CISA Certified Information Systems Auditor – Question2592

IT governance is PRIMARILY the responsibility of the:

A.
chief executive officer.
B. board of directors.
C. IT steering committee.
D. audit committee.

Correct Answer: B

Explanation:

Explanation:
IT governance is primarily the responsibility of the executives and shareholders {as represented by the board of directors). The chief executive officer is instrumental in implementing IT governance per the directions of the board of directors. The IT steering committee monitors and facilitates deployment of IT resources for specific projects in support of business plans. The audit committee reports to the board of directors and should monitor the implementation of audit recommendations.