You are on page 1of 9

SIMULADO 1 COBIT FOUNDATION

1 ) Which of the following is the most significant concern in the management of IT?
a)
b)
c)
d)

Making technology work correctly


Keeping IT running
Keeping up to date with the latest solutions
Supporting developers with toolkits

-------------------------------------------------------------------------------2 ) What is an essential attribute of successful performance management?


a)
b)
c)
d)

Frequently achieved targets


Setting achievable gols
Threatening sanctions if targets are not met
Metrics defined and aproved by the stakeholders

-------------------------------------------------------------------------------3 ) Which of the following is a common reason why IT projects exceed budget
expectations or deadlines?
a)
b)
c)
d)

Cost of IT specialists
Unavailability of the lastest technology
Underestimation of the effort required
Lack of automation of development tools

-------------------------------------------------------------------------------4 ) Which one of the following is a common problem encountered while trying to align
IT and the business?
a)
b)
c)
d)

Use of an external IT consultant for project management


Communication gaps between the business and IT
Inadequacy of problem management practices
Rushing to develop too quickly

-------------------------------------------------------------------------------5 ) Which of the following is a principle of IT Governance?


a)
b)
c)
d)

Accountability
Reliability
Availability
Probability

--------------------------------------------------------------------------------

6 ) Which of one of these is a strategic objective?


a)
b)
c)
d)

Delivering on time and budget


Zero faults
Developing systems in house
Devising strategies to achieve stated goals

-------------------------------------------------------------------------------7 ) Which of the following is a potential benefit of strategic alignment?


a)
b)
c)
d)

Cost-effective administration and management


Use of the latest technology
Being first to market
Delivery on time and within budget

-------------------------------------------------------------------------------8 ) Which of the following is an important component of risk management?


a)
b)
c)
d)

Taking no risks
Canceling any initiative that is risky
Understanding the appetite for risks
Using old tried and testes systems

-------------------------------------------------------------------------------9 ) Which of the following represents an organizational perspective of a balanced


scorecard?
a)
b)
c)
d)

A dashboard
A metric
A bonus scheme
A costumer

-------------------------------------------------------------------------------10 ) Which of the following is a characteristic of a control framework?


a)
b)
c)
d)

Strict rules
Penalty for noncompliance
Process orientation
Measurement system

--------------------------------------------------------------------------------

11 ) Which of the following is a key benefit of IT Governance?


a)
b)
c)
d)

Lower IT costs
Responsiveness of IT
Greater use of technology
Increased budget for IT projects

-------------------------------------------------------------------------------12 ) Which of the following is the best way to use COBIT?


a)
b)
c)
d)

To improve all IT process


As a mandatory standard
As a guide for the business to maximize the benefits of IT
To help prioritize which IT process to focus on

-------------------------------------------------------------------------------13 ) How does the COBIT Framework help an organization implement IT Governance?
a)
b)
c)
d)

It contains ready-made work programs


It provides policies and standards that can be mandated
It provides good practice and guidance
It has controls that can be implemented as they are

-------------------------------------------------------------------------------14 ) Which of the following is a component of the COBIT Framework?


a)
b)
c)
d)

Policies
Audit Programs
Implementation Guidance
IT Resources

-------------------------------------------------------------------------------15 ) What is a Control Objective?


a) A metric to be achieved by implementing control procedures in a particular
activity
b) A level of maturity to be achieved by implementing control procedures in a
particular activity
c) A statement of the desired result on purpose to be achieved by implementing
control procedures in a particular activity
d) A critical success factor to be achieved by implementing control procedures in a
particular activity
--------------------------------------------------------------------------------

16 ) What tool within COBIT helps the business and IT understand the business
requirements for information?
a)
b)
c)
d)

Information Criteria
Critical Success Factor
Control Objective
Maturity Model

-------------------------------------------------------------------------------17 ) Which of the following is a fiduciary requirement within the COBIT Information
Criteria?
a)
b)
c)
d)

Security
Integrity
Availability
Operational effectiveness

-------------------------------------------------------------------------------18 ) Which of the following is a COBIT security requirement?


a)
b)
c)
d)

Compliance
Availability
Reliability
Efficiency

-------------------------------------------------------------------------------19 ) Which of the following is a COBIT Information Criteria?


a)
b)
c)
d)

Fiduciary
Quality
Effectiveness
Security

-------------------------------------------------------------------------------20 ) What do Key Goal Indicators (KGIs) measure?


a)
b)
c)
d)

Maturity levels
Process performance
Degree of control
The achievement of an objective

--------------------------------------------------------------------------------

21 ) Which of the following is a COBIT IT Resource?


a)
b)
c)
d)

Database
Infrastructure
Operating System
Contractor

-------------------------------------------------------------------------------22 ) Which COBIT IT Resource can be defined as the automated user systems and
manual procedures that process information?
a)
b)
c)
d)

Applications
Process
Systems
Technology

-------------------------------------------------------------------------------23 ) Which of the following is a key feature of resource optimization?


a)
b)
c)
d)

Hiring low cost manpower


Retaining hardware to minimize replacement costs
Buying only proven products
Optimizing costs

-------------------------------------------------------------------------------24 ) Maturity Models help organizations to:


a)
b)
c)
d)

Meet goals and objectives


Evaluate controls
Determine the capability of the current process
Define performance measures

-------------------------------------------------------------------------------25 ) How can COBIT be used along with other international best practices and
standards, such as ITIL and ISO 17799?
a)
b)
c)
d)

To integrate the deployment of the required standards


As an implementation method
To validate the appropriateness of the other standard
As another view of the same area to support an approach

--------------------------------------------------------------------------------

26 ) Which framework is increasingly accepted as the standard response for generally


assessing IT controls?
a)
b)
c)
d)

ITIL
COBIT
ISO 17799
CMM

-------------------------------------------------------------------------------27 ) Which IT process within COBIT should ensure timely definition of operational
requirements and service levels?
a)
b)
c)
d)

AI1-Identify Automated Solutions


PO1-Define a Strategic Plan
DS2-Manage third-party services
AI4-Develop and maintain procedures

-------------------------------------------------------------------------------28 ) Which part of the COBIT toolset will help the business and IT understand how to
measure results?
a)
b)
c)
d)

Management Guidelines
Framework
Control Objectives
IT Governance Implementation Guide

-------------------------------------------------------------------------------29 ) Key Performance Indicators are factors that:


a)
b)
c)
d)

Indentify key controls


Identify key process
Positively influence the process outcome
Focus on control practices

-------------------------------------------------------------------------------30 ) Which level of maturity in the COBIT processes is usually associated with a
process being "standardized, documented and communicated"
a)
b)
c)
d)

Level 3 - defined
Level 2 - repeatable
Level 4 - managed
Level 1 - initial

--------------------------------------------------------------------------------

31 ) Which of the following is a stage in the COBIT Audit Guidelines structure?


a)
b)
c)
d)

Planning and organization


Maturity modeling
Setting metrics
Evaluation

-------------------------------------------------------------------------------32 ) COBIT's definition of fiduciary requirements differ from that of COSO in that
COBIT expands the scope to include:
a)
b)
c)
d)

Security
All information
Operations
Systems development

-------------------------------------------------------------------------------33 ) COBIT is a framework that focuses on:


a)
b)
c)
d)

How to do it rather than what needs to be achieved


What needs to be achieved rather than to do it
What needs to be organized rather than what needs to achieved
What needs to be implemented rather than how measure it

-------------------------------------------------------------------------------34 ) The COBIT Framework treats information as the result of the combined application
of IT Resources that are managed by:
a)
b)
c)
d)

Information Criteria
Control Objectives
IT Process
Metrics

-------------------------------------------------------------------------------35 ) The COSO Framework is a framework to help organizations establish and


determine:
a)
b)
c)
d)

Accounting standards
Auditing standards
Investment decisions
The effectiveness of the internal controls

--------------------------------------------------------------------------------

36 ) Which of the following COBIT IT Processes addresses the need for "program and
project risk assessment"?
a)
b)
c)
d)

PO1 - Define a strategic IT Plan


PO8 - Manage quality
PO9 - Assess and manage IT risks
PO10 - Manage projects

-------------------------------------------------------------------------------37 ) Which COBIT resource provides benchmarking capabilities?


a)
b)
c)
d)

COBIT Quickstart
COBIT Security Baseline
IT Governance Implementation Guide
COBIT Online

-------------------------------------------------------------------------------38 ) The percentage of projects completed on time and on budget is a COBIT KGI?
a) True
b) False
-------------------------------------------------------------------------------39 ) Which of the following aspects of COBIT can be benchmarked in COBIT Online?
a)
b)
c)
d)

Use of IT Resources
Use of Information Criteria
Use of KGIs and KPIs
Use of Domains

-------------------------------------------------------------------------------40 ) COBIT QuickStart is most useful for:


a)
b)
c)
d)

Senior management
Small and medium sized enterprises (SMEs)
Auditors
Control Specialists

RESPOSTAS
1. b
6. d
11. b
16. a
21. b
26. b
31. d
36. d

2. d
7. a
12. d
17. d
22. a
27. d
32. b
37. d

3. c
8. c
13. c
18. b
23. d
28. a
33. b
38. a

4. b
9. d
14. d
19. c
24. c
29. c
34. c
39. c

5. a
10. c
15. c
20. d
25. a
30. a
35. d
40. b