An enterprise's board of directors is concerned about the ongoing costs of a large inventory of Internet of Things (IoT) devices. Which of the following should the CIO do FIRST?
Which of the following is the MOST important consideration when integrating a new vendor with an enterprise resource planning (ERP) system?
An enterprise is required to implement several regulatory requirements. Which of the following functions is BEST suited to determine compliance priorities?
Which of the following BEST enables an enterprise to determine an appropriate retention policy for its information assets?
An enterprise recently experienced a major breach that was escalated effectively. However, the recovery took far longer than expected, resulting in significant financial loss. Which of the following is MOST likely the root cause of this scenario?
Which of the following should be considered FIRST when assessing the implications of new external regulations on IT compliance?
Which of the following should be the MOST essential consideration when outsourcing IT services?
Which of the following BEST provides an enterprise with greater insight into its environmental, social, and governance (ESG) metrics?
A company is considering selling products online, and the CIO has been asked to advise the board of directors of potential problems with this strategy. Which of the following is the ClO's BEST course of action?
A large organization with branches across many countries is in the midst of an enterprise resource planning (ERP) transformation. The IT organization receives news that the branches in a country where the impact to the enterprise is to be greatest are being sold. What should be the NEXT step?
An IT audit reveals inconsistent maintenance of data privacy in enterprise systems primarily due to a lack of data sensitivity categorizations. Once the categorizations are defined, what is the BEST long-term strategic response by IT governance to address this problem?
In a large enterprise, which of the following is the MOST effective way to understand the business activities associated with the enterprise's information architecture?
An IT risk assessment for a large healthcare group revealed an increased risk of unauthorized disclosure of information. Which of the following should be established FIRST to address the risk?
Best practice states that IT governance MUST:
Which of the following would be the BEST way to facilitate the adoption of strong IT governance practices throughout a multi-divisional enterprise?