Free Access ISACA.CGEIT.v2022-03-18.q328 Practice Test (Page 64)

Question 311

Which of the following components of COSO ERM framework encompasses the nature of an enterprise, and sets the basis for how risk is viewed and addressed by an organization people, including risk management philosophy and risk appetite, integrity and ethical values, and the environment in which it operates?

A.Risk assessment

B.Risk response

C.Internal environment

D.Control activity

Question 312

Which of the following is the MOST effective way to manage risks within the enterprise?

A.Make staff aware of the risks in their area and risk management techniques.

B.Document procedures and reporting processes.

C.Provide financial resources for risk management systems.

D.Assign individuals responsibilities and accountabilities for management of risks.

Question 313

An IT department outsourced application support and negotiated service level agreements (SLAs) directly with the vendor Although the vendor met the SLAs business owner expectations are not met and senior management cancels the contract This situation can be avoided in the future by:

A.implementing a vendor performance scorecard

B.improving the business requirements gathering process

C.assigning responsibility for vendor management

D.improving the negotiation process for service level agreements (SLAs)

Question 314

An enterprise's internal audit group has scheduled a control review of a payroll system project but has been told to wait until the system is implemented. Which of the following is the GREATEST risk associated with the delay?

A.Increased cost to mitigate deficiencies

B.delay in the development of new key performance indicators (KPIs)

C.Continued dependency on compliant legacy systems

D.Lack of adherence to industry best practices

Question 315

Which of the following would a CIO use to present the overall view of IT performance to the board of directors?

A.Maturity model

B.Key performance indicators (KPIs)

C.Balanced scorecard

D.Key risk indicators (KRIS)

Other Version: 1675ISACA.CGEIT.v2025-07-02.q382; 982ISACA.CGEIT.v2024-06-24.q467; 4476ISACA.CGEIT.v2022-08-29.q308; 119ISACA.Prepawaypdf.CGEIT.v2021-09-28.by.pandora.177q.pdf

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 156PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 146Salesforce.Data-Architect.v2025-09-05.q216; 139Adobe.AD0-E605.v2025-09-05.q50

Question 311

Question 312

Question 313

Question 314

Question 315

Download PDF File