CGEIT Exam Dumps - Certified in the Governance of Enterprise IT Exam

According to the ISACA paper on IT Governance Reporting1, the IT strategy committee is a board-level committee that is responsible for overseeing and guiding the IT strategy and governance of the enterprise. The IT strategy committee helps to ensure that IT supports and enables the achievement of the enterprise’s strategy, objectives and goals, and that IT delivers value, benefits and competitive advantage to the enterprise. One of the decisions that would be made by the IT strategy committee is the composition of the investment portfolio, which is the set of IT projects and programs that are selected, prioritized, funded and monitored by the enterprise. The composition of the investment portfolio reflects the strategic alignment, value proposition and risk profile of IT, as well as the resource allocation and optimization of IT. The other options are not decisions that would be made by the IT strategy committee, but rather by other IT governance bodies or roles, such as the IT steering committee, the IT management team, or the chief information officer (CIO). References: IT Governance Reporting, IT Strategy Committee

A balanced scorecard is a tool that would best demonstrate the current state of strategic alignment, because it is a framework that translates the enterprise’s vision and strategy into a set of performance measures that cover four perspectives: financial, customer, internal business process, and learning and growth12. A balanced scorecard can help to assess how well the IT function is supporting the business objectives, and identify the gaps and opportunities for improvement. A balanced scorecard can also help to communicate and monitor the IT strategy and goals, and align the IT activities and resources with the business needs and expectations1 .

Key risk indicators (KRIs) are metrics that measure the likelihood and impact of potential or actual risks. KRIs related to legal and regulatory compliance are designed to help the enterprise monitor and manage the risk of violating laws, regulations, standards, or ethical practices that apply to its operating environment. The primary governance objective for selecting KRIs related to legal and regulatory compliance should be to identify the risk of noncompliance, which means assessing the probability and severity of compliance breaches, as well as the root causes and consequences of such breaches. By identifying the risk of noncompliance, the enterprise can take proactive measures to prevent, mitigate, or remediate compliance issues, and to ensure that its compliance program is effective, efficient, and aligned with its business objectives and strategies. References: CGEIT Exam Content Outline | ISACA1, CGEIT Review Manual (Digital Version), Compliance Metrics and KPIs For Measuring Compliance Effectiveness — RiskOptics2, 11 Key Compliance KPIs + Examples (& Why You Should Track Them …3

IT resource planning is the process of identifying, allocating, and managing the IT resources needed to support the enterprise’s objectives and strategies. The primary objective of IT resource planning should be to maximize the value received from IT, which means ensuring that the IT resources are aligned with the business needs, optimized for efficiency and effectiveness, and delivering the expected benefits and outcomes. IT resource planning should also consider the risks, costs, and opportunities associated with IT resources, as well as the service level agreements (SLAs) and outsourcing options that may affect the quality and availability of IT services. References: CGEIT Exam Content Outline | ISACA1, CGEIT Review Manual (Digital Version), What are the Objectives of Resource Management? | Kantata2, What Is Resource Planning: A Comprehensive Guide3

 Effective IT governance is the process of ensuring that IT supports the achievement of the organization’s goals and objectives, and delivers value to its stakeholders1. IT governance involves aligning the IT strategy, policies, processes, and resources with the business strategy, needs, and expectations2. Therefore, the BEST evidence of effective IT governance is business value and customer satisfaction. Business value is the measure of the benefits and outcomes that IT provides to the organization, such as increased revenue, reduced costs, improved efficiency, enhanced innovation, or competitive advantage3. Customer satisfaction is the measure of the quality and performance of IT services and products, as perceived by the internal and external customers of the organization, such as employees, partners, suppliers, or end-users. By demonstrating business value and customer satisfaction, IT governance can show that IT is aligned with and supports the business goals and objectives.

The other options are not as good as option B. While cost savings and human resource optimization, IT risk identification and mitigation, and comprehensive IT policies and procedures are important aspects of IT governance, they are not sufficient to demonstrate effective IT governance. They are rather means to achieve the end goal of delivering business value and customer satisfaction. They do not necessarily reflect the extent to which IT supports the achievement of the organization’s goals and objectives. References :=

• What is IT Governance? Definition & Examples | ASQ2
• What is IT governance? A formal way to align IT & business strategy1
• How to Measure the Value of an IT Investment - TechSoup3
• Measuring Customer Satisfaction in Information Technology Services - ISACA