Get Ready to Pass the COBIT-2019 exam with ISACA Latest Practice Exam [Q103-Q125]

Share

Get Ready to Pass the COBIT-2019 exam with ISACA Latest Practice Exam

Get Prepared for Your COBIT-2019 Exam With Actual ISACA Study Guide!

NEW QUESTION # 103
Which of the following is a PRIMARY benefit associated with the management objective "managed strategy"?

  • A. Effective communication channels are established across all levels of management.
  • B. Desired value is delivered through a roadmap of incremental changes.
  • C. Service delivery is facilitated by adopting the latest technology innovations.

Answer: B


NEW QUESTION # 104
Which of the following COBIT 2019 publications includes a workflow for planning a tailored governance system for the enterprise?

  • A. COBIT 2019 Implementation Guide: Implementing and Optimizing an Information and Technology Governance Solution
  • B. COBIT 2019 Framework: Governance and Management Objectives
  • C. COBIT 2019 Design Guide: Designing an Information and Technology Governance Solution

Answer: C

Explanation:
Explanation
The COBIT 2019 publication that includes a workflow for planning a tailored governance system for the enterprise is COBIT 2019 Design Guide: Designing an Information and Technology Governance Solution.
This publication provides guidance on how to design a customized governance system for information and technology using COBIT as a reference framework. It includes a workflow for planning a tailored governance system for the enterprise that consists of seven steps: define design factors; define focus areas; define current state; define target state; identify gaps; define roadmap; select implementation method.14 References: COBIT
2019 Framework: Introduction and Methodology, COBIT 2019 Design Guide: Designing an Information and Technology Governance Solution


NEW QUESTION # 105
An enterprise is designing a specific governance system that is using diverse technology deployments with multiple domains of business operations. Which of the following is the expected deliverable when tailoring the COBIT 2019 framework?

  • A. Enterprise goals
  • B. Focus area guidance
  • C. Capability levels
  • D. Aligned goals

Answer: B

Explanation:
Explanation
The focus areas are specific governance topics that are relevant for an enterprise based on its context, needs, and objectives. The focus areas provide guidance on how to apply the COBIT 2019 framework to address specific issues or challenges related to information and technology governance. The focus areas also help to tailor the COBIT 2019 framework to suit the enterprise's specific governance system design. Therefore, when an enterprise is designing a specific governance system that is using diverse technology deployments with multiple domains of business operations, the expected deliverable when tailoring the COBIT 2019 framework is the focus area guidance. The focus area guidance will help the enterprise to select and prioritize the relevant focus areas that match its governance needs and objectives, and to customize the COBIT 2019 components such as principles, enablers, goals, processes, practices, etc., according to the focus area requirements12 References: 1: COBIT 2019 Design Guide, page 51-52 2: COBIT 2019 Framework: Introduction and Methodology, page 27-28


NEW QUESTION # 106
Which of the following is an enterprise goal according to COBIT?

  • A. IT compliance with internal policies
  • B. Business service continuity and availability
  • C. Managed IT-related risks

Answer: B

Explanation:
Explanation
Business service continuity and availability is one of the 17 enterprise goals defined in COBIT 2019, which describe the outcomes that an enterprise wants to achieve from its use of information and technology. This goal relates to ensuring that critical business processes and information are available at a level acceptable to the enterprise in the event of a disruption or disaster, and that recovery plans are in place to restore normal operations as soon as possible. The goal is based on the COBIT 2019 Framework3, page 36. References: 3:
COBIT 2019 Framework | Digital | English


NEW QUESTION # 107
An enterprise plans to outsource all of its noncore IT operations but wants to ensure the proper level of governance, risk and compliance (GRC) controls. Which of the following governance and management objectives would provide the MOST relevant management practices for the enterprise?

  • A. APO10 Managed Vendors
  • B. AP013 Managed Security
  • C. AP012 Managed Risk
  • D. APO09 Managed Service Agreements

Answer: D

Explanation:
Explanation
The management objective APO09 Managed Service Agreements involves ensuring that IT services are delivered in accordance with agreed-upon service levels and costs. This management objective covers the activities of defining, negotiating, establishing, monitoring, reporting, and reviewing service agreements between service providers and service consumers. This management objective is most relevant for an enterprise that plans to outsource all of its noncore IT operations but wants to ensure the proper level of governance, risk and compliance (GRC) controls. By applying this management objective, the enterprise can improve its service governance and management capabilities, ensure alignment of IT services with business strategy and objectives, enhance service performance and outcomes, and increase service consumer satisfaction and value realization. This management objective also involves ensuring that the outsourced IT services comply with the applicable laws, regulations, standards, guidelines, contracts, or agreements that govern the information and technology activities of the enterprise, as well as with the enterprise's policies, procedures, processes, practices, etc. This management objective also involves managing the risks associated with outsourcing IT services such as loss of control, vendor lock-in, quality issues, security breaches, etc.References: : COBIT 2019 Process Reference Guide: Governance and Management Objectives: page
63-65 : COBIT 2019 Implementation Guide: page 49-50


NEW QUESTION # 108
The value that I&T delivers should be:

  • A. aligned directly with the values on which the business is focused.
  • B. focused exclusively on I&T investments that generate financial benefits.
  • C. restricted to maintaining and increasing value derived from existing I&T investments.

Answer: A

Explanation:
Explanation
The value that I&T delivers should be aligned directly with the values on which the business is focused. This is based on the principle of alignment, which states that "governance of enterprise I&T should ensure that I&T-enabled investments are aligned with the enterprise strategy and deliver the expected benefits" . Value delivery is not only about maintaining or increasing value from existing I&T investments, but also about ensuring that new investments support the strategic objectives and stakeholder needs of the enterprise.


NEW QUESTION # 109
What is the PRIMARY role of business leadership when defining the future state in a business case?

  • A. Verify the as-is assessment results.
  • B. Determine capabilities required from IT.
  • C. Assess proposed solutions against goals.
  • D. Review compliance with legal issues.

Answer: C

Explanation:
The primary role of business leadership when defining the future state in a business case is to determine the capabilities required from IT. This is accomplished by assessing the proposed solutions against the goals of the organization, reviewing compliance with legal issues, and verifying the as-is assessment results. This is outlined in the COBIT 2019 Framework, which provides guidance on enterprise governance of information and technology (EGIT). This includes determining the IT capabilities needed to meet the organization's objectives and assessing the proposed solutions against those needs [1]. Additionally, the framework provides guidance on how to review compliance with legal issues and verify the as-is assessment results.
According to ISACA COBIT 2019, the primary role of business leadership in defining the future state of a business case is to assess the proposed solutions against the defined goals and ensure alignment with the overall business strategy. This involves evaluating the feasibility and viability of the proposed solutions and ensuring that they support the achievement of the organization's objectives. Business leaders are responsible for ensuring that the solutions proposed are in line with the organization's strategy, mission, and vision, and that they are adequately supported by the necessary resources.


NEW QUESTION # 110
The Goals Cascade model illustrates that each governance or management objective supports the achievement of alignment goals that are related to:

  • A. IT-specific goals.
  • B. individual business unit goals.
  • C. larger enterprise goals.

Answer: C

Explanation:
Explanation
The Goals Cascade model illustrates how enterprise goals cascade to alignment goals and then to governance and management objectives. Each governance or management objective supports the achievement of one or more alignment goals that are related to larger enterprise goals. The alignment goals are derived from the balanced scorecard (BSC) dimensions of financial, customer, internal, and learning and growth1, p. 16.
References: 1: COBIT 2019 Framework: Governance and Management Objectives


NEW QUESTION # 111
Which of the following is an element of governance?

  • A. Monitoring activities designed to achieve enterprise objectives
  • B. Evaluating stakeholder needs to determine enterprise objectives
  • C. Building plans to align with the direction set by the governance body

Answer: C

Explanation:
Element 1: Set a clear purpose and stay focused on it.


NEW QUESTION # 112
Which of the following is a KEY change enablement task that must be completed during the driver identification phase of an IT initiative?

  • A. Establish urgency for the changes needed.
  • B. Identify the business and governance drivers.
  • C. Define high-level improvement targets.
  • D. Assign high-level roles and responsibilities.

Answer: B

Explanation:
According to ISACA COBIT 2019, the key change enablement task that must be completed during the driver identification phase of an IT initiative is to "Identify the business and governance drivers." This task is important because it helps to determine the motivations and reasons for change, which can then be used to inform the development of the initiative and ensure that it is aligned with the needs and goals of the enterprise. This information can also help to prioritize and scope the initiative and to develop a business case for the changes needed.


NEW QUESTION # 113
Which of the following is a guiding principle in the development of COBIT?

  • A. COBIT aligns with other related and relevant I&T standards, frameworks and regulations
  • B. COBIT includes relevant content from other related I&T standards, frameworks and regulations.
  • C. COBIT serves as a comprehensive standalone framework that covers all relevant I&T-related activities.

Answer: A

Explanation:
Explanation
A guiding principle in the development of COBIT is that COBIT aligns with other related and relevant I&T standards, frameworks and regulations. This is based on the principle of integration, which states that
"governance of enterprise I&T should ensure integration into enterprise governance; alignment with other related standards, frameworks and regulations; and provision of a common language for all stakeholders" .
COBIT does not include or replace other standards, frameworks or regulations, but rather complements them by providing a holistic and comprehensive approach to governance of enterprise I&T.


NEW QUESTION # 114
Which of the following should be scheduled for completion FIRST when prioritizing improvement initiatives?

  • A. Initiatives that are the least expensive in order to lower risk due to failure
  • B. Initiatives that are easiest to achieve and will garner business benefits
  • C. Initiatives with the lowest cost regardless of expected business value

Answer: B


NEW QUESTION # 115
Which of the following performance measures is used to assess a specific focus area?

  • A. Process capability rating
  • B. Maturity level
  • C. Key goal indicator

Answer: B

Explanation:
Explanation
According to the COBIT 2019 Framework: Introduction and Methodology, a maturity level is a performance measure that is used to assess a specific focus area. A focus area is a topic that is relevant for governance and management of enterprise information and technology (I&T), such as cybersecurity, privacy or digital transformation. A maturity level indicates the extent to which a focus area is implemented and integrated in the enterprise's governance system. There are six maturity levels defined in COBIT 2019, ranging from 0 (incomplete) to 5 (optimized).3, p. 77-78 3: COBIT 2019 Framework: Introduction and Methodology


NEW QUESTION # 116
The level achieved when all processes of a focus area achieve a particular capability level is referred to as:

  • A. the maturity level.
  • B. the performance level.
  • C. the rating level.

Answer: A


NEW QUESTION # 117
Which COBIT domain of management objectives incorporates managed risk?

  • A. Align, plan and organize (APO)
  • B. Deliver, service and support (DSS)
  • C. Build, acquire and implement (BAI)

Answer: A

Explanation:
Explanation/Reference: https://graser.co.at/en/cobit-5-understand-the-framework/


NEW QUESTION # 118
Which of the following is based on generic components of a governance system but are tailored for a specific purpose or context within a focus area?

  • A. Design factors
  • B. Guiding principles
  • C. Variant components

Answer: C

Explanation:
These components (of a governance system) can be either generic or "variants of generic." Generic components are described in the COBIT Core Model and apply in principle to any situation (although they "generally need customization before being practically implemented.") Whereas variants are based on the generic components but tailored for a specific purpose or context within a focus area.


NEW QUESTION # 119
A consultant tasked with facilitating an enterprise's COBIT implementation has met with the CEO and identified enterprise goals based on mission and vision. Which of the following roles is BEST suited to meet with the consultant to identify alignment goals?

  • A. Chief risk officer
  • B. Chief financial officer
  • C. Chief information officer

Answer: C

Explanation:
Explanation
The chief information officer (CIO) is the best suited role to meet with the consultant to identify alignment goals. The CIO is the senior executive responsible for leading, directing, and managing the information and technology function of the enterprise. The CIO has a strategic role in aligning I&T with business requirements, ensuring I&T performance, managing I&T risks, fostering innovation, etc. The CIO has a deep understanding of both business and I&T domains, as well as their interdependencies. The CIO can collaborate with the consultant to identify alignment goals that reflect how I&T can support the enterprise goals.1 References:
COBIT 2019 Framework: Introduction and Methodology, [COBIT 2019 Framework: Roles, Responsibilities
& RACI Charts]


NEW QUESTION # 120
Which of the following management objectives would be given HIGHER priority in an enterprise's governance system when the enterprise is very risk-averse?

  • A. Managed operations
  • B. Managed portfolio
  • C. Managed security

Answer: B


NEW QUESTION # 121
Which of the following functions would be responsible for executing a contract that retains independent legal consultants to review the level of regulatory compliance of a proposed IT solution?

  • A. Legal office
  • B. l&T security
  • C. Procurement office
  • D. Executive leadership team

Answer: A

Explanation:
According to the ISACA COBIT 2019 Framework, the Legal office is responsible for executing contracts that retain independent legal consultants to review the level of regulatory compliance of a proposed IT solution. This is specified in Domain 1, Objective 1.2: "Ensure external legal, regulatory and contractual compliance". The Legal office is responsible for ensuring compliance with applicable laws and regulations, as well as for managing risk associated with any non-compliance.


NEW QUESTION # 122
What is the PRIMARY benefit of conducting a high-level risk analysis during governance design?

  • A. Communicating IT and business risk scenarios
  • B. Prioritizing governance and management objectives
  • C. Establishing a risk response strategy
  • D. Identifying enterprise key risk indicators (KRl)

Answer: B

Explanation:
Explanation
The high-level risk analysis is a process that involves identifying, assessing, and prioritizing the information and technology risks that an enterprise faces in relation to its governance system design. The high-level risk analysis helps to determine the level of risk appetite and tolerance that an enterprise has for its information and technology activities, as well as the level of control and assurance that is required for its governance framework. The primary benefit of conducting a high-level risk analysis during governance design is to prioritize governance and management objectives. The governance and management objectives are the statements of what an enterprise wants to achieve in terms of its information and technology governance. The governance and management objectives are derived from the enterprise goals, which are the high-level statements of what an enterprise wants to achieve in terms of its mission, vision, values, and strategy. By conducting a high-level risk analysis, an enterprise can identify the areas of risk that have the most impact on its enterprise goals, and therefore prioritize the governance and management objectives that address those risks. This will also help to align the governance framework with the enterprise's strategy and objectives12 References: 1: COBIT 2019 Design Guide: page 41-43 2: COBIT 2019 Framework: Introduction and Methodology: page 25-26


NEW QUESTION # 123
Within the principles for a governance system, the value generated from the use of I&T reflects:

  • A. maximized financial benefits to the investment portfolio.
  • B. the ratio of costs versus achieved service levels.
  • C. a balance among benefits, risk and resources.

Answer: C

Explanation:
The governance system should also to generate value from the use of I&T. To create value, the enterprise must balance benefits, risk, and resources.


NEW QUESTION # 124
The enterprise goal of compliance with external laws and regulations is aligned to which balanced scorecard (BSC) dimension?

  • A. Internal
  • B. Financial
  • C. Growth

Answer: B

Explanation:
Balanced Scorecard or BSC (read as B-S-C) dimensions. The BSC dimensions are: Financial


NEW QUESTION # 125
......

Pass Your Next COBIT-2019 Certification Exam Easily & Hassle Free: https://www.pass4surecert.com/ISACA/COBIT-2019-practice-exam-dumps.html

Free ISACA COBIT-2019 Exam Question Practice Exams: https://drive.google.com/open?id=1FLGRrGPJRXkKq8hk4WP43dsUGQNhgwtP