An enterprise is planning a change in business direction. As a result, IT risk will significantly increase. Which of the following should be the CIO's FIRST course of action?
The correct answer is C. COBIT 2019 makes this extremely clear:
Governing Body = Board
Executive Management = CEO
Management = CIO and below
Let us not forget that ISACA created COBIT, and the CGEIT question topics come directly from this framework. The CIO is NOT Executive MGMT, per COBIT. While in most real-world scenarios the CIO may be classified as ExecMGMT, the questions are based on COBIT methodologies.
Reporting the risk to executive management is important as they are responsible for assessing and managing enterprise-wide risks, and making strategic decisions related to the organization's direction. By informing executive management of the increased IT risk, the CIO can ensure that they are aware of the potential impacts on the organization's objectives and can make informed decisions about how to manage the risk.
This section is not available anymore. Please use the main Exam Page.CGEIT Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
bhardy
4 hours, 5 minutes agoReensy
11 months, 3 weeks agoaa2e66f
10 months, 3 weeks agoFrank1480
1 year, 3 months agoJohn_Connor
2 years, 6 months agoundead_assault
2 years, 4 months ago