Free Access ISACA.CGEIT.v2022-08-29.q308 Practice Test (Page 31)

Question 146

You are the project manager of a computer upgrade project. You and the vendor are in dispute over the deliverables the vendor was to provide and configure. What document can best describe how you and the vendor are to proceed if there is a claim against the vendor?

A.Project cost management plan

B.Enterprise environmental factors

C.Procurement management plan

D.Contract

Question 147

An enterprise wishes to establish key risk indicators (KRIs) in an effort to better manage IT risk. Which of the following should be identified FIRST?

A.The enterprise risk appetite

B.Key performance metrics

C.Risk mitigation strategies

D.Enterprise architecture (EA) components

Question 148

Which of the following components of the COSO ERM identifies the required information, captures it, and communicates it in a form and time frame that enable people to carry out their responsibilities?

A.Information and communication

B.Internal environment

C.Monitoring

D.Objectives setting

Question 149

An IT strategy committee has reviewed an audit report indicating sales employees are using personal smartphones to conduct corporate business. Although the committee appreciates the business benefits, it is also concerned with the security risk. To deliver the business benefit, what should be the committee's FIRST recommendation?

A.Improve training courses on securing corporate information.

B.Update the corporate security policy to include personal devices.

C.Perform a risk assessment on personal device data protection.

D.Document procedures for securing personal devices.

Question 150

A CIO determines IT investment management processes are not fully realizing the benefits identified in business cases. Which of the following would be the BEST way to prevent this issue?

A.Establish a requirement for CIO review and approval of each business case.

B.Evaluate the delegation of investment approval authorities.

C.Perform stage-gate reviews throughout the life cycle of each project.

D.Document lessons learned throughout the investment life cycle.

Other Version: 1680ISACA.CGEIT.v2025-07-02.q382; 982ISACA.CGEIT.v2024-06-24.q467; 6138ISACA.CGEIT.v2022-03-18.q328; 119ISACA.Prepawaypdf.CGEIT.v2021-09-28.by.pandora.177q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 224CFAInstitute.ESG-Investing.v2025-09-08.q173; 175PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 147Adobe.AD0-E605.v2025-09-05.q50

Question 146

Question 147

Question 148

Question 149

Question 150

Download PDF File