Once an IT governance framework has been defined, which of the following is the MOST effective approach to align IT to business objectives?

A. Auditing the alignment of IT to business objectives regularly
B. Reviewing the return on investment of IT initiatives on a regular basis
C. Establishing a cross business unit committee to prioritize IT investment
D. Reporting IT investment and performance to senior management regularly

A data governance strategy has been defined by the IT strategy committee which includes privacy objectives related to access controls, authorized use, and data collection. Which of the following should the committee do NEXT?

A. Mandate the creation of a data privacy policy.
B. Establish a data privacy budget.
C. Perform a data privacy impact assessment.
D. Mandate data privacy training for employees.

Which of the following is the BEST approach to ensure IT technical competencies support the enterprise?

A. Ensure there is adequate budget for IT technical training.
B. Determine training requirements from customer service satisfaction surveys.
C. Align training requirements to the capabilities needed to support the business strategy.
D. Hold annual job fairs targeting new graduates in IT technical fields.

Following a merger of two major corporations, the new strategic goal is “One business function. One IT system.” Which of the following should be the FIRST step to achieve this goal?

A. Form a combined IT steering committee.
B. Document requirements for each business function.
C. Create a standard enterprise architecture.
D. Define service level agreements with each business function.

A CEO determines the enterprise is lagging behind its competitors in consumer mobile offerings, and mandates an aggressive rollout of several new mobile services within the next 12 months. To ensure the IT organization is capable of supporting this business objective, the enterprise's CIO should FIRST:

A. procure contractors with experience in mobile application development.
B. task direct reports with creating training plans for their teams.
C. create a sense of urgency with the IT team that mobile knowledge is mandatory.
D. request an assessment of current in-house mobile technology skills.

The board of directors of an enterprise has questioned whether the business is focused on optimizing value. The IT strategy committee's BEST action to address the board's concern is to:

A. initiate reporting and review of key IT performance metrics.
B. form a technology council to monitor the efficiency of project implementation.
C. conduct a portfolio review to assess the benefits realization of IT investments.
D. conduct a benchmark to assess IT value relative to competitors.

An enterprise decides to accept the IT risk of a subsidiary located in another country even though it exceeds the enterprise's risk appetite. Which of the following would be the BEST justification for this decision?

A. Local market common practices
B. Risk framework alignment
C. Technical gaps among subsidiaries
D. Compliance with local regulations

Which of the following is MOST critical for sustaining a newly implemented IT governance program?

A. Launch an enterprise-wide IT governance awareness program.
B. Designate a board representative to sponsor the IT governance program.
C. Ensure that there are IT policies, procedures, and standards in place.
D. Benchmark the program periodically against industry peers.

Which of the following would be the BEST way for an enterprise to address new legal and regulatory requirements applicable to IT?

A. Benchmark how other IT organizations are treating the new requirements.
B. Adopt a zero-tolerance approach for noncompliance with regulatory matters.
C. Treat as a risk to be assessed before developing a response.
D. Use a cost-benefit analysis to determine if compliance is warranted.

Which of the following is the GREATEST expected strategic organizational benefit from the standardization of technical platforms?

A. Reduces IT operational training costs
B. Reduces response time
C. Meets regulatory compliance requirements
D. Optimizes infrastructure investments