A.  

executing the program plan.

B.  

measuring realized program benefits.

C.  

reviewing the effectiveness of the program.

D.  

assigning key tasks to defined roles.

A.  

a group of related processes.

B.  

a single related component.

C.  

a single process.

A.  

Resolving inherent priority conflicts

B.  

Determining a sourcing model

C.  

Selecting an implementation method

A.  

It should focus on all technology and information processing, regardless of where processing takes place.

B.  

It should focus only on technology and information processing that takes place within the IT function.

C.  

It should focus only on technology and information processing that takes place in cost centers

A.  

Learning and Growth

B.  

Customer

C.  

Internal

A.  

Support for the portfolio management role with an investment office

B.  

Important influence of culture and behavior component for innovation

C.  

Skills and competencies

D.  

Services, infrastructure, and applications component

A.  

Adapt the COBIT roles and organizational structures.

B.  

Revise the organizational hierarchy with job descriptions.

C.  

Add two levels of involvement for consulted and informed.

A.  

Realization of benefits at a controlled resource cost while controlling risk

B.  

Realization of benefits at an optimal resource cost while optimizing risk

C.  

Realization of benefits at a reduced resource cost while mitigating risk

A.  

Managed strategy and operations

B.  

Documented work products and policies

C.  

Understanding of the business by IT professionals

A.  

The risk register of the enterprise

B.  

The compliance regulations applicable to the enterprise

C.  

The role of IT for the enterprise

D.  

The geopolitical landscape in which the enterprise operates

A.  

It provides a means for calculating the cost/benefit associated with prioritized governance and management objectives.

B.  

It indicates the relevance of a governance or management objective with a particular design factor.

C.  

It indicates the degree of alignment of each governance and management objective with enterprise strategy.

D.  

It provides a high level view of the importance of governance and management objectives for presentation purposes.

A.  

IT process documentation

B.  

Business case outline

C.  

Enterprise policies

D.  

Stakeholder map

A.  

Policies and standards used within the enterprise

B.  

Relevant inputs and outputs with source and destination

C.  

Process activities with detailed procedures

A.  

Separating business and IT-related activities during implementation

B.  

Including improvement initiatives in implementation

C.  

Treating implementation as a program

A.  

Select a mix of equally important strategy archetypes.

B.  

Select one primary strategy archetype and only one secondary strategy archetype.

C.  

Select all the strategy archetypes that are applicable to the enterprise.

D.  

Select the strategy archetype most closely aligned to the enterprise's information and technology risk profile.

A.  

Compliance and assurance capabilities

B.  

Impact and probability levels

C.  

Information flows including security policy

D.  

Information security focus areas

A.  

Sans Security Policy Framework

B.  

Cyber Security Framework

C.  

Skills Framework for the Information Age

A.  

When denning potential implementation problems and opportunities

B.  

When executing the EGIT implementation program plan

C.  

When developing the EGIT implementation program plan

D.  

When defining the EGIT Implementation Road map

A.  

Optimization of internal business process functionality

B.  

Portfolio of competitive products and services

C.  

Managed digital transformation programs

A.  

Chief risk officer

B.  

Chief information officer

C.  

Chief financial officer

A.  

AP012 Managed Risk

B.  

APO10 Managed Vendors

C.  

AP013 Managed Security

D.  

APO09 Managed Service Agreements

A.  

Individual business units

B.  

External regulators

C.  

The board

A.  

the regulatory compliance function.

B.  

the entire enterprise.

C.  

the IT function.

A.  

Risk appetite and tolerance

B.  

Capability levels

C.  

Threat landscape

D.  

IT deployment

A.  

Identification of single points of failure

B.  

Allocation of budgets for business continuity

C.  

Future prediction of l&T resource requirements

A.  

Design factor

B.  

Focus area

C.  

Enablers

A.  

The size of the enterprise

B.  

National or international locations

C.  

Cloud versus on-premises services

A.  

To document I&T business objectives and processes

B.  

To deliver stakeholder value from I&T-enabled investments

C.  

To comply with I&T regulatory requirements

A.  

Focus area guidance

B.  

Capability levels

C.  

Enterprise goals

D.  

Aligned goals

A.  

To lower service delivery costs

B.  

To identify newly emerging risks

C.  

To assess improvement opportunities

A.  

Optimize available IT capabilities to support the IT strategy and roadmap.

B.  

Achieve competitive advantage, improve customer experience and improve operational effectiveness.

C.  

Support the digital transformation strategy of the organization and deliver the desired value.

A.  

Growth

B.  

Customer

C.  

Internal

A.  

Include a scope statement in the business case.

B.  

Add key performance indicators (KPIs) to a balanced scorecard.

C.  

Generate an IT governance policy.

A.  

the enterprise's risk profile.

B.  

the enterprise's strategy.

C.  

current IT-related issues.

A.  

executing the EGII implementation program plan.

B.  

reviewing the effectiveness of EGIT implementation plan results.

C.  

defining the EGIT implementation road map

D.  

developing the EGIT implementation program plan.

A.  

aligned directly with the values on which the business is focused.

B.  

focused exclusively on I&T investments that generate financial benefits.

C.  

restricted to maintaining and increasing value derived from existing I&T investments.

A.  

Satisfaction levels of board and executive management with business process capabilities

B.  

Ratio of significant incidents that were not identified in risk assessments vs. total incidents

C.  

Number of business processing hours lost due to unplanned service interruptions

A.  

Culture, ethics and behavior

B.  

People, skills and competencies

C.  

Information flow and items

A.  

Customize COBIT guidance to meet industry best practices.

B.  

Customize COBIT guidance to meet specific enterprise needs.

C.  

Ensure COBIT guidance is strictly followed without alterations.

A.  

Maintaining integrity and consistency

B.  

Aligning with internal IT policies and procedures

C.  

Identifying related industry standards

A.  

It should be based on a conceptual model.

B.  

It should be independent of other standards, frameworks and regulations.

C.  

It should be self-contained and not allow for the addition of new content.

A.  

individual business unit goals.

B.  

IT-specific goals.

C.  

larger enterprise goals.

A.  

Continuous improvement

B.  

Change enablement

C.  

Risk management

D.  

Program management

A.  

Process metrics

B.  

Process practices

C.  

Process purpose

D.  

Process activities

A.  

IT management

B.  

Business management

C.  

Human resources

D.  

Board and executives

A.  

Enterprise goals

B.  

Enterprise strategy

C.  

Threat landscape

D.  

Geopolitical situation

A.  

Maturity level

B.  

Key goal indicator

C.  

Process capability rating

A.  

Obtaining executive management support for IT governance

B.  

Identifying further governance requirements

C.  

Evaluating business performance reports

A.  

Managed I&T management framework

B.  

Managed availability and capacity

C.  

Managed service agreements

A.  

the enterprise’s actionable strategy.

B.  

business unit performance metrics.

C.  

the enterprise’s governance framework.

A.  

Measuring objectives

B.  

Initiating improvements

C.  

Updating the program

A.  

Completion of EGIT project implementation regardless of the amount of time required

B.  

Transition of EGIT projects into the enterprise's normal development life cycle

C.  

Development of a record of unapproved EGIT projects

D.  

Mitigation of all risks associated with the implementation of EGIT projects

A.  

People, skills and competencies

B.  

Assignment of responsibility and accountability roles

C.  

Process practices that include inputs and outputs

A.  

the project management office.

B.  

the executive management team.

C.  

the board of directors.

A.  

Desired value is delivered through a roadmap of incremental changes.

B.  

Effective communication channels are established across all levels of management.

C.  

Service delivery is facilitated by adopting the latest technology innovations.

A.  

Customer

B.  

Financial

C.  

Internal

A.  

Chief information officer

B.  

Executive committee

C.  

Chief executive officer