Professional Documents
Culture Documents
Cobit 2019 Foundation Certification: Sample Exam 3
Cobit 2019 Foundation Certification: Sample Exam 3
Certification
Question 1:
A. Internal Stakeholders.
B. External Stakeholders.
C. Enterprise Shareholders.
Question 2:
A. Support IT functions.
B. Create value to stakeholders.
C. Support Enterprise Board.
Question 3:
What is the difference between “IT” and “I&T”? Select the correct statement below:
Question 4:
Question 5:
Value creation is a matter of balance. In the following statements, which one is NOT an
outcome of EGIT adoption?
A. Benefits realization
B. Risk optimization
C. Risk minimization
Question 6:
Regarding the context of EGIT, good governance leads to______________ which lead to
value creation.
A. IT
B. management
C. alignment
Question 7:
A. Assurance Provider
B. IT vendor
C. Regulator
Question 8:
A. Business partner
B. Business manager
C. Board
Question 9:
Question 10:
A. Prince2
B. ITIL
C. Both of them
Question 11:
A. 1
B. 4
C. 2
Question 12:
A. Framework principles
B. System principles
C. Tailoring principles
Question 13:
Question 14:
Question 15:
A. EDM
B. DSS
C. BAI
Question 16:
A. EDM.
B. APO.
C. MEA.
Question 17:
“an organized set of practices and activities to achieve certain objectives and produce a set
of outputs that support achievement of overall IT-related goals” is the definition of which
components?
A. Organizational Structures
B. Principles, Policies, Procedures
C. Processes
Question 18:
A. Setting up a hierarchy
B. Decision making
C. Translate behavior
Question 19:
Question 20:
“People, skills and competencies are required for good decisions, execution of corrective
action and ______________?”
Question 21:
Question 22:
Culture, ethics and ______________ of individuals and of the enterprise are often underestimated
as factors in the success of governance and management activities
A. Principles
B. Skills
C. Behaviors
Question 23:
Question 24:
Which statements are valid in the following list regarding Focus Area:
1. A focus area describes a governance topic, domain or issue that can be addressed by some
governance and management objectives
2. Focus areas can contain a combination of generic governance components and variants
3. Focus areas are activities detailed in the Processes components
A. 1 and 3
B. 1 and 2
C. All of them
Question 25:
Design factors are ______________ that can influence the design of an enterprise’s governance
system and position it for success in the use of I&T
A. Good Practices
B. Factors
C. Principles
Question 26:
In the following list which Design Factor refers to the governance and management of threats
A. Risk Profile
B. Enterprise Strategy
C. Enterprise Goals
Question 27:
A. Threat Landscape
B. IT implementation methods
C. Compliance Management
Question 28:
A. Growth/Acquisition
B. Normal Threat
C. Low Compliance Requirements
Question 29:
Regarding the Design Factors, which Role of IT is seen as critical for both running and
innovating business?
A. Strategic
B. Turnaround
C. Support
Question 30:
A. Offshore
B. Cloud
C. Outsourcing
Question 31:
If your enterprise adopts new technologies as early as possible, we qualify it in COBIT 2019
as:
A. Early birds
B. First mover
C. Early adopter
Question 32:
What is a SME?
Question 33:
Question 34:
1. Enterprise Goals
2. Governance and Management Objectives
3. Alignment Goals
4. Stakeholder Drivers and Needs
A. 4-2-3-1
B. 4-1-2-3
C. 4-1-3-2
Question : 35
Within the Goals Cascade what is the BSC dimension of the Enterprise Goal “Portfolio of
competitive products and services”?
A. Customer
B. Financial
C. Growth
Question 36:
Within the Goals Cascade what is the BSC dimension of the Alignment Goal “Agility to turn business
requirements into operational solutions”?
A. Internal
B. Financial
C. Customer
Question 37:
A. Minimize the business impact of operation information security vulnerabilities and incidents
B. Effective assurance initiatives, providing guidance on planning, scoping, executing and
following up on assurance reviews, using a road map based on well-accepted assurance
approaches.
C. Keep the impact and occurrence of information security incidents within the enterprise’s risk
appetite levels.
Question 38:
How many Capability Levels supports the performance of the component “Processes”?
A. 4
B. 5
C. 6
Question 39:
A. Processes
B. Process Activity
C. Goals processes
Question 40:
In the RACI model, what questions does the definition of “A” refers to?
A. CMMI 2
B. CMMI 1.3
C. ISO 20000
Question 42:
Regarding the CPM, which level is the definition “The process achieves its purpose, is well
defined and is quantitatively measured” related to?
A. 2
B. 4
C. 5
Question 43:
Question 44:
Regarding the capability rating, which range corresponds to the definition “The capability
level is achieved between 15% and 50%.”
A. Partially
B. largely
C. None of them
Question 45:
A. Organizational Structures
B. People, Skills and competences
C. Culture, Ethics and Behavior
Question 46:
A. Intrinsic
B. Contextual
C. Security, Privacy & Accessibility
Question 47 :
Question 48:
Regarding the Implementation, what question answers to the Program step called “Define
road map”?
Question 49:
In a COBIT Business Case what component should we find in the section “Business Challenges”
A. Program Scope
B. Gap Analysis and Goal
C. Challenges and Success Factors
Question 50:
A. Component Variations
B. Specific Focus Areas
C. Governance Objective Priority