COBIT-Design-and-Implementation 무료 덤프문제 온라인 액세스

When assessing the impact of design factors, which of the following factors could lead to the level of the threat landscape being considered as high?

• A.Technology deployment
• B.Enterprise strategy
• C.Capability level
• D.Geopolitical situation

The PRIMARY purpose of including assurance and compliance auditors during the planning phase of an IT implementation initiative is to:

• A.Determine if requirements are achievable.
• B.Obtain an independent perspective.
• C.Validate completeness of the initiative.
• D.Ensure all risks have been considered.

Which of the following components should be considered for inclusion when considering the threat landscape design factor?

• A.Information flows including security policy
• B.Compliance and assurance capabilities
• C.Information security focus areas
• D.Impact and probability levels

When considering the compliance requirement design factor, and the design factor value is high, which of the following should be a management objective priority?

• A.Managed relationships
• B.Managed security (AP013)
• C.Managed data (AP014)
• D.Managed risk

Which of the following BEST explains whether the design factors Threat Landscape and Compliance Requirements would differ between a military defense contractor and a pharmaceutical company developing innovative genetic cancer treatments?

• A.They would not differ, because both enterprises are subject to extensive regulations and operate in a high threat landscape.
• B.It is impossible to accurately assess the threat landscape for both enterprises.
• C.Each enterprise's industry sectors are very different, making meaningful comparison impossible.
• D.They would be very different because both enterprises are operating in completely different environments.