ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CGEIT All Questions

View all questions & answers for the CGEIT exam
Go to Exam

Exam CGEIT topic 1 question 10 discussion

Actual exam question from Isaca's CGEIT
Question #: 10
Topic #: 1
[All CGEIT Questions]

A regulatory audit assessed an enterprise's main transactional application as noncompliant. In addition to fines and required corrections, an agreement was reached to implement a set of governance controls over IT. Accountability for these controls is BEST assigned to which of the following?

  • A. Internal audit director
  • B. CIO
  • C. The board of directors
  • D. Application users
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by WongY at Aug. 9, 2021, 3:46 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
2211094
1 month, 4 weeks ago
Selected Answer: B
B should be, A is not right as cant be responsible for the Application and conflict of interest as wouldn't be able to Audit himself/herself
upvoted 1 times
...
Sathish5
8 months, 1 week ago
Definitely not A because Internal audit is not accountable for applications. In this scenario, they have mentioned, CIO is accountable for controls.
upvoted 2 times
...
Reensy
1 year, 2 months ago
Selected Answer: B
CIO is accountable
upvoted 2 times
...
Frank1480
1 year, 5 months ago
B. CIO. As the main transactional application is an IT system, it is the responsibility of the Chief Information Officer (CIO) to ensure that governance controls are implemented effectively. The CIO is responsible for managing the enterprise's IT infrastructure, ensuring that it complies with regulations, and managing risks associated with IT systems. Therefore, accountability for the controls is best assigned to the CIO. While the internal audit director may provide oversight and ensure that controls are operating effectively, the ultimate responsibility lies with the CIO who has a more comprehensive understanding of the enterprise's IT infrastructure and systems. The board of directors provides governance oversight but is not typically responsible for day-to-day operational matters. Application users are typically responsible for using the system appropriately, but not for implementing or managing governance controls
upvoted 2 times
...
WongY
2 years, 11 months ago
G5-9 Review Question; CIO is overall accountable for IT function
upvoted 1 times
WongY
2 years, 11 months ago
D1 - Q14 : correction - BoD is ultimately accountable for ensuring the corrective measure
upvoted 4 times
patkemoe
1 month, 1 week ago
Yes but BOD is strategic not Implementation thenfore, CIO is the the best candidat
upvoted 1 times
...
...
Ramye
2 years, 11 months ago
Exactly, that is what my understanding also.
upvoted 1 times
...
...
WongY
3 years ago
My thought is BOD should be accountable while IA director to be responsible.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago