CPE Quiz #
101
Based on Information Systems Control Journal Volume 2, 2005
A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit
Your results will appear in a new window.
Enter your name below so it displays on the quiz results page:
Name:
Johnson Article1. One of the reasons the C-suite has become an important target for ISACA and ITGI is the current exclusive focus on compliance with the Sarbanes-Oxley Act of 2002.
2. The IT Governance Global Status Report indicated that the majority of the organizations surveyed regularly had IT on the board's agenda.
3. The ITGI product strategy should include clarifying the positioning of IT governance in the context of enterprise governance, but should not cloud this issue with extended enterprise governance issues, such as outsourcing, collaborative models, etc.
Pareek Article4. The source of the risks from a merger and acquisition transaction is always associated with consolidating data from disparate systems.
5. Every new integration project is an opportunity to review IT governance goals and performance. Most of COBIT’s IT processes and related control objectives can be used as a framework to drive an IT program for merger integration.
6. There are many constraints to integration, but the IT project manager proceeding with a best-guess approach with built-in contingencies to deal with gaps is not one of them.
7. In assessing implementation risks, COBIT IT Process DS11 Manage data is one of the many processes recommended by the author.
Van Grembergen and De Haes Article8. A well-developed balanced scorecard should contain a good mix of two metrics: outcome measures and performance drivers. These cause-and-effect relationships among measures can be applied when measuring and improving IT governance.
9. The main measurement challenge for an IT governance balanced scorecard is within the areas of value delivery and risk management.
10. Legal and ethical compliance metrics, such as IT adherence to the Sarbanes-Oxley Act and privacy regulations, are designed to measure customer satisfaction.
11. The worldwide "Control and Governance Maturity Survey" published in 2002 revealed that the average maturity for the 34 COBIT IT processes was around 2.0.
Chapin and Akridge Article12. The current security maturity models generally do not drive the program toward a particular organizational goal or progression toward that goal.
13. The Security Program Maturity Model takes a management systems approach and follows ISO 17799 standards for developing a complete security program with reference to 10 ISO 17799 categories.
Bagranoff and Henry Article14. While the type of software companies use in their Sarbanes-Oxley section 404 documentation depends in large part on the size and the extent of significant accounts, processes, risks and related key controls, most companies use Access to complete the related tasks.
15. Control self-assessment and continuous monitoring software is most likely to be used for Sarbanes-Oxley 404 compliance.
Khan, Syal and Kapila Article16. There are three major concerns with Voice-over Internet Protocol (VoIP), which all center around quality of service: packet loss, jitter and latency.
17. Some research firms estimate that IP phone and appliance revenues for the total world market will reach US $2.7 billion in 2007.
18. Basic controls to address VoIP concerns include good AAA (authentication, authorization and auditing) policies and appropriate service level agreements SLAs) to guarantee the uptime and overall performance of the network.
|
Your results will appear in a new window.
|
Please note: This quiz requires a JavaScript-enabled browser.
If the quiz is not displayed above, you either do not have a browser which
supports JavaScript or JavaScript support has been disabled.
|
|
|