EMT Practice Test

1. Question Content...


Question List

Question1: Which of the following is the MOST comprehensive method to report on overall IT performance to the board of directors?

Question2: Which of the following is the MOST important reason for selecting IT key risk indicators (KRIs)?

Question3: An IT strategy committee has reviewed an audit report indicating sales employees are using personal smartphones to conduct corporate business. Although the committee appreciates the business benefits, it is also concerned with the security risk. To deliver the business benefit, what should be the committee's FIRST recommendation?

Question4: The board of directors has mandated the use of geolocation software to track mobile assets assigned to employees who travel outside of their home country. To comply with this mandate, the IT steering committee should FIRST request

Question5: When developing an IT governance framework, it is MOST important for an enterprise to consider:

Question6: Which of the following should be the MAIN governance focus when implementing a newly approved bring your own device (BYOD) policy?

Question7: Following a strategic planning session, new IT objectives were announced. Which of the following is the MOST effective way for the CIO to ensure these objectives are cascaded to IT personnel?

Question8: The MOST effective way to ensure that IT supports the agile needs of an enterprise is to:

Question9: The use of new technology in an enterprise will require specific expertise and updated system development processes. There is concern that IT is not properly sourced. Which of the following should be the FIRST course of action?

Question10: Following a re-prioritization of business objectives by management, which of the following should be performed FIRST to allocate resources to IT processes?

Question11: Which of the following would be of MOST concern regarding the effectiveness of risk management processes?

Question12: An enterprise considering implementing IT governance should FIRST develop the scope of the IT governance program and:

Question13: A major data leakage incident at an enterprise has resulted in a mandate to strengthen and enforce current data governance practices. Which of the following should be done FIRST to achieve this objective?

Question14: Acceptance of an enterprise's newly implemented IT governance initiatives has been resisted by a functional group requesting more autonomy over technology choices. Which of the following is MOST important to accommodate this need for autonomy?

Question15: A healthcare enterprise that is subject to strict compliance requirements has decided to outsource several key IT services to third-party providers. Which of the following would be the BEST way to assess compliance and avoid reputational damage?

Question16: The CIO of an international enterprise is considering the use of an offshore cloud service provider to store customer data. Which of the following should be the MOST important consideration when making this decision?

Question17: As the required core competencies of the IT workforce are anticipated and identified, what is the NEXT step in strengthening the department's human resource assets?

Question18: Senior management is reviewing the results of a recent security incident with significant business impact.
Which of the following findings should be of GREATEST concern?

Question19: Which of the following is the MOST important consideration for data classification to be successfully implemented?

Question20: When implementing an IT governance framework, which of the following would BEST ensure acceptance of the framework?

Question21: Which of the following is MOST important to the successful implementation of enterprise architecture (EA)?

Question22: Best practice states that IT governance MUST:

Question23: An enterprise made a significant change to its business operating model that resulted in a new strategic direction. Which of the following should be reviewed FIRST to ensure IT congruence with the new business strategy?

Question24: An enterprise's service center is experiencing long delays in fulfilling !T service requests and very low customer satisfaction. The BEST way to determine if staff competency is the root cause of these performance problems is to compare required staff competencies with:

Question25: An enterprise-wide strategic plan has been approved by the board of directors. Which of the following would BEST support the planning of IT investments required for the enterprise?

Question26: To benefit from economies of scale, a CIO is deciding whether to outsource some IT services. Which of the following would be the MOST important consideration during the decision-making process?

Question27: A new and expanding enterprise has recently received a report indicating 90% of its data has been collected in just the last six months, triggering data breach and privacy concerns. What should be the IT steering committee's FIRST course of action to ensure new data is managed effectively?

Question28: The BEST time to identity metrics to measure the performance of an IT-enabled investment is during:

Question29: Which of the following is MOST critical to support IT governance cultural changes within an organization?

Question30: Which of the following would be the BEST way to facilitate the adoption of strong IT governance practices throughout a multi-divisional enterprise?

Question31: Which of the following is MOST important to effectively initiate IT-enabled change?

Question32: An enterprise plans to implement a business intelligence (Bl) tool with data sources from various enterprise applications. Which of the following is the GREATEST challenge to implementation?

Question33: An IT risk assessment for a large healthcare group revealed an increased risk of unauthorized disclosure of information. Which of the following should be established FIRST to address the risk?

Question34: A large financial institution is considering outsourcing customer call center operations which will allow the chosen vendor to access systems from offshore locations. Which of the following represents the GREATEST risk?

Question35: An enterprise wants to address the human factors of social engineering risk within the organization. From a governance perspective, which of the following is the BEST way to mitigate this risk?

Question36: What is the PRIMARY objective for performing an IT due diligence review prior to the acquisition of a competitor?

Question37: Which of the following is the BEST way to ensure the continued usefulness of IT governance reports for stakeholders?

Question38: Which of the following is the BEST method for determining an enterprise's current appetite for risk?

Question39: Which of the following components of a policy BEST enables the governance of enterprise IT?

Question40: An enterprise is developing an ethics program, and the ethical standards have been defined. Which of the following should the enterprise do NEXT?

Question41: Risk management strategies are PRIMARILY adopted to:

Question42: A regulatory audit assessed an enterprise's main transactional application as noncompliant. In addition to fines and required corrections, an agreement was reached to implement a set of governance controls over IT.
Accountability for these controls is BEST assigned to which of the following?

Question43: An enterprise's board of directors has determined that IT is not sufficiently supporting its corporate objectives, and has established a committee to address this problem. Which of the following should be the committees FIRST action?

Question44: An IT governance committee wants to ensure there is a clear description of the "data owner" in the enterprise data policy. Which of the following would BEST define the owner of data stored in an external cloud?

Question45: Reviewing which of the following should be the FIRST step when evaluating the possibility of outsourcing an IT system?

Question46: Which of the following is the PRIMARY purpose of an effective set of key risk indicators (KRIs)?

Question47: To enable the development of required IT skill sets for the enterprise, it is MOST important to define skill requirements based on:

Question48: Which of the following is an ADVANTAGE of using strategy mapping?

Question49: Before an IT strategy committee can approve an IT risk assessment framework, which of the following is MOST important to have established?

Question50: An enterprise is concerned with the potential for data leakage as a result of increased use of social media in the workplace, and wishes to establish a social media strategy. Which of the following should be the MOST important consideration in developing this strategy?

Question51: A rail transport company has the worst on-time arrival record in the industry due to an antiquated IT system that controls scheduling. Despite employee resistance, an initiative lo upgrade the technology and related processes has been approved. To maximize employee engagement throughout the project, which of the following should be in place prior to the start of the initiative?

Question52: Who is PRIMARILY accountable for delivering the benefits of an IT-enabled investment program to the enterprise?

Question53: An enterprise plans to expand into new markets in countries lacking data privacy regulations, increasing risk exposure. Which of the following is the BEST course of action for the CIO?

Question54: While assessing the feasibility of introducing new IT practices and standards into the IT governance framework, it is CRITICAL to understand an organization's:

Question55: To ensure that information can be traced to the originating event and accountable parties, an enterprise should FIRST:

Question56: Which of the following would provide the BEST input for prioritizing strategic IT improvement initiatives?

Question57: The CEO of an organization is concerned that there are inconsistencies in the way information assets are classified across the enterprise. Which of the following is be the BEST way for the CIO to address these concerns?

Question58: An executive sponsor of a partially completed IT project has learned that the financial assumptions supporting the project have changed. Which of the following governance actions should be taken FIRST?

Question59: An enterprise is trying to increase the maturity of its IT process from being ad hoc to being repeatable. Which of the following is the PRIMARY benefit of this change?

Question60: The board of directors of an enterprise has approved a three-year IT strategic program to centralize the core business processes of its global entities into one core system. Which of the following should be the ClO's NEXT step?

Question61: The MOST important aspect of an IT governance framework to ensure that IT supports repeatable business processes is:

Question62: An IT director is negotiating a contract with a vendor for application management services. There is concern by other departments that the outsourced services may not be delivered successfully. Which of the following is the BEST way for the IT director to address this concern?

Question63: An enterprise decides to accept the IT risk of a subsidiary located in another country even though it exceeds the enterprise's risk appetite. Which of the following would be the BEST justification for this decision?

Question64: Establishing a uniform definition for likelihood and impact BEST enables an enterprise to:

Question65: An enterprise has a zero-tolerance policy regarding security. This policy is causing a large number of email attachments to be blocked and is a disruption to enterprise. Which of the following should be the FIRST governance step to address this email issue?

Question66: An IT steering committee wants the enterprise's mobile workforce to use cloud-based file storage to save non-sensitive corporate data, removing the need for remote access to that information. Before this change is implemented, what should be included in the data management policy?

Question67: An enterprise is evaluating a possible strategic initiative for which IT would be the main driver. There are several risk scenarios associated with the initiative that have been identified. Which of the following should be done FIRST to facilitate a decision?

Question68: Which of the following is the MOST important benefit of developing an information architecture model consistent with enterprise strategy?

Question69: An enterprise's internal audit group has scheduled a control review of a payroll system project but has been told to wait until the system is implemented. Which of the following is the GREATEST risk associated with the delay?

Question70: From a governance perspective, which of the following roles is MOST important for an enterprise to keep in-house?

Question71: A CEO is concerned that IT costs have significantly exceeded budget without resulting benefits. The root causes are an overlap of IT projects and a lack of alignment with business demands. Which of the following would BEST enable remediation of this situation?

Question72: The MOST successful IT performance metrics are those that:

Question73: IT security is concerned with employees' increasing use of personal equipment for work-related purposes, while employees claim it allows them to be more productive. A decision on whether to modify the enterprise information security policy should be based on:

Question74: Which of the following is the PRIMARY purpose of information governance?

Question75: An enterprise's CIO requires all IT processes within the enterprise to be clearly defined. Which of the following would be the MOST immediate outcome?

Question76: A CEO determines the enterprise is lagging behind its competitors in consumer mobile offerings, and mandates an aggressive rollout of several new mobile services within the next 12 months. To ensure the IT organization is capable of supporting this business objective, what should the CIO do FIRST?

Question77: Which of the following is the BEST approach when reviewing The security status of a new business acquisition?

Question78: Which of the following MOST effectively demonstrates operational readiness to address information security risk issues?

Question79: Which of the following has the GREATEST influence on data quality assurance?

Question80: The CIO in a large enterprise is seeking assurance that significant IT risk is being proactively monitored and does not exceed agreed risk tolerance levels. The BEST way to provide this ongoing assurance is to require the development of:

Question81: Results of an enterprise's customer survey indicate customers prefer using mobile applications. However, this same survey shows the enterprise's mobile applications are considered inferior compared to legacy browser-based applications. Which of the following should be the FIRST step in creating an effective long-term mobile application strategy?

Question82: In a large enterprise, which of The following is the MOST effective way to understand the business activities associated with the enterprise's information architecture?

Question83: A marketing enterprise is considering procuring customer information to more accurately target customer communications and increase sales. The data has a very high cost to the enterprise. Which of the following would provide the MOST comprehensive view into the potential value to the organization?

Question84: An enterprise experiencing issues with data protection and least privilege is implementing enterprise-wide data encryption in response. Which of the following is the BEST approach to ensure all business units work toward remediating these issues?

Question85: The CEO of a large enterprise has announced me commencement of a major business expansion that will double the size of the organization. IT will need to support the expected demand expansion. What should the CIO do FIRST?

Question86: Which of the following is the BEST IT architecture concept to ensure consistency, interoperability, and agility for infrastructure capabilities?

Question87: Which of the following is the GREATEST impact to an enterprise that has ineffective information architecture?

Question88: An enterprise is contracting with an outsourcing partner for a long-term engagement. The BEST time for the enterprise to plan for the event of contract termination is when:

Question89: Supply chain management has established a supplier policy requiring multiple technology suppliers. What is the BEST way to ensure the success of this policy?

Question90: An enterprise's executive team has recently released a new IT strategy and related objectives. Which of the following would be the MOST effective way for the CIO to ensure IT personnel are supporting the new strategy's objectives?

Question91: An audit report has revealed that data scientists are analyzing sensitive "big data" files using an offsite cloud because corporate servers do not have the necessary processing capabilities. A review of policies indicates this practice is not prohibited. Which of the following should be the FIRST strategic action to address the report?

Question92: Which of the following is the MOST valuable input when quantifying the loss associated with a major risk event?

Question93: Which of the following is MOST important to consider when planning to implement a cloud-based application for sharing documents with internal and external parties?

Question94: Due to continually missed service level agreements (SLAs), an enterprise plans to terminate its contract with a vendor providing IT help desk services. The enterprise s IT department will assume the help desk-related responsibilities. Which of the following would BEST facilitate this transition?