COBiT 2019 Assessment B Flashcards by Gary Klimeck

Growth, innovation, cost leadership and stability are examples of which design factors?

A. Enterprise goals

B. Technology adoption strategy

C. Risk profile

D. Enterprise strategy

D. Enterprise strategy

How well did you know this?

Not at all

Perfectly

Complete the sentence :

The ? organizes Governance and Management Objectives into five domains.

A. Governance framework

B. COBIT Core Model

C. Governance system

D. Maturity model

B. COBIT Core Model

How well did you know this?

Not at all

Perfectly

In what sequence would the following occur in the COBIT Core Model?

Build
Support
Plan
Direct

A. 1,3,2,4

B. 4,3,2,1

C. 1,2,3,4

D. 4,3,1,2

D. 4,3,1,2

How well did you know this?

Not at all

Perfectly

Which of the following is a substep of the “Determine the initial scope of the governance system” phase in the governance system design process?

A. Understand enterprise strategy

B. Consider enterprise goals and apply the COBIT goals cascade

C. Consider the threat landscape.

D. Resolve inherent priority conflicts.

B. Consider enterprise goals and apply the COBIT goals cascade

How well did you know this?

Not at all

Perfectly

Which process capability scheme does COBIT® 2019 support?

A. ISO/IEC 15504

B. CMMI

C. None

D. ISO/IEC 33000

B. CMMI

How well did you know this?

Not at all

Perfectly

Identify the missing words in the following sentence.
Managed IT Changes is considered a management objective of the [?] domain.

A. Evaluate, Direct and Monitor (EDM)

B. Build, Acquire and Implement (BAI)

C. Align, Plan and Organize (APO)

D. Monitor, Evaluate and Assess (MEA)

B. Build, Acquire and Implement (BAI)

How well did you know this?

Not at all

Perfectly

*Which of the following are main criteria for information quality?**
1. Intrinsic
2. Contextual
3. Integrity
4. Security

A. 1,2,4

B. 1,3,4

C. 2,3,4

D. 1,2,3

A. 1,2,4

How well did you know this?

Not at all

Perfectly

Which of the following is NOT a component of the governance system?

A. Processes

B. Information

C. Risk profile

D. Organizational structures

C. Risk profile

How well did you know this?

Not at all

Perfectly

Which of the following is true about COBIT Performance Management CPM?

A. Process activities are associated to capability levels

B. Other governance and management component types (e.g., organizational structures, information) may also have capability levels defined for them

C. Maturity levels are associated with focus areas

D. All the above

A. 1,2,4

How well did you know this?

Not at all

Perfectly

An enterprise that is very risk averse will give more priority to management objectives that aspire to govern and manage risk and security. Which of the following objectives are more suitable?
EDM03 : Ensured risk optimization
APO12 : Managed risk,
APO13 : Managed security
APO11 : Managed Quality
DSS05 : Managed security services

B. EDM03, APO13, APO11, DSS05

C. APO12, APO13, APO11, DSS05

D. EDM03, APO12, APO11, DSS05

A. EDM03, APO12, APO13, DSS05

How well did you know this?

Not at all

Perfectly

What is COBIT design process phase called when inherent priority conflicts are resolved?

A. Understand the enterprise context and strategy

B. Determine the initial scope of the governance system

C. Refine the scope of the governance system

D. Conclude the governance system design

D. Conclude the governance system design

How well did you know this?

Not at all

Perfectly

What is the maturity level for focus area when the enterprise is focused on continuous improvement?

A. Level 2-Managed

B. Level 4-Quantitative

C. Level 3-Defined

D. Level 5-Optimizing

D. Level 5-Optimizing

How well did you know this?

Not at all

Perfectly

A focus area is of maturity level “managed” if

A. Work is completed but the full goal and intent of the focus area are not yet achieved

B. Planning and performance measurement take place, although not yet in standardized way.

C. The enterprise is focused on continuous improvement

D. Work may or may not be completed towards achieving the purpose of governance and management objectives in the focus area

B. Planning and performance measurement take place, although not yet in standardized way.

How well did you know this?

Not at all

Perfectly

What is the name given to the element that can influence in different ways the tailoring of the governance system of an enterprise.

A. Design factor

B. Governance component

C. Governance system principle

D. Governance framework principle

A. Design factor

How well did you know this?

Not at all

Perfectly

What is the term used to describe the key decision-making entities in an enterprise?

A. Enterprise functions

B. Decisional positions

C. Leadership entities

D. Organizational structures

D. Organizational structures

How well did you know this?

Not at all

Perfectly

Which management objective supports the digital transformation strategy of the organization and delivers the desired value through a road map of incremental changes?

A. APO04 : Managed innovation

B. APO03 : Managed enterprise architecture

C. APO02 : Managed strategy

D. APO05 : Managed portfolio

C. APO02 : Managed strategy

What is the purpose of the Goals Cascade?

A. Consider the Inputs and Outputs of an IT process in the enterprise

B. Define and implement the Enterprise Architecture of an enterprise

C. Support alignment between enterprise needs and IT solutions and services

D. Support the definition of clear roles and responsibilities in an enterprise

C. Support alignment between enterprise needs and IT solutions and services

At what level are Inputs and Outputs defined?

A. Processes

B. Management practices

C. Information flow and Items

D. Activities

C. Information flow and Items

Variant components are

A. Described in the COBIT core model and apply in principle to any situation

B. Generic in nature but need customization before being practically implemented

C. Based on generic components but are tailored for a specific purpose

D. None of the above

C. Based on generic components but are tailored for a specific purpose

Identify the missing word(s) in the following sentence.
A(An)____________ ? describes a certain governance topic, domain or issue that can be addressed by a collection of governance and management objectives and their components.

A. Governance system

B. Focus area

C. Alignment goal

D. Enterprise goal

B. Focus area

Which activity should be done by governance?

A. Implement risk management

B. Set principles and policies 

C. Execute strategy 

D. Plan activities to meet enterprise goals

B. Set principles and policies 

Which aspects of a Governance and management system are impacted by design factors?

A. Management Objective Priority and Target Capability Levels

B. Specific Focus Areas

C. Component Variations

D. All the above

D. All the above

What is the most suitable process domain for skills such as Portfolio Management?

A. Deliver, Service and Support (DSS)

B. Monitor, Evaluate and Assess (MEA)

C. Build, Acquire and Implement (BAI)

D. Align, Plan and Organise (APO)

D. Align, Plan and Organise (APO)

When an enterprise identifies the most relevant enterprise goal(s) from the enterprise goal list and applies the goals cascade, this will lead to

A. An increase in overall risk

B. A change in the entreprise strategy

C. A selection of priority management objectives.

D. An expansion in the enterprise portfolio

C. A selection of priority management objectives.

**Which component translates desired behavior into practical guidance for day-to-day management.** A. Services, Infrastructure and Applications B. Principles, Policies and Frameworks C. Culture, Ethics and Behavior D. People, Skills and Competencies

**B. Principles, Policies and Frameworks**

**An enterprise that uses DevOps in solution development and operations will require specific activities, organizational structures, culture, etc.. Those components are focused on which of the following?** APO10 : Managed Vendors BAI03 : Managed solutions identification DSS01 : Managed operations A. APO10, BAI03 B. APO10, DSS01 C. BAI03, DSS01 D. None of the above

**C. BAI03, DSS01**

**Which option is _NOT_ a benefit to the enterprise of using the COBIT framework?** A. Creating value for the enterprise through I&T, B. Maintaining and increasing value derived from existing I&T C. Eliminating IT initiatives and assets that are not creating sufficient value D. Managing business processes

**D. Managing business processes**

**To which stakeholder does COBIT provide guidance in how to organize and monitor performance of I&T across the enterprise?** A. The board B. Business managers C. Executive management D. Assurance providers

**C. Executive management**

**Which most senior official is responsible for aligning IT and business strategies, and accountable for planning, resourcing and managing delivery of I&T services and solutions?** A. Chief Executive Officer (CEO) B. Chief Information Officer (CIO) C. Chief Technology Officer (CTO) D. Chief Digital Officer (CDO)

**B. Chief Information Officer (CIO)**

* *What is the correct order of steps of the governance system design process?** 1. Understand the enterprise context and strategy 2. Conclude the governance system design 3. Refine the scope of the governance system. 4. Determine the initial scope of the governance system A. 1,2,3,4 B. 2,4,3,1 C. 1,4,3,2 D. 4,3,1,2

**C. 1,4,3,2**

**Which is _NOT_ a principle of a governance system?** A. A governance system should be dynamic B. A governance system should be tailored to the enterprise’s needs C. A governance system should clearly distinguish between governance and management activities and structures. D. A governance should provide a full description of the whole IT environment of an enterprise.

**D. A governance should provide a full description of the whole IT environment of an enterprise.**

**Governance programs need to** A. Be sponsored by executive management B. Be properly scoped C. Define objectives that are attainable D. All the above

**D. All the above**

* *What is the missing word?** * *COBIT’s goals-cascade concept is a ? approach that helps organizations to create enterprise goals from its stakeholder drivers and needs.** A. Bottom-up B. Top-down C. Horizontal D. Analytical

**B. Top-down**

* *Identify the missing word.** * *COBIT is a ? for the governance and management of enterprise information and technology of the whole enterprise**. A. System B. Standard C. Framework D. Guidance

**C. Framework**

**Which of the following is _NOT_ a principle of COBIT Performance Management (CPM)?** A. The CPM should provide reliable, repeatable and relevant results B. The CPM must be flexible, so it can support the requirements of different organizations with different priorities and need C. The CPM should be simple to understand and use. D. The CPM should follow a performance management standard

**D. The CPM should follow a performance management standard**

**One of the common reasons why some governance system implementations fail is that** A. They are not initiated and then managed properly as programs to ensure that benefits are realized B. They are not initiated and then controlled properly to avoid cost overrun C. Risks are not addressed and mitigated properly and resources are not optimized D. Business stakeholders and members of IT are not involved in the design process

**A. They are not initiated and then managed properly as programs to ensure that benefits are realized**

**Generic or variant elements that aid the alignment of the framework to the organization’s needs are called?** A. Components B. Design factors C. Enablers D. Focus areas

**A. Components**

**Which phase in the COBIT implementation approach aligns I&T-related objectives with enterprise strategies and risk, and prioritizes the most important enterprise goals, alignment goals and processes?** A. Phase 4—What Needs to Be Done? B. Phase 3—Where Do We Want to Be? C. Phase 1—What Are the Drivers? D. Phase 2—Where Are We Now?

**D. Phase 2—Where Are We Now?**

**An underlying principle for COBIT is that** A. It can manage all IT aspects B. It helps achieve all other industry frameworks' objectives C. It integrates well with other industry frameworks D. It can replace all other industry frameworks

**C. It integrates well with other industry frameworks**