EMT Practice Test

1. Question Content...


Question List

Question1: An IT risk committee is trying to mitigate the risk associated with a newly implemented bring your own device (BYOD) policy and supporting mobile device management (MDM) tools. Which of the following would be the BEST way to ensure employees understand how to protect sensitive corporate data on their mobile devices?

Question2: Which of the following is the BEST way to maximize the value of an enterprise's information aseet base?

Question3: Enterprise analysis provides many things for an organization. All of the following are tasks included in enterprise analysis except for which one?

Question4: In which of the following editions of COBIT was "Management Guidelines" added?

Question5: Which of the following is a practice of forecasting possible risks to the organization and taking steps to mitigate their impact on operations?

Question6: Which of the following would a CIO use to present the overall view of IT performance to the board of directors?

Question7: Which of the following process groups is the most efficient at providing resources to the development of the procurement process?

Question8: Which of the following processes contained in the Value Governance domain of Val IT defines information requirements?

Question9: DRAG DROP
The Information Technology Infrastructure Library (ITIL) is a set of concepts and policies for managing information technology (IT) infrastructure, development, and operations. Drag and drop the ITIL processes that focus on service operation, i.e. operational processes in Service Support, in the correct places.

Question10: Which of the following terms related to risk management represents the estimated frequency at which a threat is expected to occur?

Question11: Which of the following individuals provides service feedback to the providers?

Question12: In which of the following editions of COBIT was "Management Guidelines" added?

Question13: An IT steering committee wants the enterprise's mobile workforce to use cloud-based file storage to save non- sensitive corporate data, removing the need for remote access to that information. Before this change is implemented, what should be included in the data management policy?

Question14: Which of the following is a process that occurs due to mergers, outsourcing or changing business needs?

Question15: Senior leadership is concerned about a recent trend of excessive exceptions to existing controls. Which of the following should be implemented to address this concern?

Question16: IT senior management has just received a survey report indicating that more than one third of the organization's key IT staff plan to retire within the next 12 months. Which of the following is the MOST important governance action to prepare for this possibility?

Question17: Which of the following types of risks includes liability torts, property damage, natural catastrophe and financial risk?

Question18: Which of the following sub-processes of Service Portfolio Management is used to define the overall goals that the service provider should follow in its development based on the outcome of Strategic Service Assessment?

Question19: Which of the following types of IT organizational structures states that all IT resources are centralized under a single reporting structure with centralized resource allocation (staffing), and the organizational structure is built around the resource pools?

Question20: You work as the project manager for BlueWell Inc. You are monitoring the project performance. You want to make a decision to change the project plan to eliminate a risk in order to protect the project objectives.
Which of the following strategies will you use to tackle the risk?

Question21: Where can a project manager find risk-rating rules?

Question22: Which of the following factors influence the operating environment of an enterprise?
Each correct answer represents a complete solution. Choose all that apply.

Question23: Which of the following stages of the Forrester's IT Governance Maturity Model describes that the IT governance processes are applied across the enterprise where all business units/entities conform to the same set of IT governance processes, and IT investment decisions are based on the enterprise view?

Question24: Shawn is the project manager of the WHT Project for his company. In this project Shawn's team reports that they have found a way to complete the project work for less cost than what was originally planned.
The project team presents a new software that will help to automate the project work. While the software and the associated training costs $25,000 it will save the project nearly $65,000 in total costs. Shawn agrees to the software and changes to the project management plan accordingly. What type of risk response has been used in this instance?

Question25: A regulatory audit assessed an enterprise's main transactional application as noncompliant. In addition to fines and required corrections, an agreement was reached to implement a set of governance controls over IT. Accountability for these controls is BEST assigned to which of the following?

Question26: To ensure that information can be traced to the originating event and accountable parties, an enterprise should FIRST:

Question27: An IT audit reveals inconsistent maintenance of data privacy in enterprise systems primarily due to a lack of data sensitivity categorizations. Once the categorizations are defined, what is the BEST long-term strategic response by IT governance to address this problem?

Question28: You are the project manager of the NKJ Project for your company. The project's success or failure will have a significant impact on your organization's profitability for the coming year. Management has asked you to identify the risk events and communicate the event's probability and impact as early as possible in the project. Management wants to avoid risk events and needs to analyze the cost-benefits of each risk event in this project. What term is assigned to the low-level of stakeholder tolerance in this project?

Question29: Which of the following components of the COSO ERM identifies the required information, captures it, and communicates it in a form and time frame that enable people to carry out their responsibilities?

Question30: Which of the following BEST demonstrates the effectiveness of enterprise IT governance?

Question31: Which of the following has the GREATEST influence on data quality assurance?

Question32: Which of the following will BEST enable an enterprise to convey IT governance direction and objectives?

Question33: Which of the following are the main benefits of using Information Services Procurement Library (ISPL)?
Each correct answer represents a complete solution. Choose all that apply.

Question34: An internal audit revealed a widespread perception that the enterprise's IT governance reporting lacks transparency Which of the following should the CIO do FIRST?

Question35: Paul has been asked to complete SWOT analysis for his solution scope. What does
SWOT analysis mean?

Question36: Which of the following would BEST help to improve an enterprise's ability to manage large IT investment projects?

Question37: Which of the following is MOST important for IT governance to have in place to ensure the enterprise can maintain operations during extensive system downtime?

Question38: Which of the following processes contained in the Portfolio Management domain of Val IT establishes an investment threshold?

Question39: Gary is the project manager for his organization. He is working with the project stakeholders on the project requirements and how risks may affect their project. One of the stakeholders is confused about what constitutes risks in the project. Which of the following is the most accurate definition of a project risk?

Question40: Which of the following processes is responsible for controlling, recording and reporting on versions, attributes, and relationships relating to components of the Information Technology (IT) infrastructure?

Question41: An enterprise considers implementing a system that uses a technology that is not in line with its IT strategy. The business case indicates significant benefit to the enterprise. Which of the following is the BEST way to manage this situation within an IT governance framework?

Question42: Which of the following factors influence the operating environment of an enterprise?
Each correct answer represents a complete solution. Choose all that apply.

Question43: Which of the following resource categories includes costs, productivity, availability, and change and configuration management?

Question44: Which of the following objectives are used by the system to decrease costs or revenues?

Question45: A large financial institution is considering outsourcing customer call center operations which will allow the chosen vendor to access systems from offshore locations. Which of the following represents the GREATEST risk?

Question46: Which of the following steps of development of business case describes the financial benefits analysis?

Question47: An enterprise is planning a transformation initiative by leveraging emerging technology that will have a significant impact on existing products and services Which of the following is the BEST way for IT to prepare for this change?

Question48: Which of the following should be the FIRST action taken by a newly formed IT governance committee to ensure reports are compliant with regulations and identify key IT risks?

Question49: Which of the following systems come under the category of linking systems to connect an enterprise with its customers and supplier? Each correct answer represents a complete solution. Choose all that apply.

Question50: Which of the following is the PRIMARY purpose of information governance?

Question51: You are working with your project stakeholders to identify risks within the JKP Project.
You want to use an approach to engage the stakeholders to increase the breadth of the identified risks by including internally generated risk. Which risk identification approach is most suited for this goal?

Question52: An enterprise is replacing its customer relationship management (CRM) system with a cloud-based system. Which of the following should be done FIRST when preparing for data migration"*

Question53: You are hosting a collection of stakeholders from across the organization to identify the ideas and attitudes about your company's help desk. You want the stakeholders to honestly share their opinions about the help desk service so you can identify problems, solutions, and take actions to improve the service. What type of requirements elicitation activity is this?

Question54: The board of directors of an enterprise has approved a three-year IT strategic program to centralize the core business processes of its global entities into one core system. Which of the following should be the ClO's NEXT step?

Question55: The IT department has determined that problems with a business report are due to quality issues within a set of data To whom should IT refer the matter for resolution?

Question56: Which of the following components of COSO ERM framework encompasses the nature of an enterprise, and sets the basis for how risk is viewed and addressed by an organization people, including risk management philosophy and risk appetite, integrity and ethical values, and the environment in which it operates?

Question57: A board of directors has just received a report indicating that only a small number of IT initiatives have been completed on time and within budget, A third of the projects were cancelled prior to completion, and more than half will cost almost double their original estimates. An analysis has determined that no one is held responsible for the completion of investment initiatives, and there is no consistency in execution. Which of the following would BEST help the enterprise address these problems?

Question58: Which of the following is the BEST indication of effective IT-business strategic alignment?

Question59: Individual business units within an enterprise have been designing their own IT solutions without consulting the IT department. From a governance perspective, what is the GREATEST issue associated with this situation?

Question60: To ensure that the process of developing a business case for IT-enabled investments continually supports benefits realization, the benefits expected from investment programs must be actively managed through:

Question61: Which of the following objectives are used by the system to decrease costs or revenues?

Question62: John is the project manager of the NHQ Project for his company. His project has 75 stakeholders, some of which are external to the organization. John needs to make certain that he communicates about risk in the most appropriate method for the external stakeholders. Which project management plan will be the best guide for John to communicate to the external stakeholders?

Question63: Which of the following is MOST important when an IT-enabled business initiative involves multiple business functions?

Question64: Marsha is the project manager of the NHQ Project. There's a risk that her project team has identified, which could cause the project to be late by more than a month. Marsha does not want this risk event to happen so she devises extra project activities to ensure that the risk event will not happen. The extra steps, however, will cost the project an additional $10,000. What type of risk response is this approach?

Question65: Enterprise IT has overseen the implementation of an array of data services with overlapping functionality leading to business inefficiencies. Which of the following is the MOST likely cause of this situation?

Question66: After shifting from lease to purchase of IT infrastructure and software licenses, an enterprise has to pay for unexpected lease extensions causing significant cost overruns. The BEST direction for the IT steering committee would be to establish;

Question67: You are the HR Professional for your organization and you're working with the management to define the role of contractors versus employees in your organization.
According to the Internal Revenue Service, there are three categories of control that help determine whether a person is a contractor or an employee. Which one of the following is not one of the three levels of control as defined by the IRS for employee versus contractor?

Question68: An enterprise experiencing issues with data protection and least privilege is implementing enterprise-wide data encryption in response. Which of the following is the BEST approach to ensure all business units work toward remediating these issues?

Question69: Which of the following individuals provides service feedback to the providers?

Question70: Enterprise analysis provides many things for an organization. All of the following are tasks included in enterprise analysis except for which one?

Question71: Which of the following should be the PRIMARY consideration for an enterprise when prioritizing IT projects?

Question72: Fill in the blank with an appropriate phrase.
The _______ portion of the issue log records the previous pending issues that have been taken care of.

Question73: Gary is the project manager of the MMQ project for his company. He is working with his project team to plan the risk responses for his project. Sarah, a project team member, does not understand the process that Gary is using to plan the risk responses. Which approach is the preferred method to address project risks and the risk responses?

Question74: A steering committee has been advised by the IT project management office that individual business units are building systems components that could be leveraged by other business units. Instead, identical components are being duplicated across the enterprise. Which of the following committee directives would be the BEST way to reduce the likelihood of this duplication?

Question75: Which of the following quadrant analysis identifies the key issues of working well with other functions, IT value realization over time rather than-just cost, and being business process-focused but solution driven?

Question76: Holly and Gary are HR Professionals in their organization and they're working to develop the strategic plan for their organization. Holly and Gary are using SWOT analysis to help understand the needs of human, financial, technological, capital, and other aspects of their organization. What is SWOT?

Question77: An enterprise is undertaking a multi-year portfolio of IT initiatives to replace core accounting systems. The program management team has developed a business case and is defining a roadmap for the initiatives. Of the following, who should be responsible for defining the optimization criteria for the portfolio?

Question78: Which of the following BEST reflects mature risk management in an enterprise?

Question79: You work as a project manager for TechSoft Inc. You are working with the project stakeholders on the qualitative risk analysis process in your project. You have used all the tools to the qualitative risk analysis process in your project. Which of the following techniques is NOT used as a tool in qualitative risk analysis process?

Question80: Your organization mainly focuses on the production of bicycles for selling it around the world. In addition to this, the organization also produces scooters. Management wants to restrict its line of production to bicycles. Therefore, it decides to sell the scooter production department to another competitor. Which of the following terms best describes the sale of the scooter production department to your competitor?

Question81: Which of the following is a way of delivering value to customers by facilitating outcome that customers wish to get without the control of specific costs and risks?

Question82: You are the project manager of the NHQ Project for your company. You have completed qualitative and quantitative analysis of your identified project risks and you would now like to find an approach to increase project opportunities and to reduce threats within the project. What project management process would best help you?

Question83: TOGAF is based on four pillars, called architecture domains. Which of the following architecture domains provides a blueprint for the individual application systems to be deployed, the interactions between the application systems, and their relationships to the core business processes of the organization with the frameworks for services to be exposed as business functions for integration?

Question84: An IT director is negotiating a contract with a vendor for application management services. There is concern by other departments that the outsourced services may not be delivered successfully. Which of the following is the BEST way for the IT director to address this concern?

Question85: Which of the following BEST reflects the ethical values adopted by an IT organization?

Question86: An enterprise has made the strategic decision to begin a global expansion program which will require opening sales offices in countries across the world. Which of the following should be the FIRST consideration with regard to the IT service desk which will remain centralized?

Question87: When considering an IT change that would enable a potential new line of business, the FIRST strategic step for IT governance would be to ensure agreement among the stakeholders regarding:

Question88: Which of the following phases in SDLC provides the basis for acquiring the resources needed to achieve a solution?

Question89: Which of the following entities is structured PRIMARILY to ensure goals and objectives are aligned between IT and the business?

Question90: You are the project manager for your organization. You are preparing for the quantitative risk analysis. Mark, a project team member, wants to know why you need to do quantitative risk analysis when you just completed qualitative risk analysis. Which one of the following statements best defines what quantitative risk analysis is?

Question91: Which of the following outsourcing defines the performance objectives reached by negotiation between the user and the provider of a service, or between an outsourcer and an organization?

Question92: Which of the following processes is described in the statement below?
"This is the process of numerically analyzing the effect of identified risks on overall project objectives."

Question93: Which of the following guides provides risk and value statements to help identify and validate the need to execute each control objective?

Question94: Which of the following individuals supports and contributes to customer's governance approach?

Question95: CORRECT TEXT
Fill in the blank with an appropriate word.
________is also referred to as corporate governance, and covers issues such as board structures, roles and executive remuneration.

Question96: When developing a business case for an enterprise resource planning (ERP) implementation, which of the following, if overlooked, causes the GREATEST impact to the enterprise?

Question97: Which of the following individuals provides the funding, and want to see the return on their investment and strategic alignment with their strategic objectives?

Question98: The IT director of a large project-driven enterprise is concerned that all recently completed IT projects have exceeded their budgets. Which of the following would be the BEST way to address this concern?

Question99: Which of the following will BEST help to ensure that the governance of enterprise IT is consistently executed?

Question100: You are a management consultant. WebTech Inc., an e-commerce organization, hires you to analyze its SWOT. Which of the following factors will you not consider for the SWOT analysis?

Question101: IT security is concerned with employees' increasing use of personal equipment for work-related purposes, while employees claim it allows them to be more productive. A decision on whether to modify the enterprise information security policy should be based on:

Question102: You are the project manager of the NNN project for your company. You and the project team are working together to plan the risk responses for the project. You feel that the team has successfully completed the risk response planning and now you must initiate what risk process it is. Which of the following risk processes is repeated after the plan risk responses to determine if the overall project risk has been satisfactorily decreased?

Question103: Which conduct stakeholder analysis technique is useful for identifying shared characteristics of a stakeholder group?

Question104: In an enterprise that has worldwide business units and a centralized financial control model, which of the following is a barrier to strategic alignment of business and IT?

Question105: You work as the project manager for Bluewell Inc. You are working on NGQQ Project for your company.
You have completed the risk analysis processes for the risk events.
You and the project team have created risk responses for most of the identified project risks. Which of the following risk response planning techniques will you use to shift the impact of a threat to a third party, together with the responses?

Question106: For the entire IT organizations to be agile, all members of the IT organizations need to understand the need for agility and be committed to this process. Which of the following working principles or activity loops are involved for the IT organizations to be agile?
Each correct answer represents a complete solution. Choose all that apply.

Question107: You work as a project manager for TechSoft Inc. You are working with the project stakeholders on the qualitative risk analysis process in your project. You have used all the tools to the qualitative risk analysis process in your project. Which of the following techniques is NOT used as a tool in qualitative risk analysis process?

Question108: Benchmarking is a continuous process that can be time consuming to do correctly.
Which of the following guidelines for performing benchmarking identifies the critical processes and creates measurement techniques to grade the process?

Question109: When developing an IT strategic plan that supports an enterprise's business goals which of the following should be done FIRST?

Question110: The PRIMARY reason for using quantitative criteria in developing business cases for IT projects is to:

Question111: In which of the following methods of risk mitigation does the senior management approve the implementation of the controls that are recommended by the risk management team, and that will lower the risk to an acceptable level?

Question112: Which of the following processes involves choosing the alternative strategies, executing a contingency or fallback plan, taking corrective action, and modifying the project management plan?

Question113: The BEST way to manage an outsourced vendor relationship is by:

Question114: Which of the following is the main objective of business process outsourcing?

Question115: What is the formula for measuring the "usage gap"?

Question116: You are the project manager of the NHQ project for your company. You are working with your project team to complete a risk audit. A recent issue that your project team responded to, and management approved, was to increase the project schedule because there was risk surrounding the installation time of a new material. Your logic was that with the expanded schedule there would be time to complete the installation without affecting downstream project activities. What type of risk response is being audited in this scenario?

Question117: Which of the following steps are performed in the Scoping phase of IT Assurance methodology? Each correct answer represents a complete solution. Choose all that apply.

Question118: Which of the following risk functions ensures the product/service alignment with the customer requirements?

Question119: Which of the following guides emphasizes on the fundamental steps for implementing information security within the enterprise, and provides easy to follow guidance for addressing security aspects of IT governance?

Question120: Which of the following is a responsibility of an IT strategy committee?

Question121: Which document refers to the steps that must be taken if there is a major gap in the projected delivery quality of a service and the actual delivery?

Question122: The CEO of an organization is concerned that there are inconsistencies in the way information assets are classified across the enterprise. Which of the following is be the BEST way for the CIO to address these concerns?

Question123: You are the project manager for your company and a new change request has been approved for your project. This change request, however, has introduced several new risks to the project. You have communicated these risk events and the project stakeholders understand the possible effects these risks could have on your project. You elect to create a mitigation response for the identified risk events. Where will you record the mitigation response?

Question124: An enterprise is evaluating a Software as a Service (SaaS) solution to support a core business process. There is no outsourcing governance or vendor management in place. What should be the CEO's FIRST course of action?

Question125: Which of the following should be the MOST important consideration when defining an information architecture?

Question126: As seen from the perspective of how the enterprise defines and executes business strategies to achieve its goals and objectives, which of the following elements does the ERM comprise of? Each correct answer represents a complete solution. Choose all that apply.

Question127: A strategic systems project was implemented several months ago. Which of the following is the BEST reference for the IT steering committee as they evaluate its level of success?

Question128: What is the major goal of risk management in the decision-making process?

Question129: Marsha is the project manager of the NHQ Project. There's a risk that her project team has identified, which could cause the project to be late by more than a month. Marsha does not want this risk event to happen so she devises extra project activities to ensure that the risk event will not happen. The extra steps, however, will cost the project an additional $10,000. What type of risk response is this approach?

Question130: Lisa is the project manager of the FKN project for her organization. She is working with Sam, the CIO, to discuss a discount the vendor has offered the project based on the amount of materials that is ordered.
Lisa and Sam review the offer and agree that while their project may qualify for the discounted materials the savings is nominal and they would not necessarily pursue the savings. Lisa documents this positive risk response in the risk register. What risk response is this?

Question131: Which of the following stages of the Forrester's IT Governance Maturity Model describes that the IT governance processes is fully developed and optimized across the enterprise, and a well-built IT portfolio management process is put to ensure that all IT investment decisions are themselves optimized?

Question132: Which of the following domains of CGEIT aims to guarantee that the IT function remains aligned with the organization's strategic objectives?

Question133: Which of the following issues identified during an IT review is MOST important to address to improve the alignment between the business and IT?

Question134: A multinational enterprise is planning to migrate to cloud-based systems. Which of the following should be of MOST concern to the risk management committee?

Question135: Which of the following areas of IT Governance Framework of CGEIT aims to guarantee that the IT function remains aligned with the organization's strategic objectives?

Question136: Which of the following attributes are the COBIT's generic maturity model attributes?
Each correct answer represents a complete solution. Choose all that apply.

Question137: Which of the following processes is responsible for controlling, recording and reporting on versions, attributes, and relationships relating to components of the Information Technology (IT) infrastructure?

Question138: Shawn is the project manager of the WHT Project for his company. In this project Shawn's team reports that they have found a way to complete the project work for less cost than
what was originally planned. The project team presents a new software that will help to automate the project work. While the software and the associated training costs $25,000 it will save the project nearly $65,000 in total costs. Shawn agrees to the software and changes to the project management plan accordingly. What type of risk response has been used in this instance?

Question139: Which of the following concepts is used to reduce the errors produced during the manufacturing or service process, increase customer satisfaction, streamline supply chain management, aims for modernization of equipment and ensures workers have the highest level of training?

Question140: Which of the following IT governance actions would be the BEST way to minimize the likelihood of IT failures jeopardizing the corporate value of an IT-dependent organization?

Question141: Which of the following techniques seeks to identify the similarities and differences between the groups of customers or users?

Question142: Senior management has made a decision to automate a number of key controls due to concerns that current IT risk controls are overly cumbersome and adversely impacting IT agility. Which of the following should be required FIRST to facilitate this process?

Question143: Which of the following individuals ensures that IT complies with policy, laws and regulations?

Question144: The IT strategy formulation process consists of four steps to provide guidance to all who are involved. Which of the following steps are performed in the IT strategy formulation process? Each correct answer represents a complete solution. Choose all that apply.

Question145: Which of the following stages of the Forrester's IT Governance Maturity Model describes that the IT governance processes is fully developed and optimized across the enterprise, and a well-built IT portfolio management process is put to ensure that all IT investment decisions are themselves optimized?

Question146: Beth is an HR Professional for her organization and she's been alerted by management that the company will be outsourcing a large portion of operations. This outsourcing will likely cause several employees to lose employment with the organization. Which of the following is the best course of action that Beth can take in regard to communicating with the employees about the outsourcing change?

Question147: What does the T in SWOT analysis mean?

Question148: Which of the following is MOST important to the successful implementation of enterprise architecture (EA)?