Governance and Management of IT MCQs – CISA

Share on facebook
Share on twitter
Share on linkedin
Share on pinterest
Share on reddit
Share on whatsapp


Corporate Governance – ethical corporate behavior by directors or other charged with governance in the creation and presentation of wealth for all
Governance and Management of IT MCQs

Governance and Management of IT MCQs

Corporate Governance – ethical corporate behavior by directors or other charged with governance in the creation and presentation of wealth for all stakeholders. Here on we have prepared easy Multiple-choice Questions (MCQs) on governance and management of IT that fully cover MCQs on IT grc, IT governance ITIL, risk management, implementing effective it governance and it management, it governance risk and compliance management, IT governance framework, domain 2. These MCQs are useful for Competitive exams, Business management exams and Professional Accounting exams.

  1. Corporate Governance – ethical corporate behavior by directors or other charged with governance in the creation and presentation of wealth for all stakeholders.
    1. True
    2. False
  1. IT Governance –
    1. It provides the structure that links IT processes, IT resources and information to enterprise strategies and objectives.
    2. IT governance integrates and institutionalizes optimal ways of planning and organizing, acquiring and implementing IT performance.
    3. Both A&B
    4. None
  1. An organization’s senior management should appoint a planning or steering committee to oversee information systems department activities. The functions performed by the steering committee include:
    1. Review the long- and short-range plans
    2. Approve and monitor major projects
    3. Make decisions regarding centralization versus decentralization
    4. All of the above
  1. IT Strategy Committee –
    1. Provide insight and advice to the board on topics
    2. Focuses on current and future strategic IT issues
    3. Board members and specialist non-board members
    4. All of the above
  1. IT Streeing Committee –
    1. Decides the overall level of IT spending and how costs will be allocated
    2. Assists the executive in the delivery of the IT strategy
    3. Sponsoring executive, Business executive
    4. All of the above
  1. Policies and procedures reflect management guidance and direction in developing controls over information systems and related resources. Which of the following is correct for “Policies”?
    1. Policies are high level documents.
    2. They represent the corporate philosophy of an organization
    3. Policies need to be updated to reflect significant changes within the organization or department.
    4. All of the above
  1. Which of the following is correct for “Procedures”?
    1. Procedures are detailed documents.
    2. They must be derived from the parent policy and must implement the spirit of the policy statement.
    3. Procedures must be written in a clear and unambiguous manner so that they may be easily and properly understood by all who will be governed by them.
    4. All of the above

  1. An organization’s hiring practices are important to ensure that the most effective and efficient staff is chosen and that the company is in compliance with legal recruitment requirements.  These would include:
      1. Background checks
      2. Confidentiality agreements
      3. Employee bonding to protect against losses due to theft
      4. Conflict of interest agreements
      5. Non-compete agreements
    1. All of the above
    2. (I) (II) and (V) only
    3. (II) (III) (V) only
    4. None
  1. Control risks for hiring practices include:
    1. Staff may not be suitable for the position they are recruited to fill
    2. Lack of awareness of confidentiality requirements may lead to compromise to expected overall security environment.
    3. Both A&B
    4. None
  1. Employee handbooks distributed to all employees upon being hired should explain items such as:
    1. Security policies and procedures
    2. Company expectations
    3. Employee benefits
    4. Performance evaluations
    5. All of the above
  1. Promotion policies should be fair and understood by employees. Policies should be based on objective criteria and consider an individual’s performance, education, experience and level of responsibility.
    1. True
    2. False
  1. Termination policies – should address both voluntary termination and involuntary terminations. What control procedures should be applied?
    1. Return of all access keys, ID cards and badges to prevent easy physical access.
    2. Deletion of assigned logon-ID and passwords to prohibit system access
    3. Both A&B
    4. None
  1. What is outsourcing?
    1. It is the practice of contracting out business functions or processes to an external service provider.
    2. The opposite of outsourcing is insourcing
    3. Both A&B
    4. None
  1. Reasons for outsourcing include:
    1. Freeing up internal resources to concentrate on more core businesses functions
    2. Reducing the amount of top management time spend administering non-core business functions
    3. There is a lack of technical expertise internally
    4. All of the above
    5. None

  1. The benefits of outsourcing include:
    1. It reduces the cost of wastage to the organization.
    2. It can help transfer risk to another party
    3. It will lead to a fixed fee, thus helping cash flow management
    4. All of the above
    5. None
  1. Source code escrow is the deposit of the source of software with a third-party escrow agent. Escrow is typically requested by a party licensing software to ensure maintenance of the software.
    1. True
    2. False
  1. Capacity management – is a process used to manage information technology (IT). Its primary goal is to ensure that IT capacity meets current and future business requirements in a cost-effective manner.
    1. The above is correct
    2. The above is incorrect
  1. Intellectual property rights are customarily divided into:
    1. Industrial property
    2. Copyright and rights related to copyright
    3. Both A&B
    4. None
  1. The Skills that the IT director should possess include:
    1. Good management ability
    2. Good understanding of how the organization operates and the organizational activities
    3. Good technical expertise in developing and running information systems
    4. All of the above
  1. The role of the information director is likely to include:
    1. Ensuring development and implementation of as IS strategy that is compatible with the business strategy.
    2. Participating in a steering committee to oversee the general direction of IS policy and taking decisions on individual IT projects.
    3. Both A&B
    4. None
  1. The IS department will provide user support in a variety of ways. User support includes:
    1. Establishing hardware standards
    2. Approving hardware suppliers
    3. Establishing software, testing and documentation standards
    4. All of the above

  1. A key role of the information systems department is to ensure the continued operation of a company’s information systems. Particular tasks that operations control will perform include:
    1. Monitoring system usage and performance to ensure adequate system response times and capacity
    2. Scheduling maintenance to minimize user disruption
    3. Updating anti-virus software and firewall maintenance
    4. All of the above
  1. Transaction Authorization is a responsibility of which department?
    1. The Operations Department
    2. The IT Department
    3. The User Department
    4. The HR Department
  1. A security Administrator is responsible for:
    1. Adding and configuring new workstations
    2. Performing procedures to prevent the spread of viruses
    3. Allocating mass storage space
    4. Implementing information security policy

—More to come soon—

Read more
Read more
Read more

2 Responses

Leave a Reply

Sign up for Free MCQs

Success is awaiting for you


MCQsClub login

Welcome to the Club

Log in to continue. IT'S FREE


By continuing, you agree to MCQs CLUB’s Terms of Service and acknowledge you’ve read our Privacy Policy