• No results found

Cobit Exam Test 2

N/A
N/A
Protected

Academic year: 2021

Share "Cobit Exam Test 2"

Copied!
9
0
0

Loading.... (view fulltext now)

Full text

(1)

SIMULADO 1 – COBIT FOUNDATION

---1 ) What is the likely problem encountered when trying aling IT with business?

a) The projects are too complex b) Use of external service providers c) The changes tend to be always urgents d) Inadequate process implementation

---2 ) To satisfy business requirements, information needs to conform to certain criteria, with COBIT component refer as

a) IT Process b) IT Domains c) Information Criteria d) Control Objectives

---3 ) Which level of matury in COBIT is associated with a process that has controls in place but are not documented.

a) Level 1 - Initial b) Level 2 - Repeatable c) Level 3 - Defined d) Level 4 - Management e) Level 5 - Optimized ---4 ) The COSO Framework is widely accepted for

a) IT management b) IT Process c) Support Process d) Internal Controls

(2)

---5 ) Which COBIT Product enable the users to benchmark and compare their organization with others?

a) Community

b) COBIT Framework

c) COBIT Implementation Tool d) COBIT Online

---6 ) Which part of COBIT has resources to help assess the capability of IT Process?

a) Control Practices

b) IT Governance Implementation Guide c) Framework

d) Control Objectives

---7 ) What is the main objective of COBIT QuickStart?

a) Providing a generic road map for implementing IT governance b) Providing guidance on why controls are worth implementing

c) Focusing the organisation on essential steps for implementing information security

d) Providing a baseline of control for the smaller organisation

---8 ) CobiT can be used by a number of audiences. What is the primary reason given for CobiT benefiting management?

a) Assists obtain assurance on control of IT services.

b) Useful to substantiate opinions about IT internal controls. c) Helps balance risk and control investment decisions. d) A basis to provide advice on IT controls.

---9 ) What does a Key Goal Indicator measure?

a) Result of a control objective b) Outcome of a business process c) Performance of an IT process d) A concern of management

(3)

---10 ) The CobiT Framework advocates which one of the following approaches to control implementation? a) Process orientated b) Resource usage c) Baseline controls d) Risk assessment

---11 ) In the CobiT navigation aid, the control of an IT process is intended to satisfy which one of the following?

a) Control statements b) Business requirements c) Control practices d) Performance indicators

---12 ) It Governance is best summarised by which one of the following statements?

a) organisational structures, practices, procedures and policies designed to provide assurance

b) the purpose to be achieved by implementing control procedures c) enabling factors of IT processes

d) a structure of relationships and processes to direct and control

---13 ) The CobiT Key Performance Indicators are intended to be which one of the following?

a) Long term goals for IT b) Self assessment scales c) Appraisal criteria for staff d) Short, focused and measurable

---14 ) How are application systems and data treated within the CobiT Framework?

a) as a Resource

b) as a Critical success factor c) as a Business requirement d) as an IT process

(4)

---15 ) The CobiT defined IT process of Data Management is found in which Domain?

a) Monitoring

b) Planning and Organisation c) Acquisition and Implementation d) Delivery and Support

---16 ) Controls Practice provide guidance

a) the hierarchy of control responsibilities b) how to use detail controls objectives

c) why controls are needed and how to implement them d) the importance control activities and tasks

---17 ) Which of the following framework is more used for Capability Maturity Model related to software development?

a) COSO b) ITIL c) CMM d) COBIT

---18 ) Which of the following IT Process help to assure that service providers are meeting business requirements?

a) DS1 Define and Manage Service Levels b) DS3 Manage Performance and Capacity c) DS2 Manage Third-party Services d) AI4 Enable Operation and Use

---19 ) Which of the following is an IT resource identified in COBIT?

a) Data Base System b) Network

c) Information d) Servers

(5)

---20 ) Which of the following is an IT Governance Concern of a trading partner?

a) System changes are not made without the partner approval b) The IT systems are based on the latest technology

c) The IT operation is cost effective and efficient

d) Confidential company information is not given to competitor ---21 ) ISO 17799 provides the detailed how to do it for:

a) service quality b) service delivery c) project management

d) information security management

---22 ) Which COBIT IT Resource can be defined as being hardware, operation systems, database management systems, networking and environment?

a) Software b) Infrastructure c) Systems

---23 ) Where in COBIT are resources found to help obtain, evaluate, assess and substantiate? a) Framework b) Control Objectives c) Management Guidelines d) Audit Guidelines

---24 ) Which of the following is a state in the generic audit process defined in the Audit Guidelines? a) Evaluation b) Identifying Users c) Defining Approaches d) Measuring Performance

(6)

---25 ) When a process is informal and reactive what is the level of maturity? a) Level 1 - Initial b) Level 2 - Repeatable c) Level 3 - Defined d) Level 4 - Managed ---26 ) COBIT is compatible with others standards because it:

a) Covers IT controls

b) can be used as project management guide c) is positioned centrally at the general level d) doesnt have any reference to others standards

---27 ) Which of the following is a security requirement within the COBIT Information Criteria? a) Time b) Effectiveness c) Integrity d) Quality

---28 ) Which COBIT product provides updated information about COBIT?

a) COBIT Framework

b) COBIT Implementation tools c) COBIT Online

d) COBIT Resources

---29 ) Which of the following is a characteristic of a control framework? a) Process orientation b) People orientation c) Technology orientation d) Resources orientation

(7)

---30 ) Key Goal Indicators (KGIs) measure:

a) how well the business uses IT b) The achievement of objectives c) process performance

d) the effectivenss of users of IT services

---31 ) The Information Critereia concerned with the protection of information from unauthorized disclosure is:

a) Compliance b) Reliability c) Availability d) Confidentiality

---32 ) In DS2 - Manage Third-party Services an ongoing program that identify and institutionalize best practices indicates which level of maturity?

a) Level 2- Repeatable b) Level 3- Defined c) Level 4- Managed d) Level 5- Optimised

---33 ) Which of the following is included as a component part of the COBIT mission?

a) Provide consulting and implementation services b) Produce an ISO standard

c) Certify companies and products

d) Develop internationally accepted control objectives

---34 ) What is the high-level objective concerned to to maintain the integrity of information and protect IT assets requires a security management process?

a) DS5 Ensure Systems Security

b) DS12 Manage the Physical Environment c) PO9 Assess and Manage IT Risks

d) AI7 Install and Accredit Solutions and Changes

(8)

---35 ) What is the high-level objective concerned to management of all IT projects?

a) PO1 Define a Strategic IT Plan

b) PO4 Define the IT Processes, Organisation and Relationships c) PO5 Manage the IT Investment

d) PO10 Manage Projects

---36 ) What is the high-level objective that is related to production of documentation and manuals for users?

a) AI1 Identify Automated Solutions b) DS7 Educate and Train Users

c) DS8 Manage Service Desk and Incidents d) AI4 Enable Operation and Use

---37 ) Which of the following is a IT Key Goal Indicators?

a) # of formal SLA review meetings with business per year b) % of service levels reported

c) % of service levels reported in an automated way

d) % of business stakeholders satisfied that service delivery meets agreed-upon levels

---38 ) Which of the following is a Key Performance Indicators?

a) % of projects on time, on budget

b) % of projects meeting stakeholder expectations

c) % of stakeholders participating in projects (involvement index) d) % of projects in annual IT plan subject to feasibility study ---39 ) The COBIT Framework links:

a) managements IT expectations to managements IT responsibilities b) audits IT expectations to managements IT expectations

c) managements IT expectations to audits IT responsibilities

d) managements IT expectations to business management responsibilities

(9)

---40 ) COBIT Framework can be used only in large organizations a) True b) False RESPOSTAS 1. a 2. c 3. b 4. d 5. d 6. b 7. d 8. c 9. b 10. a 11. b 12. d 13. d 14. a 15. d 16. c 17. c 18. c 19. c 20. a 21. d 22. b 23. d 24. a 25. a 26. c 27. c 28. c 29. a 30. b 31. d 32. d 33. d 34. a 35. d 36. a 37. d 38. c 39. a 40. b

References

Related documents

The pieces on this CD are all by Israeli-born composer Shulamit Ran: Concerto da Camera II (clarinet, string quartet, and piano), East Wind (flute solo), Inscriptions (violin solo),

examining charisma within healthcare settings furthers the concept, in particular by drawing 14.. attention to the discursive features of ecologies and the ‘non-innocence’

categories to consider, we focused on insights in relation to brand (what feelings/emotions characterize the City of Ramsey?), culture (what do people in Ramsey enjoy doing?),

Los anuncios realizados por el Presidente Piñera hace un año pueden clasificarse en tres grupos de propuestas: aquellas que tienen continuidad con políticas pasadas, como lo

Reprint titled al-Lubab: Syriac-Arabic Dictionary, Piscataway: Gorgias Press, 2007.. Al-Manāhegh seu syntaxis et rhetoricae

Funds in Program 12817 are allocated primarily to provide substitute coverage for special education and general education teachers to attend IEP

Effleurage massage has a significant effect on reducing the level of dysmenorrhea pain in adolescents with p <0.05 (p = 0.000). The research about the effect of effleurage

Our objectives were to test system control parameters, policies and procedures to obtain reasonable assurance that sufficient controls exist over the Arkansas Administrative