answer(s): B
COBIT defines stakeholder value creation as the realization of benefits at an optimal resource cost while optimizing risk. This is based on the principle of balance, which states that "governance of enterprise I&T should ensure that stakeholder needs, conditions and options are evaluated to determine balanced, agreed-on enterprise objectives to be achieved; setting direction through prioritization and decision making; and monitoring performance and compliance against agreed-on direction and objectives" . Value creation is not only about reducing costs or mitigating risks, but also about optimizing them in relation to the expected benefits.
The value that I&T delivers should be:
Answer(s): A
The value that I&T delivers should be aligned directly with the values on which the business is focused. This is based on the principle of alignment, which states that "governance of enterprise I&T should ensure that I&T-enabled investments are aligned with the enterprise strategy and deliver the expected benefits" . Value delivery is not only about maintaining or increasing value from existing I&T investments, but also about ensuring that new investments support the strategic objectives and stakeholder needs of the enterprise.
COBIT addresses governance issues by doing which of the following?
COBIT addresses governance issues by grouping relevant governance components into objectives that can be managed to a required capability level. This is based on the principle of performance, which states that "governance of enterprise I&T should ensure that I&T performance is measured using relevant metrics; transparently communicated to stakeholders; evaluated against targets; and leads to appropriate management actions" . COBIT does not provide a full description of the entire IT environment or define specific governance strategies and processes, but rather provides a generic and flexible framework that can be adapted to different contexts and situations.
Which of the following is a guiding principle in the development of COBIT?
A guiding principle in the development of COBIT is that COBIT aligns with other related and relevant I&T standards, frameworks and regulations. This is based on the principle of integration, which states that "governance of enterprise I&T should ensure integration into enterprise governance; alignment with other related standards, frameworks and regulations; and provision of a common language for all stakeholders" . COBIT does not include or replace other standards, frameworks or regulations, but rather complements them by providing a holistic and comprehensive approach to governance of enterprise I&T.
Share your comments for ISACA COBIT 2019 exam with other users:
content is good
latest dumps please
aside from pdf the test engine software is helpful. the interface is user-friendly and intuitive, making it easy to navigate and find the questions.
questions and options are correct, but the answers are wrong sometimes. so please check twice or refer some other platform for the right answer
90% of questions was there but i failed the exam, i marked the answers as per the guide but looks like they are not accurate , if not i would have passed the exam given that i saw about 45 of 50 questions from dump
answer to this question "what administrative safeguards should be implemented to protect the collected data while in use by manasa and her product management team? " it should be (c) for the following reasons: this administrative safeguard involves controlling access to collected data by ensuring that only individuals who need the data for their job responsibilities have access to it. this helps minimize the risk of unauthorized access and potential misuse of sensitive information. while other options such as (a) documenting data flows and (b) conducting a privacy impact assessment (pia) are important steps in data protection, implementing a "need to know" access policy directly addresses the issue of protecting data while in use by limiting access to those who require it for legitimate purposes. (d) is not directly related to safeguarding data during use; it focuses on data transfers and location.
password lockout being the correct answer for question 37 does not make sense. it should be geofencing.
for question 4, the righr answer is :recover automatically from failures
question number 4s answer is 3, option c. i
very good questions
i am confused about the answers to the questions. are the answers correct?
very usefull
need certification.
great exam prep
i require dump
good morning, could you please upload this exam again,
hi can you please upload the dumps for sap contingent module. thanks
good questions
looking forward to the real exam
good ones for exam preparation
this is a good experience
hi everyone
waiting for the dump. please upload.
upload cks exam questions
awesome training material
where is dump
q. 289 - the correct answer should be b not d, since the question asks for the most secure way to provide access to a s3 bucket (a single one), and by principle of the least privilege you should not be giving access to all buckets.
please i need if possible h12-831,
good collection of questions and solution for pl500 certification
i would like to appear the exam.
i am very happy as i cleared my comptia a+ 220-1101 exam. i studied from as it has all exam dumps and mock tests available. i got 91% on the test.
need this dump
its really good to eventuate knowledge before appearing for the actual exam.
this is great