Contoh soal sertifikasi Cobit 2019
1. Which enterprise role ensures the board is kept informed of major decisions related to value delivery of I&T deployment in accordance with the enterprise strategy? (Siapa yang memastikan dewan tetap mendapat informasi tentang keputusan utama terkait dengan penyampaian nilai I&T penyebaran sesuai dengan strategi perusahaan?)
A. Chief information officer
B. Executive committee
C. Chief executive officer
Jawaban: B
2. Which of the following management objectives is related to optimization of system performance?
2. Manakah dari tujuan manajemen berikut yang terkait dengan optimalisasi kinerja sistem?
A. Managed I&T management framework
B. Managed availability and capacity
C. Managed service agreements
Jawaban: B
3. Once IT governance is implemented, what is the NEXT phase in the life cycle of governance?
3. Setelah tata kelola TI diimplementasikan, apa fase BERIKUTNYA dalam siklus hidup tata kelola?
A. Measuring objectives
B. Initiating improvements
C. Updating the program
A. Mengukur tujuan
B. Memulai perbaikan
C. Memperbarui program
4. Time-to-market is a market that is directly related to which of the following enterprise goals?
Time-to-market adalah pasar yang secara langsung berhubungan dengan tujuan perusahaan berikut?
A. Optimization of internal business process functionality
B. Portfolio of competitive products and services
C. Managed digital transformation programs
5. COBIT addresses governance issues by doing which of the following?
COBIT mengatasi masalah tata kelola dengan melakukan yang mana dari berikut ini?
A. Grouping relevant governance components into objectives that can be managed to a required capability level
B. Providing a full description of the entire IT environment within an enterprise
C. Defining specific governance strategies and processes to implement in specific situations
Jawaban A
6. Which COBIT domain of management objectives incorporates managed risk?
6. Domain COBIT mana dari tujuan manajemen yang memasukkan risiko terkelola?
A. Build, acquire and implement (BAI)
B. Align, plan and organize (APO)
C. Deliver, service and support (DSS)
Jawab B
7. Which of the following COBIT organizational structure roles fulfills the practice and creates the intended outcome?
Manakah dari peran struktur organisasi COBIT berikut yang memenuhi praktik dan menciptakan hasil yang diinginkan?
A. Accountable (A)
B. Responsible (R)
C. Consulted (C)
Jawab: B
8. Within an organizational structure chart (RACI chart), which role drives a given task or process?
Dalam bagan struktur organisasi (bagan RACI), peran mana yang mendorong tugas atau proses tertentu?
A. Responsible (R) role
B. Accountable (A) role
C. Informed (I) role
9. Which of the following benefits derived from the use of COBIT is PRIMARILY associated with an external stakeholder?
Manakah dari manfaat berikut yang diperoleh dari penggunaan COBIT yang UTAMA terkait dengan pemangku kepentingan eksternal?
A. COBIT provides guidance on how to organize and monitor the performance of I&T across the enterprise.
B. COBIT helps to manage the dependency on the use of external service providers.
C. COBIT helps to ensure compliance with applicable rules and regulations.
10. In the implementation model, when is IT governance implementation risk BEST managed?
Dalam model implementasi, kapan risiko implementasi tata kelola TI TERBAIK dikelola?
A. Throughout the life cycle
B. During the planning phase
C. Just prior to operationalization
A. Sepanjang siklus hidup
B. Selama tahap perencanaan
C. Sesaat sebelum operasionalisasi
11. Which of the following describes the COBIT performance model?
Manakah dari berikut ini yang menjelaskan model kinerja COBIT?
A. The COBIT performance model is a stand-alone model that can be used in conjunction with the COBIT core model.
B. The COBIT performance model is integrated into the COBIT core model.
C. The COBIT performance model is unique and not aligned with existing maturity and capability models.
12. Which of the following is MOST important to providing trust in operations, confidence in the achievement of enterprise objectives, and an adequate understanding of residual risk?
Manakah dari berikut ini yang PALING penting untuk memberikan kepercayaan dalam operasi, keyakinan dalam pencapaian tujuan perusahaan, dan pemahaman yang memadai tentang risiko residual?
A. A continuity of operations response plan
B. A risk management framework
C. A managed system of internal controls
Answer: C
Section: Governance and Management Objectives
13. When assessing organizational structures, it is MOST helpful when subcriteria for each criterion are defined and linked to:
Ketika menilai struktur organisasi, akan sangat membantu ketika subkriteria untuk setiap kriteria didefinisikan dan dihubungkan dengan:
A. job descriptions.
B. capability levels.
C. performance metrics.
14. Which of the following is a key component of a governance system?
Manakah dari berikut ini yang merupakan komponen utama dari sistem tata kelola?
A. Performance metrics
B. Processes
C. Legal and regulatory requirements
15. Within the principles for a governance system, the value generated from the use of I&T reflects:
Dalam prinsip sistem tata kelola, nilai yang dihasilkan dari penggunaan I&T mencerminkan:
A. the ratio of costs versus achieved service levels.
B. a balance among benefits, risk and resources.
C. maximized financial benefits to the investment portfolio.
A. rasio biaya versus tingkat layanan yang dicapai.
B. keseimbangan antara manfaat, risiko dan sumber daya.
C. memaksimalkan keuntungan finansial untuk portofolio investasi.
16. Within the COBIT goals cascade, stakeholder drivers are transformed into:
A. the enterprise's actionable strategy.
B. business unit performance metrics.
C. the enterprise's governance framework.
Answer: A
17. Which of the following components of a governance system are MOST likely to be underestimated as factors in the success of governance and management activities?
A. Culture, ethics and behavior
B. People, skills and competencies
C. Principles, policies and frameworks
Answer: A
18. An enterprise that specializes in software development is designing a new IT governance system as part of a transition from traditional waterfall to a more agile approach. Which step in the design phase would this transition impact the MOST?
A. Compliance requirements
B. Implementation method
C. Sourcing model
Answer: B
19. Which COBIT principle addresses the need to consider how many changes in technology or strategy impact the enterprise governance system as a whole?
A. A governance system should be tailored to the enterprise's needs.
B. A governance system should cover the enterprise end to end.
C. A governance system should be dynamic.
Answer: C
20. The number of focus areas describing a certain governance topic or issue that can be addressed by governance objectives is:
A. dependent on process maturity
B. determined by the size of the enterprise
C. virtually unlimited
Answer: C
21. The design factor associated with a highly regulated enterprise is likely to attribute MORE importance to which of the following?
A. Managed strategy and operations
B. Documented work products and policies
C. Understanding of the business by IT professionals
Answer: B
22. Which of the following is ESSENTIAL to help ensure that a project's benefits are identified and continually monitored?
A. A well-developed business case
B. Earned value management reporting
C. Stage gate reviews by a governance team
jawaban A
23. One year after IT governance is implemented, what KEY question should be asked and evaluated?
A. Has the enterprise leveraged lessons learned?
B. Has the enterprise reduced its risk exposure?
C. Has the enterprise achieved expected benefits?
Answer: C
24. What would be the PRIMARY reason for management to conduct a process capability assessment?
A. To better understand the current state as compared to the target
B. To better understand the cost of implementing the improved process
C. To better understand the current level of risk versus future risk
Answer: A
25. Which of the following cascades to enterprise goals?
A. Stakeholder needs
B. Organizational objectives
C. Enterprise strategy
Jawaban: A
26. Which of the following is a guiding principle in the development of COBIT?
A. COBIT aligns with other related and relevant I&T standards, frameworks and regulations
B. COBIT includes relevant content from other related I&T standards, frameworks and regulations.
C. COBIT serves as a comprehensive standalone framework that covers all relevant I&T-related activities.
Answer: A
27. Which of the following BEST describes the "managed innovation" management objective of the COBIT core model?
A. Optimize available IT capabilities to support the IT strategy and roadmap.
B. Achieve competitive advantage, improve customer experience and improve operational effectiveness.
C. Support the digital transformation strategy of the organization and deliver the desired value.
Answer: B
Section: Governance and Management Objectives
28. The enterprise goal of compliance with external laws and regulations is aligned to which balanced
scorecard (BSC) dimension?
A. Financial
B. Growth
C. Internal
Answer: A
29. Which COBIT domain of management objectives incorporates managed business process controls?
A. Build, Acquire and Implement (BAI)
B. Align, Plan and Organize (APO)
C. Deliver, Service and Support (DSS)
Answer: C
30. The value that I&T delivers should be:
A. aligned directly with the values on which the business is focused.
B. focused exclusively on I&T investments that generate financial benefits.
C. restricted to maintaining and increasing value derived from existing I&T investments.
31. Which of the following components of the governance system are required for successful completion of all activities?
A. People, skills and competencies
B. Processes
C. Principles, policies and frameworks
Answer: A
32. The primary target audience for COBIT is:
A. anyone responsible for the governance solution.
B. assurance professionals responsible for evaluating and reporting on the existence of internal controls.
C. business and IT management responsible for building and deploying I&T solutions.
Answer: A
33. How do the assigned capability levels in the COBIT core model facilitate the achievement of the different capability levels?
A. By defining organizational structure with specific roles and responsibilities
B. By setting performance metrics for enabler goals
C. By providing clear definition of the processes and required activities
QUESTION 34
Which of the following is a principle associated with the key components of a governance framework?
A. The interaction among key components will impede automation and should therefore be limited.
B. The relationships among key components should be identified to maximize consistency.
C. Key components should function independently to maintain integrity.
35. Which of the following is a PRIMARY objective of reviewing the effectiveness of a new IT governance system that has been operational for 6 months?
A. Obtaining executive management support for IT governance
B. Identifying further governance requirements
C. Evaluating business performance reports
36. Which of the following components is important to update in a COBIT RACI chart to align with the enterprise’s context, priorities and preferred terminology?
A. Enterprise process practices and activities
B. Enterprise roles and organizational structures
C. Enterprise procedures and job descriptions
37. Which of the following components of governance and management objectives includes the expected capability level?
A. Process activities
B. Alignment goals
C. Organization structure
Answer: A
38. According to the principles for a governance framework, which of the following is a PRIMARY consideration when addressing new issues within a flexible and open framework?
A. Maintaining integrity and consistency
B. Aligning with internal IT policies and procedures
C. Identifying related industry standards
39. Which of the following is a key component of a governance system?
A. Performance metrics
B. Processes
C. Legal and regulatory requirements
40. Within the principles for a governance system, the value generated from the use of I&T reflects:
A. the ratio of costs versus achieved service levels.
B. a balance among benefits, risk and resources.
C. maximized financial benefits to the investment portfolio.
41. Who is responsible for the oversight of structures and mechanisms that drive enterprise governance of information and technology (EGIT)?
Siapa yang bertanggung jawab atas pengawasan struktur dan mekanisme yang mendorong tata kelola informasi dan teknologi (EGIT) perusahaan?
A. Individual business units
B. External regulators
C. The board (dewan/direksi)
8. Which of the following benefits derived from the use of COBIT is PRIMARILY associated with an external stakeholder?
A. COBIT provides guidance on how to organize and monitor the performance of I&T across the enterprise.
B. COBIT helps to manage the dependency on the use of external service providers.
C. COBIT helps to ensure compliance with applicable rules and regulations.
Jawaban: C.
Which COBIT principle addresses the need to consider how many changes in technology or strategy impact the enterprise governance system as a whole?
A. A governance system should be tailored to the enterprise’s needs.
B. A governance system should cover the enterprise end to end.
C. A governance system should be dynamic.
Exam A
QUESTION 1
Who is responsible for the oversight of structures and mechanisms that drive enterprise governance of information and technology (EGIT)?
A. Individual business units
B. External regulators
C. The board
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 2 COBIT defines stakeholder value creation as which of the following?
A. Realization of benefits at a controlled resource cost while controlling risk
B. Realization of benefits at an optimal resource cost while optimizing risk
C. Realization of benefits at a reduced resource cost while mitigating risk
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 3 The value that I&T delivers should be:
A. aligned directly with the values on which the business is focused.
B. focused exclusively on I&T investments that generate financial benefits.
C. restricted to maintaining and increasing value derived from existing I&T investments.
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 4 COBIT addresses governance issues by doing which of the following?
A. Grouping relevant governance components into objectives that can be managed to a required capability level
B. Providing a full description of the entire IT environment within an enterprise
C. Defining specific governance strategies and processes to implement in specific situations
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 5
Which of the following is a guiding principle in the development of COBIT?
A. COBIT aligns with other related and relevant I&T standards, frameworks and regulations
B. COBIT includes relevant content from other related I&T standards, frameworks and regulations.
C. COBIT serves as a comprehensive standalone framework that covers all relevant I&T-related activities.
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 6 Which of the following is an element of governance?
A. Building plans to align with the direction set by the governance body
B. Monitoring activities designed to achieve enterprise objectives
C. Evaluating stakeholder needs to determine enterprise objectives
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Explanation:
QUESTION 7 In most cases, management of the enterprise is the responsibility of:
A. the project management office.
B. the executive management team.
C. the board of directors.
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 8 Which of the following benefits derived from the use of COBIT is PRIMARILY associated with an external stakeholder?
A. COBIT provides guidance on how to organize and monitor the performance of I&T across the enterprise.
B. COBIT helps to manage the dependency on the use of external service providers.
C. COBIT helps to ensure compliance with applicable rules and regulations.
Correct Answer: harusnya C
Section: (none) Explanation
Explanation/Reference:
QUESTION 9
The primary target audience for COBIT is:
A. anyone responsible for the governance solution.
B. assurance professionals responsible for evaluating and reporting on the existence of internal controls.
C. business and IT management responsible for building and deploying I&T solutions.
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
Explanation:
The course is suitable for business managers, chief executives, IT/IS auditors, internal auditors, information security and IT practitioners, consultants and IT/IS managers requiring an insight into the enterprise governance of IT and who may also be requiring certification as a COBIT 5.
QUESTION 10 Within the principles for a governance system, the value generated from the use of I&T reflects:
A. the ratio of costs versus achieved service levels.
B. a balance among benefits, risk and resources.
C. maximized financial benefits to the investment portfolio.
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Explanation:
The governance system should also to generate value from the use of I&T. To create value, the enterprise must balance benefits, risk, and resources. Reference: https://www.testpreptraining.com/tutorial/governance-system-principles/
QUESTION 11 Which of the following should a stakeholder do to optimize the use of COBIT?
A. Customize COBIT guidance to meet industry best practices.
B. Customize COBIT guidance to meet specific enterprise needs.
C. Ensure COBIT guidance is strictly followed without alterations.
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Explanation:
Customizable solution that can address the unique needs of any enterprise.
Reference: https://www.escoute.com/finally-a-guide-for-tailoring-a-governance-system-for-information-and-technology/
QUESTION 12
Which COBIT principle addresses the need to consider how many changes in technology or strategy impact the enterprise governance system as a whole?
A. A governance system should be tailored to the enterprise’s needs.
B. A governance system should cover the enterprise end to end.
C. A governance system should be dynamic.
Correct Answer: A
Section: (none) Explanation www
Explanation/Reference:
Reference: https://www.escoute.com/finally-a-guide-for-tailoring-a-governance-system-for-information-and-technology/
QUESTION 13 Which of the following BEST enables an enterprise to maximize value from the use of I&T?
A. A clearly defined I&T management structure
B. An actionable strategy and governance system
C. Well-documented and monitored business processes
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Explanation:
To create value, the enterprise must balance benefits, risk, and resources, and develop an actionable strategy and governance system. Reference: https://www.testpreptraining.com/tutorial/governance-system-principles/
QUESTION 14 Which of the following is a KEY principle of an enterprise governance system?
A. It should focus on all technology and information processing, regardless of where processing takes place.
B. It should focus only on technology and information processing that takes place within the IT function.C. It should focus only on technology and information processing that takes place in cost centers
Correct Answer: A
Section: (none) Explanation
QUESTION 15
According to the principles for a governance framework, which of the following is a PRIMARY consideration when addressing new issues within a flexible and open framework?
A. Maintaining integrity and consistency
B. Aligning with internal IT policies and procedures
C. Identifying related industry standards
Correct Answer: A
QUESTION 16 Which of the following is a principle of a proper governance framework?
A. It should be based on a conceptual model.
B. It should be independent of other standards, frameworks and regulations.
C. It should be self-contained and not allow for the addition of new content.
Correct Answer: A
Section: (none) www
QUESTION 17 Which of the following is a principle associated with the key components of a governance framework?
A. The interaction among key components will impede automation and should therefore be limited.
B. The relationships among key components should be identified to maximize consistency.
C. Key components should function independently to maintain integrity.
Correct Answer: C
QUESTION 18 Which of the following describes the COBIT performance model?
A. The COBIT performance model is a stand-alone model that can be used in conjunction with the COBIT core model.
B. The COBIT performance model is integrated into the COBIT core model.
C. The COBIT performance model is unique and not aligned with existing maturity and capability models.
Correct Answer: B
Section: (none) Explanation
QUESTION 19 Within a tailored enterprise governance system, a sourcing model for information and technology is associated with:
A. design factors.
B. relevant industry frameworks.
C. focus areas.
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 20 Which of the following governance components is ESSENTIAL for effective decision making?
A. People, skills and competencies
B. Processes
C. Organizational structures
Correct Answer: A
Section: (none) Explanation
QUESTION 21 Which of the following domains deals with the definition of IT solutions and their integration in business processes?
A. Align, Plan and Organize (APO)
B. Deliver, Service and Support (DSS)
C. Build, Acquire and Implement (BAI)
Correct Answer: C
Section: (none) Explanation
QUESTION 22
Which COBIT domain of management objectives incorporates managed risk?
A. Build, acquire and implement (BAI)
B. Align, plan and organize (APO)
C. Deliver, service and support (DSS)
Correct Answer: B
Section: (none) Explanation
QUESTION 23 Which COBIT domain of management objectives incorporates managed business process controls?
A. Build, Acquire and Implement (BAI)
B. Align, Plan and Organize (APO)
C. Deliver, Service and Support (DSS)
Correct Answer: C
Section: (none) Explanation
QUESTION 24
Which of the following components of a governance system are MOST likely to be underestimated as factors in the success of governance and management activities?
A. Culture, ethics and behavior
B. People, skills and competencies
C. Principles, policies and frameworks
Correct Answer: A
Section: (none) Explanation
Explanation/Reference: www
Which of the following is based on generic components of a governance system but are tailored for a specific purpose or context within a focus area?
A. Guiding principles
B. Variant components
C. Design factors
Correct Answer: B
Section: (none) Explanation
QUESTION 26 Which of the following is a key component of a governance system?
A. Performance metrics
B. Processes
C. Legal and regulatory requirements
Correct Answer: B
QUESTION 27
Which of the following components of the governance system are required for successful completion of all activities?
A. People, skills and competencies
B. Processes
C. Principles, policies and frameworks
Correct Answer: A
QUESTION 28
The number of focus areas describing a certain governance topic or issue that can be addressed by governance objectives is:
A. dependent on process maturity
B. determined by the size of the enterprise
C. virtually unlimited
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 29
The enterprise goal of compliance with external laws and regulations is aligned to which balanced scorecard (BSC) dimension?
A. Financial
B. Growth
C. Internal
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 30 Innovation and differentiation are examples of:
A. enterprise goal risk factors.
B. enterprise objectives design factors.
C. enterprise strategy design factors.
Correct Answer: B
QUESTION 31 The enterprise goal titled “Optimization of Business Process Costs” is aligned to which balanced scorecard (BSC) dimension?
A. Growth
B. Customer
C. Internal
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 32 What is the focus of an enterprise that has a cost leadership strategy design factor?
A. Long-term cost optimization
B. Medium-term cost equalization
C. Short-term cost minimization
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 33
Within the COBIT goals cascade, stakeholder drivers are transformed into:
A. the enterprise’s actionable strategy.
B. business unit performance metrics.
C. the enterprise’s governance framework.
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 34 Which of the following MUST be defined before determining alignment goals?
A. External laws and regulations
B. Stakeholder drivers and needs
C. Governance and management objectives
Correct Answer: B
Section: (none) Explanation
QUESTION 35 Time-to-market is a market that is directly related to which of the following enterprise goals?
A. Optimization of internal business process functionality
B. Portfolio of competitive products and services
C. Managed digital transformation programs
Correct Answer: B
QUESTION 36 Which of the following would be an appropriate metric associated with an enterprise goal of “Business service continuity and availability”?
A. Satisfaction levels of board and executive management with business process capabilities
B. Ratio of significant incidents that were not identified in risk assessments vs. total incidents
C. Number of business processing hours lost due to unplanned service interruptions
Correct Answer: C
Section: (none) Explanation
QUESTION 37 Which of the following enterprise goals is within the Customer dimension of the IT balanced scorecard?
A. Delivery of programs on time and on budget
B. Product and business innovation
C. Quality of management information
Correct Answer: C
Section: (none) Explanation
QUESTION 38 Which of the following cascades to enterprise goals?
A. Stakeholder needs
B. Organizational objectives
C. Enterprise strategy
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 39
Which of the following metrics would BEST enable an enterprise to evaluate an alignment goal specifically related to security of information and privacy?
A. Ratio and extent of erroneous business decisions in which erroneous I&T-related information was a key factor
B. Number of critical business processes supported by up-to-date infrastructure and applications
C. Number of confidentiality incidents causing financial loss, business disruption or public embarrassment.
Correct Answer: C
QUESTION 40
Which of the following would be an appropriate metric to align with a goal of “Delivery of programs on time, on budget, and meeting requirements and quality standards”?
A. Percent of stakeholders satisfied with program/project quality
B. Percent of business staff satisfied that IT service delivery meets agreed service levels
C. Level of user satisfaction with the quality and availability of I&T-related management information
Correct Answer: A
Section: (none) Explanation
QUESTION 41
The alignment goal “Delivery of I&T services in line with business requirements” is organized into which IT balanced scorecard (BSC) dimension?
A. Customer
B. Financial
C. Internal
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Reference: https://community.mis.temple.edu/mis5203sec001sp2019/files/2019/01/COBIT-2019-Framework-Introduction-and-Methodology_res_eng_1118.pdf (31)
QUESTION 42 Which of the following management objectives is related to optimization of system performance?
A. Managed I&T management framework
B. Managed availability and capacity
C. Managed service agreements
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://wiki.process-symphony.com.au/tag/cobit2019/page/4/
QUESTION 43
Which of the following is MOST important to providing trust in operations, confidence in the achievement of enterprise objectives, and an adequate understanding of residual risk?
A. A continuity of operations response plan
B. A risk management framework
C. A managed system of internal controls
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
Reference: https://wiki.process-symphony.com.au/tag/cobit2019/page/4/
QUESTION 44 Which of the following BEST describes the “managed innovation” management objective of the COBIT core model?
A. Optimize available IT capabilities to support the IT strategy and roadmap.
B. Achieve competitive advantage, improve customer experience and improve operational effectiveness.
C. Support the digital transformation strategy of the organization and deliver the desired value.
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://netmarket.oss.aliyuncs.com/df5c71cb-f91a-4bf8-85a6-991e1c2c0a3e.pdf (81)
QUESTION 45
Which of the following is CRITICAL to ensuring I&T-related decisions are aligned with the enterprise’s strategies and objectives?
A. Compliance with legal, contractual and regulatory requirements is confirmed.
B. Technology and innovation processes are overseen by the board.
C. Assurance on controls is obtained from independent IT auditors.
Correct Answer: A
Section: (none)
Explanation
Explanation/Reference:
QUESTION 46
After IT department goals have been aligned with enterprise goals, the NEXT step is to link the alignment goals with:
A. governance and management objectives.
B. governance and management practices.
C. governance and management performance metrics.
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Reference: https://wiki.process-symphony.com.au/tag/cobit2019/page/4/
QUESTION 47
A consultant tasked with facilitating an enterprise’s COBIT implementation has met with the CEO and identified enterprise goals based on mission and vision. Which of the following roles is BEST suited to meet with the consultant to identify alignment goals?
A. Chief risk officer
B. Chief information officer
C. Chief financial officer
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://netmarket.oss.aliyuncs.com/df5c71cb-f91a-4bf8-85a6-991e1c2c0a3e.pdf
QUESTION 48
Which of the following components of governance and management objectives includes the expected capability level?
A. Process activities
B. Alignment goals
C. Organization structure
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Explanation:
Capability and maturity levels are assigned to all process activities, enabling clear definition of processes at different levels. This can be effective through a thorough assessment of the enterprise program and capabilities using performance management.
Reference: https://www.isaca.org/resources/news-and-trends/industry-news/2020/effective-capability-and-maturity-assessment-using-cobit-2019
QUESTION 49
How do the assigned capability levels in the COBIT core model facilitate the achievement of the different capability levels?
A. By defining organizational structure with specific roles and responsibilities
B. By setting performance metrics for enabler goals
C. By providing clear definition of the processes and required activities
Correct Answer: C
Section: (none)
Explanation
Explanation/Reference:
Reference: https://www.isaca.org/resources/news-and-trends/industry-news/2020/effective-capability-and-maturity-assessment-using-cobit-2019
QUESTION 50
According to Capability Maturity Model Integration (CMMI), which of the following BEST describes Level 2 within the five maturity levels for processes?
A. The process achieves its purpose through the application of a basic, yet complete, set of activities that can be characterized as performed.
B. The process achieves its purpose in a much more organized way using organizational assets, and processes are typically well defined.
C. The process more or less achieves its purpose through the application of an incomplete set of activities that can be characterized as intuitive and not very organized.
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Reference: https://www.tutorialspoint.com/cmmi/cmmi-maturity-levels.htm
QUESTION 51 The different levels of involvement associated with roles and organizational structure are PRIMARILY divided into:
A. governance and management levels.
B. responsibility and accountability levels.
C. operational and practitioner levels.
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://netmarket.oss.aliyuncs.com/df5c71cb-f91a-4bf8-85a6-991e1c2c0a3e.pdf (21)
QUESTION 52
Which of the following components is important to update in a COBIT RACI chart to align with the enterprise’s context, priorities and preferred terminology?
A. Enterprise process practices and activities
B. Enterprise roles and organizational structures
C. Enterprise procedures and job descriptions
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 53 Within an organizational structure chart (RACI chart), which role drives a given task or process?
A. Responsible (R) role B. Accountable (A) role
C. Informed (I) role
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://ptgmedia.pearsoncmg.com/images/9780134772806/samplepages/9780134772806_Sample.pdf
QUESTION 54 Which of the following comprises the “information flow” component of a governance system?
A. People, skills and competencies
B. Assignment of responsibility and accountability roles
C. Process practices that include inputs and outputs
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
Reference: https://static1.squarespace.com/static/56b3cadb59827ecd82b02b43/t/56d8c0d84d088e673055c308/1457045725120/COBIT-5_res_eng_1012.pdf (32)
QUESTION 55 Which of the following COBIT components includes a list of artifacts with links to relevant governance and management practices?
A. Information flow and items
B. Organizational structures
C. Policies and procedures
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://www.businessbeam.com/blog/cobit-2019/
QUESTION 56 Which governance component identifies the human resource needs that must be met to achieve governance and management objectives?
A. Culture, ethics and behavior
B. People, skills and competencies
C. Information flow and items
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
QUESTION 57 Which of the following COBIT organizational structure roles fulfills the practice and creates the intended outcome?
A. Accountable (A)
B. Responsible (R)
C. Consulted (C)
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
QUESTION 58
Which enterprise role ensures the board is kept informed of major decisions related to value delivery of I&T deployment in accordance with the enterprise strategy?
A. Chief information officer
B. Executive committee
C. Chief executive officer
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 59 Which of the following is the MOST essential attribute of the highest process capability level (Level 5)?
A. Pursuit of continuous improvement
B. Full achievement of the process’s purpose
C. Quantitative performance measures
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Reference: https://www.simplilearn.com/process-attributes-and-process-capability-levels-cobit5-tutorial-video
QUESTION 60 The level achieved when all processes of a focus area achieve a particular capability level is referred to as:
A. the rating level.
B. the maturity level.
C. the performance level.
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://www.isaca.org/resources/news-and-trends/industry-news/2020/effective-capability-and-maturity-assessment-using-cobit-2019
QUESTION 61 When assessing organizational structures, it is MOST helpful when subcriteria for each criterion are defined and linked to:
A. job descriptions.
B. capability levels.
C. performance metrics.
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://community.mis.temple.edu/mis5203sec001sp2019/files/2019/01/COBIT-2019-Framework-Introduction-and-Methodology_res_eng_1118.pdf (41)
QUESTION 62 The design factor associated with a highly regulated enterprise is likely to attribute MORE importance to which of the following?
A. Managed strategy and operations
B. Documented work products and policies
C. Understanding of the business by IT professionals
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
Reference: https://community.mis.temple.edu/mis5203sec001sp2019/files/2019/01/COBIT-2019-Framework-Introduction-and-Methodology_res_eng_1118.pdf (46)
QUESTION 63
Which of the following is a CRITICAL requirement when the IT function is strategic and crucial to the success of the business?
A. Documented IT policies and procedures
B. High involvement of IT-related roles in organizational structures
C. Highly capable security-related processes and ensured risk optimization
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 64
Which of the following enterprise risk management concepts is MOST important to fully understand prior to finalizing the design of an IT governance system?
A. The enterprise’s risk tolerance
B. The enterprise’s risk profile
C. The enterprise’s risk appetite
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
QUESTION 65 Which of the following is the FINAL action before completing the design of an IT governance system?
A. Resolving inherent priority conflicts
B. Determining a sourcing model
C. Selecting an implementation method
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 66
An enterprise that specializes in software development is designing a new IT governance system as part of a transition from traditional waterfall to a more agile approach. Which step in the design phase would this transition impact the
MOST?
A. Compliance requirements
B. Implementation method www
C. Sourcing model
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
QUESTION 67
Which element of a business case BEST enables senior leadership to assess the future success of the IT governance program?
A. Quantified benefits
B. Qualitative perspectiveC. Investment justification
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 68
An enterprise’s business line managers have voiced concerns because the cost of governance-required improvements is perceived as too expensive. How can the IT governance team BEST address this concern?
A. Improve the communication of business benefits.
B. Involve business line managers in the improvement planning process.
C. Share the return on investment (ROI) analysis.
Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
Reference: https://core.ac.uk/download/pdf/78102451.pdf (214)
QUESTION 69 Once IT governance is implemented, what is the NEXT phase in the life cycle of governance?
A. Measuring objectives
B. Initiating improvements
C. Updating the program
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Reference: https://cio-wiki.org/wiki/IT_Governance
QUESTION 70 One year after IT governance is implemented, what KEY question should be asked and evaluated?
A. Has the enterprise leveraged lessons learned?
B. Has the enterprise reduced its risk exposure?
C. Has the enterprise achieved expected benefits?
Correct Answer: C
Section: (none)
Explanation
Explanation/Reference:
Reference: https://www.bauer.uh.edu/parks/cobit_4.1.pdf (98)
QUESTION 71
In the implementation model, when is IT governance implementation risk BEST managed?
A. Throughout the life cycle
B. During the planning phase
C. Just prior to operationalization
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
QUESTION 72
What would be the PRIMARY reason for management to conduct a process capability assessment?
A. To better understand the current state as compared to the target
B. To better understand the cost of implementing the improved process
C. To better understand the current level of risk versus future risk
Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
QUESTION 73 Which of the following is ESSENTIAL to help ensure that a project’s benefits are identified and continually monitored?
A. A well-developed business case
B. Earned value management reporting
C. Stage gate reviews by a governance team
Correct Answer: A
QUESTION 74 Which of the following is a PRIMARY objective of reviewing the effectiveness of a new IT governance system that has been operational for 6 months?
A. Obtaining executive management support for IT governance
B. Identifying further governance requirements
C. Evaluating business performance reports
Correct Answer: A
Section: (none) Explanation
Explanation/Reference:
Posting Komentar untuk "Belajar Cobit 2019"