NIST-COBIT-2019 試験問題を無料オンラインアクセス

Which of the following should an organization review to gain a better understanding of the likelihood and impact of cybersecurity events?

• A.Cybersecurity frameworks, standards, and guidelines
• B.Cyber threat information from internal and external sources
• C.Relevant internal or external capability benchmarks

Which of the following is an objective of COBIT Implementation Phase 3 - Where Do We Want to Be?

• A.Create a detailed business case and high-level program plan.
• B.Identify critical processes or other components addressed in the improvement plan.
• C.Determine the current capability of selected processes.

Which of the following is the PRIMARY reason for establishing open communication between all participants and stakeholders as part of the implementation phase?

• A.To establish the sharing of information with external partners
• B.To describe the high-level roadmap for achieving the vision
• C.To ensure issues can be identified and resolved

Which role will benefit MOST from a better understanding of the current cybersecurity posture by applying the CSF?

• A.Executives
• B.Acquisition specialists
• C.Legal experts

Which of the following is the MOST important input for prioritizing resources during program initiation?

• A.Replacement cost
• B.Risk register
• C.Business impact assessment