Isaca CGEIT Free Practice Questions

NEW QUESTION 1
Fill in the blank with an appropriate phrase.
_____ models address specifications, requirements, design, verification and validation, and maintenance activities.

• A. Life cycle

Answer: A

NEW QUESTION 2
Which of the following frameworks defines ERM as the discipline by which an organization in any industry assesses, controls, exploits, finances, and monitors risks from all sources for the purpose of increasing the organization's short- and long-term value to its stakeholders?

• A. COSO ERM framework
• B. COBIT
• C. Val IT
• D. Casualty Actuarial Society framework

Answer: D

NEW QUESTION 3
Sensitivity analysis is a technique for systematically changing parameters in a model to determine the effects of such changes and is useful for computer modelers for a range of purposes. Which of the following purposes does the sensitivity analysis include?
Each correct answer represents a complete solution. Choose all that apply.

• A. Decision making or the development of recommendations for decision makers
• B. Model development
• C. Estimating the average outcome
• D. Increased understanding or quantification of the system

Answer: ABD

NEW QUESTION 4
You are the project manager for the ABC organization. Your current project has 75 internal stakeholders and 245 external stakeholders. Many of the risks within your project will only affect the internal stakeholders, but several of the identified risk events will affect the external stakeholders. Management would like to know the total number of communication channels in the project. How many communication channels exist in this project?

• A. 245
• B. 102,080
• C. 51,040
• D. 320

Answer: C

NEW QUESTION 5
Which of the following are parts of SWOT Analysis?
Each correct answer represents a complete solution. Choose all that apply.

• A. Optimism
• B. Threats
• C. Weaknesses
• D. Opportunities
• E. Tools
• F. Strengths

Answer: BCDF

NEW QUESTION 6
Which of the following types of agreement creates a confidential relationship between the parties to protect any type of confidential and proprietary information or a trade secret?

• A. CNC
• B. NDA
• C. SLA
• D. Non-price competition

Answer: B

NEW QUESTION 7
Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event?

• A. Risk audit
• B. Earned value management
• C. Corrective action
• D. Technical performance measurement

Answer: C

NEW QUESTION 8
Which of the following examples are included in the application controls embedded in business process applications? Each correct answer represents a complete solution. Choose all that apply.

• A. Segregation of duties
• B. Validity
• C. Security
• D. Computer operations

Answer: AB

NEW QUESTION 9
In which of the following types of biases does the data collection itself interfere with the process it is measuring?

• A. Interaction
• B. Nonresponse
• C. Perception
• D. Operational

Answer: A

NEW QUESTION 10
Which of the following service delivery processes has the goal to produce, agreed on, timely, reliable, and accurate reports for the effective communication?

• A. Service level management
• B. Service reporting
• C. Information security management
• D. Capacity management

Answer: B

NEW QUESTION 11
Which of the following components of COSO ERM framework encompasses the nature of an enterprise, and sets the basis for how risk is viewed and addressed by an organization people, including risk management philosophy and risk appetite, integrity and ethical values, and the environment in which it operates?

• A. Risk response
• B. Risk assessment
• C. Control activity
• D. Internal environment

Answer: D

NEW QUESTION 12
Which of the following individuals ensures that IT complies with policy, laws and regulations?

• A. Project sponsor
• B. Compliance officer
• C. Supplier
• D. Business partner

Answer: B

NEW QUESTION 13
Which of the following are the objectives of Service Level Management (SLM)?
* 1. To negotiate SLAs with the customers and to design services in accordance with the agreed service level targets.
* 2. Defining, documenting, and agreeing the level of IT Services to be provided.
* 3. Identifying possible future markets that the Service Provider could operate in.
* 4. Monitoring, measuring, and reporting the actual level of services provided.
* 5. Monitoring and improving customer satisfaction.

• A. 1, 2, and 3 only
• B. 1, 2, 4, and 5 only
• C. 1, 2, 3, 4, and 5
• D. 1, 2, 3, and 5 only
• E. 1 and 2 only

Answer: B

NEW QUESTION 14
Which of the following risks refers to the risk associated with an event in the absence of specific controls?

• A. Financial reporting risk
• B. Inherent risk
• C. Operational risk
• D. Compliance risk

Answer: B

NEW QUESTION 15
Where can a project manager find risk-rating rules?

• A. Risk management plan
• B. Enterprise environmental factors
• C. Risk probability and impact matrix
• D. Organizational process assets

Answer: D

NEW QUESTION 16
Which of the following concepts aims to limit errors to 1 per million units produced?

• A. TQM
• B. BSC
• C. Six Sigma
• D. TSM

Answer: A

NEW QUESTION 17
Drag and drop the correct activity loop at the appropriate place.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 18
Service Transition contains detailed descriptions of which of the following processes?

• A. Change Management, Capacity Management, Event Management, and Service Request Management
• B. Service Level Management, Service Portfolio Management, Service Asset and Configuration Management
• C. Service Asset and Configuration Management, Release Management, and Request Fulfillment
• D. Change Management, Service Asset and Configuration Management, Release and Deployment Management

Answer: D

NEW QUESTION 19
Drag and drop the various SSE-CMM levels at the appropriate places.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 20
Which of the following individuals supports and contributes to customer's governance approach?

• A. User representatives
• B. Supplier/Business partners
• C. Compliance officers
• D. Project sponsors

Answer: B

NEW QUESTION 21
Which of the following essential elements of IT Portfolio Investment Management enables portfolio managers to include or exclude investments, change start and end-dates, adjust budgets and reevaluate priorities?

• A. Integrated Capability
• B. Portfolio Planning Analysis
• C. Portfolio What-If Planning
• D. Portfolio Management

Answer: C

NEW QUESTION 22
Mark is the project manager of the BFL project for his organization. He and the project team are creating a probability and impact matrix using RAG rating. There is some confusion and disagreement among the project team as to how a certain risk is important and priority for attention should be managed. Where can Mark determine the priority of a risk given its probability and impact?

• A. Risk response plan
• B. Look-up table
• C. Project sponsor
• D. Risk management plan

Answer: B

NEW QUESTION 23
Which of the following frameworks describes a standard for processes within business information management at the strategy, management and operations level?

• A. Val IT
• B. BISL
• C. COBIT
• D. TOGAF

Answer: B

NEW QUESTION 24
You are the project manager of the NHQ project for your company. You are working with your project team to complete a risk audit. A recent issue that your project team responded to, and management approved, was to increase the project schedule because there was risk surrounding the installation time of a new material. Your logic was that with the expanded schedule there would be time to complete the installation without affecting downstream project activities. What type of risk response is being audited in this scenario?

• A. Avoidance
• B. Mitigation
• C. Parkinson's Law
• D. Lag Time

Answer: A

NEW QUESTION 25
Availability Management allows organizations to sustain the IT service availability to support the business at a justifiable cost. Which of the following elements of Availability Management is used to perform at an agreed level over a period of time?
Each correct answer represents a part of the solution. Choose all that apply.

• A. Reliability
• B. Security
• C. Recoverability
• D. Serviceability
• E. Resilience
• F. Maintainability
• G. Error control

Answer: ABCDEF

NEW QUESTION 26
Which of the following types of IT organizational structures states that all IT resources are centralized under a single reporting structure with centralized resource allocation (staffing), and the organizational structure is built around the resource pools?

• A. Federated
• B. Centralized
• C. Project-based
• D. Decentralized

Answer: C

NEW QUESTION 27
......