The Open Group OGEA-103 Exam Questions Free Practice Test

Viewing page 1 out of 4 pages

Viewing questions 1-10 out of questions

Questions # 1:

Please read this scenario prior to answering the question

You are the Chief Enterprise Architect at a large food service company specializing in sales to trade and

wholesale, for example, restaurants and other food retailers.

One of your company's competitors has launched a revolutionary product range and is running a very

aggressive marketing campaign. Your company's resellers are successively announcing that they are not

interested in your company's products and will sell your competitor's.

The CEO has stated there must be significant change to address the situation. He has made it clear that

new markets must be found for the company's products, and that the business needs to pivot, and address the retail market as well as the existing wholesale market.

A consideration is the company's ability and willingness to change its business model, and if it is a temporary or permanent change. An additional risk factor is one of culture. The company has been used to a stable business with a reasonably well known and settled client base - all with its own local understandings and practices.

The CEO is the sponsor of the EA program within the company. You have been engaged with the sales,

logistics, production, and marketing teams, enabling the architecture activity to start. An Architecture Vision, Architecture Principles, and Requirements have all been agreed. As you move forward to develop a possible Target Architecture you have identified that some of the key stakeholders' preferences are incompatible. The incompatibilities are focused primarily on time-to-market, cost savings, and the need to bring out a fully featured product range, but there are additional factors.

Refer to the scenario

You have been asked how you will address the incompatibilities between key stakeholder preferences.

Based on the TOGAF standard which of the following is the best answer?

Options:

You would seek to understand value preferences and priorities of the stakeholders. You woulddevelop alternative Target Architectures, highlighting the gaps between current state and thealternatives. You would consider combining features from one or more alternatives in collaborationwith the stakeholders. A formal stakeholder review should then be held to decidewhich alternative isfit for purpose and should be moved forward with. You will th

You recommend that since the CEO has stated that the company must pivot, it is better tocompromise on a full product range rather than time-to-market. You would develop just enough of theTarget Architecture to demonstrate fitness of the proposed approach. You would limit the descriptionto just where there is a gap between the current baseline. You would seek approval by thestakeholders to move forward with developing the Target Architecture

You would use the Architecture Vision, Principles, and Requirements to define a set of criteria foralternatives and create a set of architecture views to illustrate the impact of the alternative TargetArchitectures. You would identify the impact on planned projects. You would understand the strengthsand weaknesses of the alternatives. You would conduct a formal stakeholder review to decide whichalternative to move forward with. You will det

You would review the Stakeholder Map and ensure that you have addressed and represented theconcerns of all department heads. You will involve them in resolving the incompatibilities. TheCommunications Plan should include a report that summarizes the key features of the architecturewith and how incompatibilities were resolved to reflects the stakeholders' requirements. You willcheck with each key stakeholder they are satisfied with how the i

Expert Solution

Answer

Questions # 2:

Please read this scenario prior to answering the question

Your role is consultant to the Lead Architect within a multinational company that manufactures electronic components. The company has several manufacturing divisions located worldwide and a complex supply chain. After a recent study, senior management have stated a concern about business efficiency considering the company's multiple data centers and duplication of applications.

The company has a mature Enterprise Architecture (EA) practice and uses the TOGAF architecture development method in its EA practice. In addition to the EA program, the company has several management frameworks in use, including business planning, project/portfolio management, and operations management. The EA program is sponsored by the CIO.

A strategic architecture has been defined to improve the ability to meet customer demand and improve management of the supply chain. The strategic architecture includes the consolidation of multiple Enterprise Resource Planning (ERP) applications that have been operating independently in the divisions' production facilities.

Each division has completed the Architecture Definition documentation to meet its own specific manufacturing requirements. The enterprise architects have defined a set of work packages that address the gaps identified. They have identified the value produced, effort required, and dependencies between work packages to reach a farget architecture that would integrate a new ERP environment into the company.

Because of the risks posed by change from the current environment, the architects have recommended that a phased approach occurs to implement the target architecture with several transition states. The overall implementation process is estimated to take several years.

Refer to the scenario

You have been asked what the next steps are for the migration planning.

Based on the TOGAF standard which of the following is the best answer?

Options:

You conduct a series of Compliance Assessments to ensure that the architecture is being implemented according to the contract. The Compliance Assessment should verify that the implementation team is using the proper development methodology. It should include deployment of monitoring tools and ensure that performance targets are being met. If they are not met, then you would identify changes to performance requirements and update those in th

You place the Architecture Definition Document under configuration control. This will ensure that the architecture remains relevant and responsive to the needs of the enterprise. You would identify the development resources to undertake the projects. You would then produce an Implementation Governance Model to manage the lessons learned prior to finalizing the plan. You recommend that lessons learned be applied as changes to the architectur

You estimate the business value for each project by applying the Business Value Assessment Technique to prioritize the implementation projects and project increments. The assessment should focus on return on investment and performance evaluation criteria that can be used to monitor the progress of the architecture transformation. You would confirm and plan a series of Transition Architecture phases using an Architecture Definition Increment

You assess how the Implementation and Migration plan impacts the other frameworks in use in the organization. Minimally, you ensure that the plan is coordinated with the business planning, project/portfolio management and operations management frameworks. You would then assign a business value to each work package, considering available resources and strategic fit. You then use the work packages to identify projects that will be in the Impl

Expert Solution

Answer

Explanation

The Business Value Assessment Technique is a technique that can be used to estimate and compare the business value of the projects and project increments that implement the architecture work packages, which are the sets of actions or tasks that are required to implement a specific part of the architecture. The business value is the measure of the benefits or advantages that the project or project increment delivers to the business, such as increased revenue, reduced costs, improved quality, or enhanced customer satisfaction1

The steps for applying the Business Value Assessment Technique are:

Identify the criteria and factors that are relevant to the business value assessment, such as costs, benefits, risks, and opportunities. The criteria and factors should be aligned with the business goals and drivers that motivate the architecture work, and the stakeholder requirements and concerns that influence the architecture work.

Assign weights and scores to the criteria and factors, using various methods, such as expert judgment, historical data, or analytical models. The weights and scores should reflect the importance and performance of the criteria and factors, and the trade-offs and preferences of the stakeholders.

Calculate the business value for each project or project increment, using various techniques, such as net present value, return on investment, or balanced scorecard. The business value should indicate the expected or actual outcomes and impacts of the project or project increment on the business.

Prioritize the implementation projects and project increments, based on the business value and other considerations, such as dependencies, resources, or risks. The prioritization should determine the order or sequence of the projects and project increments, and the allocation and utilization of the resources.

Therefore, the best answer is C, because it describes the next steps for the migration planning, which are the activities that support the transition from the Baseline Architecture to the Target Architecture. The answer covers the Business Value Assessment Technique, which is relevant to the scenario.

1: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 28: Business Value Assessment Technique : The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 18: Phase A: Architecture Vision : The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 21: Phase F: Migration Planning : The TOGAF Standard, Version 9.2, Part IV: Architecture Content Framework, Chapter 36: Building Blocks

Questions # 3:

Scenario

Your role is that of an Enterprise Architect, reporting to the Chief Enterprise Architect, at a technology company.

The company uses the TOGAF standard as the method and guiding framework for its Enterprise Architecture (EA) practice. The Chief Technology Officer (CTO) is the sponsor of the activity. The EA practice uses an iterative approach for its architecture development. This has enabled the decision-makers to gain valuable insights into the different aspects of the business.

The nature of the business is such that the data and the information stored on the company systems is the company’s major asset and is highly confidential. The company employees travel a lot for work and need to communicate over public infrastructure. They use message encryption, secure internet connections using Virtual Private Networks (VPNs), and other standard security measures. The company has provided computer security awareness training for all its staff. However, despite good education and system security, there is still a need to rely on third-party suppliers for infrastructure and software.

The Chief Security Officer (CSO) has noted an increase in ransomware (malicious software used in ransom demands) attacks on companies with a similar profile. The CSO recognizes that no matter how much is spent on education and support, the company could be a victim of a significant attack that could completely lock them out of their important data.

A risk assessment has been completed, and the company has looked for cyber insurance that covers ransomware. The price for this insurance is very high. The CTO recently saw a survey that said 1 out of 4 businesses that paid ransoms could not get their data back, and almost thesame number were able to recover the data without paying. The CTO has decided not to get cyber insurance to cover ransom payment.

You have been asked to describe the steps you would take to strengthen the current architecture to improve data protection.

Based on the TOGAF standard, which of the following is the best answer?

Options:

You would ensure that the company has in place up-to-date processes for managing change to the current Enterprise Architecture. Based on the scope of the concerns raised, you recommend that this be managed at the infrastructure level. Changes should be made to the baseline description of the Technology Architecture. The changes should be approved by the Architecture Board and implemented by change management techniques.

You would request an Architecture Compliance Review with the scope to examine the company’s ability to respond to ransomware attacks. You would identify the departments involved and have them nominate representatives. You would then tailor checklists to address the requirement for increased resilience. You would circulate to the nominated representatives for them to complete. You would then review the completed checklists, identifying and r

You would monitor for technology updates from your existing suppliers that could enhance the company’s capabilities to detect, react, and recover from an IT security incident. You would prepare and run a disaster recovery planning exercise for a ransomware attack and analyze the performance of the current Enterprise Architecture. Using the findings, you would prepare a gap analysis of the current Enterprise Architecture. You would prepare c

You would assess business continuity requirements and analyze the current Enterprise Architecture for gaps. You would recommend changes to address the situation and create a change request. You would engage the Architecture Board to assess and approve the change request. Once approved, you would create a new Request for Architecture Work to begin an ADM cycle to implement the changes.

Expert Solution

Answer

Explanation

Comprehensive and Detailed Step-by-Step Explanation

Context of the Scenario

The scenario highlights significant risks due to ransomware attacks and the need to strengthen the company’s Enterprise Architecture to improve data protection and resilience. TOGAF emphasizes the Architecture Compliance Review as a mechanism for ensuring the architecturemeets its objectives and addresses specific concerns such as security, resilience, and compliance with organizational goals.

The organization has already conducted a risk assessment but requires actionable steps to:

Address ransomware attack risks.

Increase the resilience of the Technology Architecture.

Ensure proper alignment with governance and compliance frameworks.

Option Analysis

Option A:

Strengths:

Highlights the need for up-to-date processes for managing changes in the Enterprise Architecture.

Recognizes the importance of governance through the Architecture Board and change management techniques.

Weaknesses:

The approach focuses solely on the Technology Architecture baseline but does not address the need for specific steps such as compliance review, gap analysis, or tailored resilience measures for ransomware risks.

It provides a broad and generic approach rather than a targeted plan for ransomware and data protection issues.

Conclusion: Incorrect. While it adheres to governance processes, it lacks specific actions to improve resilience and address the immediate security concerns.

Option B:

Strengths:

Proposes an Architecture Compliance Review, which is a core TOGAF process used to evaluate architecture implementation against defined objectives, ensuring it is fit for purpose.

Involves identifying stakeholders (departments) and tailoring checklists specific to ransomware resilience.

Emphasizes issue identification and resolution through structured review processes.

Weaknesses:

Does not explicitly address longer-term updates to the Enterprise Architecture, but this can be inferred as a next step following compliance recommendations.

Conclusion: Correct. This is the most suitable approach based on TOGAF principles, as it uses an established process to evaluate and improve the architecture's resilience.

Option C:

Strengths:

Includes monitoring for updates from suppliers to enhance detection and recovery capabilities, which is relevant to addressing ransomware risks.

Proposes a gap analysis to identify shortcomings in the current Enterprise Architecture and recommends addressing gaps through change requests.

Incorporates disaster recovery planning exercises, which are useful for testing resilience.

Weaknesses:

While thorough, the approach lacks the Architecture Compliance Review process, which is a more structured way to ensure the architecture meets resilience requirements.

Monitoring suppliers and running disaster recovery exercises are operational steps rather than strategic architectural improvements.

Conclusion: Incorrect. While it includes valid activities, it does not adhere to TOGAF’s structured approach for architecture assessment and compliance.

Option D:

Strengths:

Proposes analyzing business continuity requirements and assessing the architecture for gaps, which is relevant to the scenario.

Suggests initiating an ADM cycle to address gaps, which aligns with TOGAF principles.

Weaknesses:

Focusing on initiating a new ADM cycle may be premature, as the immediate priority is to evaluate the existing architecture and address specific resilience concerns.

Does not mention compliance review or tailored resilience measures for ransomware attacks, which are central to the scenario.

Conclusion: Incorrect. It proposes a broader approach that may not adequately address the immediate concerns highlighted by the CSO.

TOGAF References

Architecture Compliance Review: A structured process used to evaluate whether an architecture meets the stated goals, objectives, and requirements (TOGAF 9.2, Chapter 19). It is particularly useful for identifying and addressing resilience requirements in scenarios involving security risks.

Stakeholder Engagement: Identifying and involving stakeholders (e.g., departments) is a critical part of architecture governance and compliance review (TOGAF 9.2, Section 24.2).

Change Management: The Architecture Compliance Review supports identifying necessary changes, which are then managed through governance and change management processes (TOGAF 9.2, Section 21.6).

By choosing Option B, you align with TOGAF’s structured approach to compliance, resilience, and addressing security concerns.

Questions # 4:

Please read this scenario prior to answering the question

You are employed as an Enterprise Architect at a company. The company manages

large-scale farming operations with food production, processing, and distribution. The

goal of the company is to maximize profit while satisfying the needs of consumers for

its products. Its customers demand food that is produced sustainably, safely, and

transparently, while reducing environmental impact.

The business is highly mechanized, and this mechanization has brought about a

decrease in the number of workers needed, together with a focus on agricultural

engineering to improve the efficiency of its farms, its processing facilities, and the

overall enterprise. As part of this, the company has established an Enterprise

Architecture (EA) practice based on the TOGAF standard, using it as the method and

guiding framework. The Chief Information Officer (CIO) is the sponsor of EA practice.

The practice has adopted an iterative approach for its architecture development. This

has enabled the decision makers to have valuable insights into the different aspects

of the business.

In recent years there have been a series of bad harvests, and a major reduction in

yields of the main crop produced by the company. This combined with an increase in

costs for energy, feed, fuel, and fertilizer, had led to a significant decrease in profits.

The rising costs and lower profits mean that the company is unable to take as much

planned action on climate measures as it would like, such as reducing its carbon

footprint. The Chief Executive Officer (CEO) has stated that big changes are needed

to improve yields and profitability.

The outline strategy for change, includes new products, and new markets. The

company will switch to a mix of crops rather than depend on a main crop and will

allow use of its processing facilities by third parties. This is a major decision, and the

CEO has stated a desire to repurpose and reuse rather than replace so as to manage

the risks and limit the costs.

The CIO has assigned the EA team to manage this project. The CIO has stated that

although the overall objective is known, the EA team are expected to define the

scope, a shared vision, and the requirements.

Refer to the scenario

You have been asked to recommend the best approach for architecture development

to realize the CEO's change in direction for the company.

Based on the TOGAF standard which of the following is the best answer?

Options:

The team should start on architecture definition and operate multiple ADM

phases concurrently to support this change in direction. Once understood, the

team will identify the requirements, drivers, issues, and constraints for the

change. You would include non-functional requirements in the architecture

development to make sure that the target architecture meets it compliance and

regulatory requirements.

The team first needs to understand the problem and define the structure of the

change. It should start iteration cycles on a baseline first approach to

architecture development, and then transition planning. This will identify the

change needed to transition from the baseline to the target and can be used to

work out in detail what the agreed vision is for the change.

The team should start its iteration cycles of architecture development by going

through the architecture definition phases (B-D) with a baseline first approach.

This will support the change in direction as stated by the CEO. It will ensure

that the change can be defined in a structured manner and address the

requirements needed to realize the change.

The team should start by defining the baseline Technology Architecture in order

to assess the current infrastructure capacity and capability for the company.

Then the focus should be on transition planning and incremental architecture

deployment. This will identify requirements to ensure that the projects are

sequenced in an optimal way to realize the change.

Expert Solution

Questions # 5:

Please read this scenario prior to answering the question

You are working as Chief Enterprise Architect at a large Internet company. The company has many divisions, ranging from cloud to logistics. The company has grown rapidly, expanding from initially selling physical books and media to a range of services including an online marketplace, live-streaming. eBooks. and cloud services.

Overall management of the numerous divisions has become challenging. Recent high-profile projects have overrun on budget and under delivered, damaging the company's reputation, and adversely impacting its share price. There is a widely held view within the executive management that the organization structure has played a major role in these project failures.

The company has an established Enterprise Architecture program based on the TOGAF standard, sponsored jointly by the Chief Executive Officer (CEO) and Chief Information Officer (CIO). The CEO has decided that the company needs to reorganize its divisions around artificial intelligence and machine learning with a focus on automation. The CEO has worked with the Enterprise Architects to create a strategic architecture for the reorganization, including an Architecture Vision, together with definitions for the four domain architectures. This sets out an ambitious vision of the future of the company over a three-year period. This includes a set of work packages and includes three distinct transformations.

The CIO has made it clear that prior to the approval of the detailed Implementation and Migration plan, the EAteam will need to assess the risks associated with the proposed architecture. He has received concerns from key stakeholders across the company that the proposed reorganization may be too ambitious and there is doubt whether it can produce sufficient value to warrant the risks.

Refer to the scenario

You have been asked to recommend an approach to satisfy these concerns. Based on the TOGAF Standard, which of the following is the best answer?

Options:

The Enterprise Architects should evaluate the organization's readiness to undergo change. This will allow the risks associated with the transformations to be identified, classified, and mitigated for. This should include identifying dependencies between the set of changes, including gaps and work packages. It will also identify improvement actions to be worked intothe Implementation and Migration Plan. The business value, effort, and risk a

The Enterprise Architects should bring together information about potential approaches and produce several alternative target transition architectures. They should then investigate the different architecture alternatives and discuss these with stakeholders using the Architecture Alternatives and Trade-offs technique. Once the target architecture has been selected, it should be analyzed using a state evolution table to determine the Transiti

Establishing interoperability in alignment with the corporate operating model will ensure risks are minimized. The Enterprise Architects should apply an interoperability analysis to evaluate any potential issues across the architecture. This should include the development of a matrix showing the interoperability requirements. These can then be included within the transformation strategy embedded in the target transition architectures. The E

Before preparing the detailed Implementation and Migration plan, the EnterpriseArchitects should review and consolidate the gap analysis results from Phases B toThis will identify the transformations required to achieve the proposed TargetArchitecture. The Enterprise Architects should then assess the readiness of theorganization to undergo change and determine an overall direction to address andmitigate risks identified. The Transition Arch

Expert Solution

Questions # 6:

Please read this scenario prior to answering the question

You have been appointed as senior architect working for an autonomous driving technology development company. The mission of the company is to build an industry leading unified technology and software platform to support connected cars and autonomous driving.

The company uses the TOGAF Standard as the basis for its Enterprise Architecture (EA) framework. Architecture development within the company follows the purpose-based EA Capability model as described in the TOGAF Series Guide: A Practitioners'Approach to Developing Enterprise Architecture Following the TOGAF® ADM.

An architecture to support strategy has been completed defining a long-range Target Architecture with a roadmap spanning five years. This has identified the need for a portfolio of projects over the next two years. The portfolio includes development of travel assistance systems using swarm data from vehicles on the road.

The current phase of architecture development is focused on the Business Architecture which needs to support the core travel assistance services that the company plans to provide. The core services will manage and process the swarm data generated by vehicles, paving the way for autonomous driving in the future.

The presentation and access to different variations of data that the company plans to offer through its platform poses an architecture challenge. The application portfolio needs to interact securely with various third-party cloud services, and V2X (Vehicle-to-Everything) service providers in many countries to be able to manage the data at scale. The security of V2X is a key concern for the stakeholders. Regulators have stated that the user's privacy be always protected, for example, so that the drivers' journey cannot be tracked or reconstructed by compiling data sent or received by the car.

Refer to the scenario

You have been asked to describe the risk and security considerations you would include in the current phase of the architecture development?

Based on the TOGAF standard which of the following is the best answer?

Options:

You will focus on the relationship with the third parties required for the travel assistance systems and define a trust framework. This will describe the relationship with each party. Digital certificates are a key part of the framework and will be used to create trust between parties. You will monitor legal and regulatory changes across all the countries to keep the trust framework in compliance.

You will perform a qualitative risk assessment for the data assets exchanged with partners. This will deliver a set of priorities, high to medium to low, based on identified threats, the likelihood of occurrence, and the impact if it did occur. Using the priorities, you would then develop a Business Risk Model which will detail the risk strategy including classifications to determine what mitigation is enough.

You will focus on data quality as it is a key factor in risk management. You will identify the datasets that need to be safeguarded. For each dataset, you will assign ownership and responsibility for the quality of data needs. A security classification will be defined and applied to each dataset. The dataset owner will then be able to authorize processes that are trusted for a certain activity on the dataset under certain circumstances.

You will create a security domain model so that assets with the same level can be managed under one security policy. Since data is being shared across partners, you will establish a security federation to include them. This would include contractual arrangements, and a definition of the responsibility areas for the data exchanged, as well as security implications. You would undertake a risk assessment determining risks relevant to specific

Expert Solution

Answer

Explanation

A security domain model is a technique that can be used to define the security requirements and policies for the architecture. A security domain is a grouping of assets that share a common level of security and trust. A security policy is a set of rules and procedures that govern the access and protection of the assets within a security domain. A security domain model can help to identify the security domains, the assets within each domain, the security policies for each domain, and the relationships and dependencies between the domains1

Since the data is being shared across partners, a security federation is needed to establish a trust relationship and a common security framework among the different parties. A security federation is a collection of security domains that have agreed to interoperate under a set of shared security policies and standards. A security federation can enable secure data exchange and collaboration across organizational boundaries, while preserving the autonomy and privacy of each party. A security federation requires contractual arrangements, and a definition of the responsibility areas for the data exchanged, as well as security implications2

A risk assessment is a process that identifies, analyzes, and evaluates the risks that may affect the architecture. A risk assessment can help to determine the likelihood and impact of the threats and vulnerabilities that may compromise the security and privacy of the data assets. A risk assessment can also help to prioritize and mitigate the risks, and to monitor and review the risk situation3

Therefore, the best answer is D, because it describes the risk and security considerations that would be included in the current phase of the architecture development, which is focused on the Business Architecture. The answer covers the security domain model, the security federation, and the risk assessment techniques that are relevant to the scenario.

1: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 35: Security Architecture and the ADM 2: The TOGAF Standard, Version 9.2, Part IV: Architecture Content Framework, Chapter 38: Security Architecture 3: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 32: Risk Management

Questions # 7:

Please read this scenario prior to answering the question

Your role is that of a senior architect, reporting to the Chief Enterprise Architect, at a medium-sized company with 400 employees. The nature of the business is such that the data and the information stored on the company systems is their major asset and is highly confidential.

The company employees travel extensively for work and must communicate over public infrastructure using message encryption, VPNs, and other standard safeguards. The company has invested in cybersecurity awareness training for all its staff. However, it is recognized that even with good education as well as system security, there is a dependency on third-parly suppliers of infrastructure and software.

The company uses the TOGAF standard as the method and guiding framework for its Enterprise Architecture (EA) practice. The CTO is the sponsor of the activity.

The Chief Security Officer (CSO) has noted an increase in ransomware (malicious software used in ransom demands) attacks on companies with a similar profile. The CSO recognizes that no matter how much is spent on education, and support, it is likely just a matter of time before the company suffers a significant attack that could completely lock them out of their information assets.

A risk assessment has been done and the company has sought cyber insurance that includes ransomware coverage. The quotation for this insurance is hugely expensive. The CTO has recently read a survey that stated that one in four organizations paying ransoms were still unable to recover their data, while nearly as many were able to recover the data without paying a ransom. The CTO has concluded that taking out cyber insurance in case they need to pay a ransom is not an option.

Refer to the scenario

You have been asked to describe the steps you would take to improve the resilience of the current architecture?

Based on the TOGAF standard which of the following is the best answer?

Options:

You would determine business continuity requirements, and undertake a gap analysis of the current Enterprise Architecture. You would make recommendations for change requirements to address the situation and create a change request. You would manage a meeting of the Architecture Board to assess and approve the change request. Once approved you would produce a new Request for Architecture Work to activate an ADM cycle to carry out a project t

You would monitor for technology changes from your existing suppliers that could improve resilience. You would prepare and run a disaster recovery planning exercise for a ransomware attack and analyze the performance of the current Enterprise Architecture. Using the findings, you would prepare a gap analysis of the current Enterprise Architecture. You would prepare change requests to address identified gaps. You would add the changes implem

You would ensure that the company has in place up-to-date processes for managing change to the current Enterprise Architecture. Based on the scope of the concerns raised you recommend that this be managed at the infrastructure level. Changes should be made to the baselinedescription of the Technology Architecture. The changes should be approved by the Architecture Board and implemented by change management techniques.

You would request an Architecture Compliance Review with the scope to examine the company's resilience to ransomware attacks. You would identify the departments involved and have them nominate representatives. You would then tailor checklists to address the requirement for increased resilience. You would circulate to the nominated representatives for them to complete. You would then review the completed checklists, identifying and resolving

Expert Solution

Answer

Explanation

Business continuity is the ability of an organization to maintain essential functions during and after a disaster or disruption. Business continuity requirements are the specifications and criteria that define the acceptable level of performance and availability of the business processes and services in the event of a disaster or disruption. A gap analysis is a technique that compares the current state of the architecture with the desired state, and identifies the gaps or differences that need to be addressed. A change request is a formal proposal for an amendment to some product or system, such as the architecture. A Request for Architecture Work is a document that describes the scope, approach, and expected outcomes of an architecture project123

The best answer is A, because it describes the steps that would improve the resilience of the current architecture, which is the ability to withstand and recover from a ransomware attack or any other disruption. The steps are:

Determine the business continuity requirements, which specify the minimum acceptable level of performance and availability of the business processes and services in case of a ransomware attack. This would involve identifying the critical business functions, the recovery time objectives, the recovery point objectives, and the dependencies and resources needed for recovery.

Undertake a gap analysis of the current Enterprise Architecture, which compares the current state of the architecture with the desired state based on the business continuity requirements. This would involve assessing the strengths and weaknesses of the current architecture, the risks and opportunities for improvement, and the gaps or differences that need to be addressed.

Make recommendations for change requirements to address the situation and create a change request. This would involve proposing solutions and alternatives to close the gaps, enhance the resilience, and mitigate the risks of the current architecture. The change request would document the rationale, scope, impact, and benefits of the proposed changes, and seek approval from the relevant stakeholders.

Manage a meeting of the Architecture Board to assess and approve the change request. The Architecture Board is a governance body that oversees the architecture work and ensures compliance with the architecture principles, standards, and goals. The meeting would involvepresenting the change request, discussing the pros and cons, resolving any issues or conflicts, and obtaining the approval or rejection of the change request.

Once approved, produce a new Request for Architecture Work to activate an ADM cycle to carry out a project to define the change. The Request for Architecture Work would describe the scope, approach, and expected outcomes of the architecture project that would implement the approved change request. The Request for Architecture Work would initiate a new cycle of the Architecture Development Method (ADM), which is the core process of the TOGAF standard that guides the development and management of the enterprise architecture.

1: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 33: Business Scenarios 2: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 30: Gap Analysis 3: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 31: Architecture Change Management : The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 7: Request for Architecture Work : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 34: Business Transformation Readiness Assessment : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 30: Gap Analysis : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 31: Architecture Change Management : The TOGAF Standard, Version 9.2, Part VI: Architecture Capability Framework, Chapter 50: Architecture Governance : The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 7: Request for Architecture Work

Questions # 8:

Please read this scenario prior to answering the question

You are the Lead Enterprise Architect at a major agribusiness company. The company's main harvest is lentils, a highly valued food grown worldwide. The lentil parasite, broomrape, has been an increasing concern for many years and is now becoming resistant to chemical controls. In addition, changes in climate favor the propagation and growth of the parasite. As a result, the parasite cannot realistically be exterminated, and it has become pandemic, with lentil yields falling globally.

In response to the situation, the CEO has decided that the lentil fields will be used for another harvest. The company will also cease to process third-party lentils and will repurpose its processing plants. Thus, the target market will change, and the end-products will be different and more varied.

The company has recently established an Enterprise Architecture practice based on the TOGAF standard as method and guiding framework. The CIO is the sponsor of the activity. A formal request for architecture change has been approved. At this stage there is no fixed scope, shared vision, or objectives.

Refer to the scenario

You have been asked to propose the best approach for architecture development to realize the CEO's change in direction for the company.

Based on the TOGAF standard which of the following is the best answer?

Options:

You propose that this engagement define the baseline Technology Architecture first in order to assess the current infrastructure capacity and capability for the company. Then the focus should be on transition planning and incremental architecture deployment. This will identify requirements to ensure that the projects are sequenced in an optimal fashion so as to realize the change.

You propose that the team uses the architecture definition document and focus on architecture development starting simultaneously phases B, C and D. This is because the CEO has identified the need to change. This will ensure that the change can be defined in a structured manner and address the requirements needed to realize the change.

You propose that the team focus on architecture definition including development of business models, with emphasis on defining the change parameters to support this new business strategy that the CEO has identified. Once understood, the team will be in the best position to identify the requirements, drivers, issues, and constraints for the change.

You propose that the priority is to produce a new Request for Architecture Work leading to development of a new Architecture Vision. The trade-off method should be applied to identify and select an architecture satisfying the stakeholders. For an efficient change the EA team should be aligned with the organization's planning, budgeting, operational, and change processes.

Expert Solution

Answer

Explanation

A Request for Architecture Work is a document that describes the scope, approach, and expected outcomes of an architecture project. A Request for Architecture Work is usually initiated by the sponsor or client of the architecture work, and approved by the Architecture Board, which is a governance body that oversees the architecture work and ensures compliance with the architecture principles, standards, and goals. A Request for Architecture Work triggers a new cycle of the Architecture Development Method (ADM), which is the core process of the TOGAF standard that guides the development and management of the enterprise architecture12

An Architecture Vision is a high-level description of the desired outcomes and benefits of the proposed architecture. An Architecture Vision is the output of Phase A: Architecture Vision of the ADM cycle, which is the first phase of the architecture development. An Architecture Vision defines the scope and approach of the architecture work, and establishes the business goals and drivers that motivate the architecture work. An Architecture Vision also involves obtaining the approval and commitment of the sponsors and other key stakeholders, and initiating the Architecture Governance process3

A trade-off analysis is a technique that can be used to evaluate and compare different architecture alternatives and select the most suitable one. A trade-off analysis involves identifying the criteria and factors that are relevant to the decision, such as costs, benefits, risks, and opportunities, and assessing the strengths and weaknesses of each alternative. A trade-off analysis also involves balancing and reconciling the multiple, often conflicting, requirements and concerns of the stakeholders, and ensuring alignment with the Architecture Vision and the Architecture Principles.

Therefore, the best answer is D, because it proposes the best approach for architecture development to realize the CEO’s change in direction for the company. The answer covers the Request for Architecture Work, the Architecture Vision, and the trade-off analysis techniques that are relevant to the scenario.

1: The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 7: Request for Architecture Work 2: The TOGAF Standard, Version 9.2, Part VI: Architecture Capability Framework, Chapter 50: Architecture Governance 3: The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 18: Phase A: Architecture Vision : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 30: Trade-Off Analysis

Questions # 9:

Please read this scenario prior to answering the question

You are employed as an Enterprise Architect within a clinical research and health

technologies company. The company is dedicated to transforming healthcare with

new ideas and advancements. The company has multiple divisions that cover different

aspects of the business.

The company's Enterprise Architecture (EA) department has mature, well-developed

architecture governance and development processes following the TOGAF standard.

In addition to the EA program, the company has a number of management

frameworks in use. The Architecture Board includes representatives from each

division of the company. The Chief Information Officer (CIO) is the sponsor of the

Enterprise Architecture program. The CIO has actively encouraged architecting with

agility within the EA department as the preferred approach for projects.

Many of the company's rivals have begun using Artificial Intelligence (Al) in their

operations, and the indications are that this will be transformative for healthcare

delivery. This is something the EA department has been interested in for a while, and

they had recently submitted an architecture Change Request which was approved. As

a result, the CIO has approved a Request for Architecture Work to investigate the

implementation of Al in the company.

Areas for evaluation include:

How can staff use Al daily in their current roles?

How can Al enhance access to care for patients, and how to make that experience

seamless?

How can Al offer new workplace platforms and tools to increase efficiency?

Some of the top managers are worried about a change in the way of working, and if it

will achieve the goals. Many are not confident that the company's risk management

processes are adequate for a company-wide integration of generative Al. There are

also questions from staff about whether enough specific guidelines and polices have

been put in place for responsible use of Al.

Refer to the scenario

You have been assigned to the architecture development and asked how to address

the concerns and manage risk for the project. How do you begin?

Based on the TOGAF standard which of the following is the best answer?

Options:

You recommend that an analysis of the stakeholders is carried out. This will

allow the architects to define groups of stakeholders who have common

concerns and include development of a Stakeholder Map. The concerns and

relevant views should then be defined for each group and recorded in the

Architecture Vision document. To mitigate risk, you include a requirement that

there be progressive development of the tar

You recommend that all the stakeholders be identified, and a Communications

Plan created to address the most powerful and influential stakeholders. This

plan should include a report that summarizes the key features of the

architecture with respect to each division and reflects the stakeholders'

requirements. You will check with each key stakeholder that their concerns are

being addressed. Risk mitigation should

You recommend creation of a simple solution concept diagram to show how

the stakeholders will be impacted, and the benefits to the firm. You would also

create a benefits diagram showing the various opportunities from adoption of

Al-based solutions. A meeting should be held with the main stakeholders to

review the diagrams. They can then decide the priorities and sequencing

decisions for the architecture develop

You recommend that models be created for the Draft Business, Data,

Application, and Technology Architectures. These can be used to minimize risk,

and make sure that the system meets the local regulations for each division.

Together with the problem description, and requirements, these should be

included in the Architecture Vision document. A formal review should be held

with the stakeholders to verify that thei

Expert Solution

Answer

Explanation

In this scenario you are right at thestart of an ADM cycle: aRequest for Architecture Workhas been approved to investigate AI, and there are strongstakeholder concerns and risk questions. According to the TOGAF standard, the correct place to start isPhase A: Architecture Vision, with a strong focus onstakeholder managementand capturing theirconcerns and required views.

OptionAis the only answer that correctly reflects this:

Stakeholder analysis & Stakeholder Map (Phase A core task)TOGAF explicitly states that in Phase A you must:

Identify stakeholders

Analyze and group them by common concerns

Use aStakeholder Mapto understand their influence, interest, and required engagement

Determine whichviews/viewpointsare needed to address their concerns in the architecture descriptioncoe.qualiware.com+1

Option A says:

“analysis of the stakeholders … define groups of stakeholders who have common concerns and include development of a Stakeholder Map. The concerns and relevant views should then be defined for each group and recorded in the Architecture Vision document.”

This is exactly how TOGAF describes stakeholder management and views in Phase A:

Stakeholder Map to classify and prioritize stakeholders

Concerns and required views captured and traced

These elements feeding into theArchitecture VisiondeliverableVisual Paradigm TOGAF+1

Concerns, views, and Architecture VisionTOGAF emphasizes thatarchitecture viewsare constructed to addressspecific stakeholder concerns; you do not just build generic models.opengroup.org+1

Option A explicitly linksconcerns → views → Architecture Vision, which aligns with TOGAF guidance for early phases.

Capturing this in theArchitecture Visionprovides a high-level, shared understanding of what the AI initiative is trying to achieve and how stakeholder issues (e.g., responsible AI, risk processes, change in way of working) will be addressed.

Risk management and “architecting with agility”In the scenario, the CIO has encouragedarchitecting with agility. TOGAF is compatible with incremental and iterative development of the target architecture, especially when there is high uncertainty and risk.conexiam.com

Option A includes:

“a requirement that there be progressive development of the target architecture to ensure there is regular feedback.”

This “progressive development” and frequent feedback loop is exactly how you mitigate risk in an AI-heavy, change-sensitive initiative:

Frequent stakeholder feedback

Early validation of assumptions

Ability to adjust scope, constraints, and principles as risk and understanding evolve

This directly addresses management’s worry about thechange in the way of workingand whetherrisk management and responsible AI policiesare adequate: these become explicit stakeholder concerns and requirements that are iteratively refined.

Why the other options are weaker / not TOGAF-aligned as astartingpoint

Option B

Focuses mainly on aCommunications Planand powerful stakeholders.

While TOGAF does expect a stakeholder communications plan, it isderived froma proper stakeholder analysis and Stakeholder Map, not a substitute for it.

It also treats risk as a “component of the architecture” rather than something to be addressedearlythrough stakeholder concerns, principles, and iteration.

Option C

Jumps straight to asolution concept diagramandbenefits diagramand defers risk evaluation to when theArchitecture Roadmapis defined (Phase E).

In TOGAF, risk and stakeholder concerns must be addressed already in Phase A and refined throughout, not postponed to roadmap development.

Option D

Proposes creating draftBusiness, Data, Application, and Technologymodels and putting them into theArchitecture Vision.

This is too detailed for the starting point: Phase A is abouthigh-level vision, not full draft core architecture models (those belong in Phases B, C, D).

It also doesn’t emphasize Stakeholder Mapping and grouping by concerns, which is central to resolving the worries about way of working, risk, and responsible AI.

In summary,Option Ais the best and TOGAF-consistent way tobegin:

Start inPhase A: Architecture Vision

Performstakeholder analysisand create aStakeholder Map

Define stakeholderconcernsandrelevant views

Record them in theArchitecture Vision

Add an explicit requirement forprogressive (iterative) developmentof the target architecture for continuous feedback and risk mitigation

Questions # 10:

Scenario:

You are working as an Enterprise Architect within a company providing legal services. The company operates in many countries and has a complicated structure. Every office must follow the local regulations in their country.

The company’s Enterprise Architecture (EA) department has been operating for several years and has mature, well-developed architecture governance and development processes based on the TOGAF standard. In addition to the EA program, the company has several management frameworks, including business planning, project/portfolio management, and operations management. The Architecture Board includes representatives from all parts of the company.

The Chief Information Officer (CIO) is the sponsor of the Enterprise Architecture program. The CIO has actively encouraged architecting with agility within the EA department as the preferred approach for projects. The CIO has given approval for a Request for Architecture Work to explore the adoption of an AI-powered system for managing legal cases and financial processes.

Senior management has become more concerned about business performance, especially with the advancements in Artificial Intelligence (AI). Many of the company’s competitors have started using AI to assist with legal strategies, streamline processes, and boost productivity. One of the most important benefits AI has for the business is its ability to increase accuracy and minimize mistakes.

Some of the top managers are worried about a change in the way of working, and if it will achieve the business goals. Their staff also fear that management will use the AI system to measure their performance. The CIO wants to know how to address these concerns and reduce risks.

The new system is expected to guide legal professionals and analysts on which tasks to focus on. The main goals are to improve productivity and make better use of staff. In addition, the CIO hopes these changes will lead to higher customer satisfaction.

Refer to the scenario:

You have been asked to respond to the Chief Information Officer (CIO) recommending an approach that would enable the development of an architecture that addresses the concerns of the top managers and the multiple branches in different parts of the company.

Based on the TOGAF standard, which of the following is the best answer?

Options:

You recommend that models be created for each of the Business, Application, and Technology architectures. These can be used to ensure that the system will be compliant with the local regulations for each operating entity. This ensures that all necessary data and detail is addressed. A formal review should be held with the stakeholders to verify that their concerns have been properly addressed by the models.

You recommend that an analysis of the stakeholders is undertaken. This will allow the architects to define groups of partners (the stakeholders) who have common concerns and include development of a Stakeholder Map. The concerns and relevant views should then be defined for each group and recorded in the Architecture Vision document. To reduce risk, you include a requirement that there be progressive development of the target architecture t

You recommend creation of a set of business models that can be applied uniformly across all AI-related architecture projects. These should be developed in a portable format to ensure maximum portability across the many tools used in the firm. Each architecture should then be defined based on this fixed set of models. All concerned stakeholders can then examine the models to ensure that their needs have been addressed.

You recommend that a Communications Plan be created to address the key stakeholders, particularly influential partners. This plan should include a report summarizing the key features of the architecture with respect to each location and reflect the stakeholders’ requirements. You will check with each key stakeholder that their concerns have been addressed. Risk mitigation should be explicitly addressed as a component of the architecture bei

Expert Solution

Answer

Explanation

The correct answer is B, as it aligns with TOGAF's stakeholder management approach, ensuring that stakeholder concerns are captured and addressed iteratively throughout the architecture development process.

Analysis of the Correct Answer (Option B):

Stakeholder Analysis and Mapping

The scenario highlights that top managers and staff are worried about the changes AI will bring.

TOGAF recommends stakeholder analysis early in the ADM process to ensure that concerns, expectations, and risks are documented.

Creating a Stakeholder Map groups stakeholders by common concerns, allowing architects to develop tailored viewpoints.

Recording Concerns in the Architecture Vision Document

The Architecture Vision (ADM Phase A) serves as a high-level guiding document.

Capturing stakeholder concerns in the Vision document ensures alignment between business goals and technology implementation.

Iterative Development and Regular Feedback

The scenario describes an AI-powered system with major business impacts, so incremental validation is necessary.

TOGAF emphasizes progressive development to manage risk and validate requirements continuously.

Regular feedback loops help mitigate resistance from top managers and staff.

Why Other Options Are Incorrect?

Option A: Creating Models for Business, Application, and Technology Architectures

Incorrect because while compliance is important, it does not address stakeholder concerns directly.

The scenario is about ensuring buy-in from top managers and employees, not just regulatory compliance.

Option C: Using Uniform Business Models Across AI Projects

Incorrect because a one-size-fits-all model does not allow for regional and functional differences within the company.

The scenario emphasizes the need to address specific concerns of top managers and different locations, which requires stakeholder-specific customization.

Option D: Creating a Communications Plan

Incorrect because communication alone does not resolve stakeholder concerns.

While communication is useful, the architecture development process should include stakeholder engagement and progressive validation, not just reporting.

[References:, TOGAF Standard, ADM Phase A – Architecture Vision, TOGAF Standard, Stakeholder Management (ADM Guidelines and Techniques), TOGAF Enterprise Architecture Principles – The Open Group, , , , , ]

Viewing page 1 out of 4 pages

Viewing questions 1-10 out of questions

New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

Pass the The Open Group Enterprise Architecture OGEA-103 Questions and answers with CertsForce