Professional Documents
Culture Documents
Management of IT
113 © Copyright 2016 ISACA. All rights reserved. 114 © Copyright 2016 ISACA. All rights reserved.
How does Task 2.8 relate to each of the following How does Task 2.8 relate to each of the following
knowledge statements? knowledge statements?
Knowledge Statement Connection Knowledge Statement Connection
K2.6 Knowledge of the processes for Impact of legislative requirements on K2.13 Knowledge of quality Understanding of structures, roles and
the development, implementation and organization’s standards, policies, management and quality assurance responsibilities of the QA function with
maintenance of IT strategy, policies, procedures and processes (QA) systems the enterprise and the use of key
standards and procedures performance indicators (KPIs) in
K2.7 Knowledge of the use of Understanding management driving performance optimization for
capability and maturity models techniques to continuously improve IT effective IT governance
performance K2.14 Knowledge of practices for Concepts related to establishing,
K2.8 Knowledge of process Role of quality management in monitoring and reporting of IT monitoring and reporting processes
optimization techniques bridging the gap between current performance (e.g., balanced needed by the governance team to
state and desired state scorecards [BSCs] and key evaluate performance and provide
performance indicators [KPIs]) direction to senior management
115 © Copyright 2016 ISACA. All rights reserved. 116 © Copyright 2016 ISACA. All rights reserved.
117 © Copyright 2016 ISACA. All rights reserved. 118 © Copyright 2016 ISACA. All rights reserved.
119 © Copyright 2016 ISACA. All rights reserved. 120 © Copyright 2016 ISACA. All rights reserved.
121 © Copyright 2016 ISACA. All rights reserved. 122 © Copyright 2016 ISACA. All rights reserved.
123 © Copyright 2016 ISACA. All rights reserved. 124 © Copyright 2016 ISACA. All rights reserved.
125 © Copyright 2016 ISACA. All rights reserved. 126 © Copyright 2016 ISACA. All rights reserved.
127 © Copyright 2016 ISACA. All rights reserved. 128 © Copyright 2016 ISACA. All rights reserved.
How does Task 2.9 relate to each of the following How does Task 2.9 relate to each of the following
knowledge statements? knowledge statements?
Knowledge Statement Connection Knowledge Statement Connection
K2.10 Knowledge of IT supplier Relationship between vendor K2.14 Knowledge of practices for Understanding and using concepts
selection, contract management, management and contractual monitoring and reporting of IT and techniques related to
relationship management and terms and their impact on driving performance (e.g., balanced establishing, monitoring and
performance monitoring IT governance of the outsourcing scorecards [BSCs] and key reporting processes needed by the
processes, including third-party entity performance indicators [KPIs]) governance team to evaluate
outsourcing relationships performance and provide direction
K2.11 Knowledge of enterprise Risk analysis methods used in to senior management
risk management (ERM) aligning ERM with the results from
monitoring and reporting of IT
KPIs
129 © Copyright 2016 ISACA. All rights reserved. 130 © Copyright 2016 ISACA. All rights reserved.
131 © Copyright 2016 ISACA. All rights reserved. 132 © Copyright 2016 ISACA. All rights reserved.
o Life cycle cost-benefit analysis • Assessment of life cycle, life cycle cost and benefit analysis
Life Cycle Cost-benefit to determine strategic direction for IT systems
133 © Copyright 2016 ISACA. All rights reserved. 134 © Copyright 2016 ISACA. All rights reserved.
135 © Copyright 2016 ISACA. All rights reserved. 136 © Copyright 2016 ISACA. All rights reserved.
137 © Copyright 2016 ISACA. All rights reserved. 138 © Copyright 2016 ISACA. All rights reserved.
139 © Copyright 2016 ISACA. All rights reserved. 140 © Copyright 2016 ISACA. All rights reserved.
141 © Copyright 2016 ISACA. All rights reserved. 142 © Copyright 2016 ISACA. All rights reserved.
143 © Copyright 2016 ISACA. All rights reserved. 144 © Copyright 2016 ISACA. All rights reserved.
145 © Copyright 2016 ISACA. All rights reserved. 146 © Copyright 2016 ISACA. All rights reserved.
and Analysis
The potential for harm from these can be quantified
through a BIA. BC
Plan
Development
Business
BC Strategy
Impact
Development Strategy
Analysis
Execution (Risk
Countermeasures
Implementation)
147 © Copyright 2016 ISACA. All rights reserved. 148 © Copyright 2016 ISACA. All rights reserved.
151 © Copyright 2016 ISACA. All rights reserved. 152 © Copyright 2016 ISACA. All rights reserved.
153 © Copyright 2016 ISACA. All rights reserved. 154 © Copyright 2016 ISACA. All rights reserved.
o Verifying BCP effectiveness through a review of plan 3. Review the business continuity
testing teams.
o Evaluating cloud-based mechanisms and offsite
storage 4. Test the plan.
o Assessing the ability of personnel to respond
effectively in the event of an incident
155 © Copyright 2016 ISACA. All rights reserved. 156 © Copyright 2016 ISACA. All rights reserved.
157 © Copyright 2016 ISACA. All rights reserved. 158 © Copyright 2016 ISACA. All rights reserved.
159 © Copyright 2016 ISACA. All rights reserved. 160 © Copyright 2016 ISACA. All rights reserved.
161 © Copyright 2016 ISACA. All rights reserved. 162 © Copyright 2016 ISACA. All rights reserved.
163 © Copyright 2016 ISACA. All rights reserved. 164 © Copyright 2016 ISACA. All rights reserved.