Free Access ISACA.CGEIT.v2022-08-29.q308 Practice Test (Page 55)

Question 266

An enterprise has a zero-tolerance policy regarding security. This policy is causing a large number of email attachments to be blocked and is a disruption to the enterprise. Which of the following should be the FIRST governance step to address this email issue?

A.Obtain senior management input based on identified risk.

B.Direct the development of an email usage policy.

C.Recommend business sign-off on the zero-tolerance policy.

D.Introduce an exception process.

Question 267

Gary is the project manager for his organization. He is working with the project stakeholders on the project requirements and how risks may affect their project. One of the stakeholders is confused about what constitutes risks in the project. Which of the following is the most accurate definition of a project risk?

A.It is an unknown event that can affect the project scope.

B.It is an uncertain event that can affect at least one project objective.

C.It is an uncertain event that can affect the project costs.

D.It is an uncertain event or condition within the project execution.

Question 268

Ned is the project manager of the HNN project for your company. Ned has asked you to help him complete some probability distributions for his project. What portion of the project will you most likely use for probability distributions?

A.Risk identification

B.Uncertainty in values such as duration of schedule activities

C.Bias towards risk in new resources

D.Risk probability and impact matrixes

Question 269

Event Management, Problem Management, Access Management, and Request Fulfillment are part of which of the following stages of the Service Lifecycle?

A.Service Operation

B.Continual Service Improvement

C.Service Transition

D.Service Strategy

Question 270

The CIO of a financial services company is tasked with ensuring IT processes are in compliance with recently instituted regulatory changes. The FIRST course of action should be to:

A.perform a current state assessment.

B.identify the penalties for noncompliance.

C.create an IT balanced scorecard.

D.align IT project portfolio with regulatory requirements.

Other Version: 1672ISACA.CGEIT.v2025-07-02.q382; 982ISACA.CGEIT.v2024-06-24.q467; 6097ISACA.CGEIT.v2022-03-18.q328; 119ISACA.Prepawaypdf.CGEIT.v2021-09-28.by.pandora.177q.pdf

Latest Upload: 107Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 156TheSecOpsGroup.CNSP.v2025-09-08.q20; 207CFAInstitute.ESG-Investing.v2025-09-08.q173; 154PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 144Salesforce.Data-Architect.v2025-09-05.q216; 136Adobe.AD0-E605.v2025-09-05.q50; 177Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 266

Question 267

Question 268

Question 269

Question 270

Download PDF File