Isaca COBIT-2019 COBIT 2019 Foundation Exam Practice Test

Answer : C

The information security function within the IT corporate structure is responsible for classifying information using an agreed-upon classification scheme for a new data collection system. According to the COBIT 2019 Implementation Guide, information security is one of the key enablers of IT governance and management, and it includes the processes and practices for ensuring the confidentiality, integrity, and availability of information assets. One of the activities of information security is to define and implement an information classification scheme that categorizes information based on its sensitivity, criticality, and value to the enterprise.This scheme helps to determine the appropriate level of protection and controls for different types of information, especially for new data collection systems that may involve personal or sensitive data.Reference:: COBIT 2019 Implementation Guide: Implementing and Optimizing an Information and Technology Governance Solution, page 151: COBIT 2019 Design Guide: Designing an Information & Technology Governance Solution, page 62.

Answer : A

According to the COBIT 2019 Implementation Guide, the best way for senior leadership to communicate its expectations for IT governance prior to commencing a governance implementation plan is to include a scope statement in the business case. The scope statement defines the boundaries and objectives of the IT governance system, as well as the roles and responsibilities of the stakeholders involved.The scope statement also provides clarity and alignment on what is expected from IT governance and how it will support the enterprise strategy.2, p.25-26Reference:2: COBIT 2019 Implementation Guide: Implementing an Information and Technology Governance Solution

Answer : A

The IT design factor is a design factor that describes how an enterprise uses information and technology to achieve its goals and objectives. There are six IT design factors defined in COBIT 2019: strategic; operational; data-driven; compliance-driven; innovation-driven; customer intimacy-driven. Each design factor has different implications for the governance and management of information and technology in terms of focus areas, processes, practices, roles, structures, and metrics. When considering the role of IT design factor, and the design factor value is strategic, one of the management objectives that should be a priority is managed innovation (APO04), which involves identifying new opportunities for using information and technology to create value for the enterprise. This management objective supports the strategic role of IT in enabling business transformation, differentiation, competitiveness, growth, and sustainability.This management objective also involves establishing an innovation culture and process that encourages creativity, experimentation, collaboration, learning, and improvement5Reference:5: COBIT 2019 Design Guide: page 35-36 : COBIT 2019 Process Reference Guide: page 57-59

Answer : A

A guiding principle in the development of COBIT is that COBIT aligns with other related and relevant I&T standards, frameworks and regulations. This is based on the principle of integration, which states that ''governance of enterprise I&T should ensure integration into enterprise governance; alignment with other related standards, frameworks and regulations; and provision of a common language for all stakeholders'' . COBIT does not include or replace other standards, frameworks or regulations, but rather complements them by providing a holistic and comprehensive approach to governance of enterprise I&T.

Answer : B

The alignment goal titled ''Delivery of IT services in line with business requirements'' is most likely to be associated with the metric ''percent of IT services with defined operational costs and expected benefits''. This metric measures the extent to which IT services are aligned with business needs and expectations, and deliver value for money. The alignment goal is one of the 17 enterprise goals defined in COBIT 2019, which describe the outcomes that an enterprise wants to achieve from its use of information and technology.The alignment goal is based on the COBIT 2019 Framework4, page 36.Reference:4: COBIT 2019 Framework | Digital | English

Answer : B

The design factor associated with a highly regulated enterprise is likely to attribute more importance to documented work products and policies. A design factor is a characteristic or aspect of an enterprise that influences the design and implementation of a governance system. They include factors such as enterprise size, industry sector, risk profile, regulatory environment, sourcing model, etc. A highly regulated enterprise is one that operates in an industry or market that is subject to strict laws, rules, standards, or guidelines that affect its business processes, products, services, etc.A highly regulated enterprise would need to ensure compliance with these requirements by documenting its work products and policies, as well as by providing evidence of their implementation and effectiveness.12Reference:COBIT 2019 Framework: Introduction and Methodology,COBIT 2019 Design Guide: Designing an Information and Technology Governance Solution

Answer : C

Ensuring the program team knows and understands the enterprise goals is a part of the ''Where do we want to be?'' phase of the implementation. The implementation of a governance system is divided into seven phases, each with a set of activities and outputs. The ''Where do we want to be?'' phase involves defining the desired outcomes and target state of the governance system, based on the enterprise's vision, mission, values, and goals. One of the activities in this phase is to ensure that the program team is aware of and aligned with the enterprise goals, as well as their roles and responsibilities in achieving them.The answer is based on the COBIT 2019 Implementation Guide2, page 34.Reference:2: COBIT 2019 Implementation Guide | Digital | English