CGEIT Domain 4 (Additional MCQ)

help IT manage risk more efficiently and effectively

establish controls to strengthen the risk profile

conduct control self assessment workshops

enable successful execution of the corporate strategy

in the requirements stage

at every stage of software development

in the design and development stage

in the testing stage to avoid any potential shortcoming

enhance the enterprise's capacity to create value

report on a timely basis

minimize risk and ensure increased productivity

select the best risk responses for the enterprises

creation of multiple sourcing strategies

Inclusion of controls and service level agreements into contracts

development of policies and procedures

performance of due diligence audits

Decisions required to enable implementation of actions

Decisions about transforming strategy into action

Decisions on business goals

Decisions on risk relating to achievement of quality control for IT objectives

perform its mission

protect business and IT assets

deliver best quality services

increase profitability

top management is prepared to invest more money into IT security

employees have an appropriate awareness of risk and are comfortable talking about it

risk assessment is performed in all areas of IT and business management

the business and IT are aligned in risk assessment and risk ranking

respective business managers

strategy committee

board of directors

IT risk response council

Investment financial risk

Credit risk

Market risk

Operational risk

risk ranking methodology

the magnitude multiplied by the probability of risk

management's culture toward risk

experts on the risk assessment team