Certified in the Governance of Enterprise IT (CGEIT) — Question 128

Which of the following is the MOST important reason for selecting IT key risk indicators (KRIs)?

Answer options

• A. Enabling comparison against similar IT KRIs
• B. Increasing the probability of achieving IT goals
• C. Assessing the current IT controls model
• D. Demonstrating the effectiveness of IT risk policies

Correct answer: B

Explanation

The correct answer is B because selecting appropriate KRIs directly influences the likelihood of meeting IT objectives by providing measurable insights into potential risks. The other options, while important, focus on comparisons, assessments, or demonstrations that do not primarily address the core purpose of KRIs in achieving IT goals.