7.

COBIT 5 takes the view that all IT processes should provide clear links between all of the following except:

Multiple Choice

• IT controls.

• IT components.

• IT governance requirements.

• IT processes.

20. What is the primary objective of data security controls?

Multiple Choice

To establish a framework for controlling the design, security, and use of computer programs throughout an organization.

To formalize standard, rules, and procedures to ensure the organization's control are properly executed.

To ensure that data storage media are subject to authorization prior to access, change, or destruction.

To monitor the use of system software to prevent unauthorized access to system software and computer programs.

24.

Which of the following business rules illustrates a proper implementation of internal control?

Multiple Choice

• The employee that performs part of the conversion work cant also perform other work in the conversion process.

• The employee that authorizes production cant be the same employee that issues raw materials.

• The person that receives the finished items cant also place them into their assigned warehouse location.

• The employee that inspects the work cant be the same employee that discards defective items.