An IT governance committee is defining a risk management policy for a portfolio of IT-enabled investments. Which of the following should be the PRIMARY consideration when developing the policy?
A contracted company employs key IT systems operational personnel to oversee technology used to manage a critical line of business. Management is concerned that a mass resignation by many disgruntled personnel may lead to a shutdown of these key systems. Which of the following should be the PRIMARY responsibility of IT governance to address this risk?
A CIO determines IT investment management processes are not fully realizing the benefits identified in business cases. Which of the following would be the BEST way to prevent this issue?
How does an enterprise benefit from implementing a set of key risk indicators (KRIs)?
A large retail chain realizes that while there has not been any loss of data, IT security has not been a priority and should become a key goal for the enterprise.What should be the FIRST high-level initiative for a newly created IT strategy committee in order to support this business goal?
Which of the following should be the PRIMARY consideration for an enterprise when prioritizing IT projects?
