Isaca Updated CGEIT Exam Questions and Answers by dulcie

The most effective way for the CIO to ensure the IT management team is held accountable for the delivery of the plan is to revise the managers’ performance goals to include key objectives that are aligned with the IT strategic plan. This way, the managers will have clear and measurable targets that reflect their contribution to the IT strategy and vision. The CIO can also monitor and evaluate the managers’ progress and performance based on these goals, and provide feedback, recognition, or improvement actions as needed.

The other options are not the most effective way for the CIO to ensure the IT management team is held accountable for the delivery of the plan. Updating the IT balanced scorecard with key objectives is a good practice, but it does not directly link the objectives to the managers’ individual responsibilities and incentives. Enforcing disciplinary action for managers if the plan is not delivered is a negative and punitive approach, which may demotivate and discourage the managers from pursuing the plan. Providing management training on IT strategic objectives is a helpful initiative, but it does not specify how the managers will be assessed and rewarded for achieving the objectives.

For more information on IT strategic planning and accountability, you can refer to these web sources:

• IT Strategic Planning: A Step-by-Step Guide
• How to Hold Your Team Accountable
• IT Governance - CIO Wiki

The most important course of action for IT senior management to improve IT governance within the organization is to understand the driver that led to a desire to change. IT governance is the process of ensuring that IT supports and enables the achievement of the enterprise’s goals and objectives, and delivers value to the stakeholders1. IT governance is influenced by various internal and external factors, such as business strategy, customer expectations, regulatory requirements, industry standards, best practices, and emerging technologies1. Therefore, before initiating any improvement initiatives, IT senior management should first identify and analyze the driver that prompted the board of directors to request a change in IT governance. This will help them to understand the current situation, the desired state, the gap between them, and the rationale and urgency for improvement2. By understanding the driver that led to a desire to change, IT senior management can also align their improvement efforts with the board’s vision and expectations, communicate the benefits and challenges of change, and gain their support and commitment2. References: CGEIT Review Manual (Digital Version) or CGEIT Review Manual (Print Version), Chapter 1: Governance of Enterprise IT, Section 1.1: IT Governance Frameworks and Principles, Page 9-10. What is CGEIT? A certification for seasoned IT governance professionals.

The CIO should first meet with key stakeholders to understand their concerns about the IT governance reporting transparency. This will help the CIO to identify the root causes of the perception, the expectations and needs of the stakeholders, and the gaps and issues in the current reporting process. Meeting with key stakeholders will also help to build trust and rapport, and to solicit feedback and suggestions for improvement. The CIO can then use this information to develop a communication and awareness strategy, adopt a standard template, and add transparency metrics to the balanced scorecard. These actions will help to enhance the transparency, consistency, and quality of the IT governance reporting, and to address the stakeholder concerns effectively. References := How Boards Realise IT Governance Transparency: A Study Into Current Practice of the COBIT EDM05 Process, Page 1.

 When prioritizing IT projects, the primary consideration for an enterprise should be the impact on the business due to expected project outcomes, because this would align the IT investments with the enterprise’s strategic objectives and value creation. The impact on the business can be assessed by using criteria such as return on investment (ROI), net present value (NPV), risk exposure, customer satisfaction, and competitive advantage12. References:= ISACA, CGEIT Review Manual, 7th Edition, 2019, page 31-32.