CRISC Certified in Risk and Information Systems Control – Question347

What are the key control activities to be done to ensure business alignment? Each correct answer represents a part of the solution. Choose two.

A.
Define the business requirements for the management of data by IT
B. Conduct IT continuity tests on a regular basis or when there are major changes in the IT infrastructure
C. Periodically identify critical data that affect business operations
D. Establish an independent test task force that keeps track of all events

Correct Answer: AC

Explanation:

Explanation:
Business alignment require following control activities:

  • Defining the business requirements for the management of data by IT.
  • Periodically identifying critical data that affect business operations, in alignment with the risk management model and IT service as well as the business continuity plan.

Incorrect Answers:
B: Conducting IT continuity tests on a regular basis or when there are major changes in the IT infrastructure is done for testing IT continuity plan. It does not ensure alignment with business.
D: This is not a valid answer.