Certified in the Governance of Enterprise IT (CGEIT) — Question 179

An enterprise is assessing whether to utilize wearable technology. The enterprise has no prior experience with this technology and has asked the chief technology officer (CTO) to assess the impact to the enterprise. The CTO should FIRST:

Answer options

• A. prioritize wearable technology risk.
• B. understand the enterprise's risk tolerance.
• C. map the business goals to IT risk processes.
• D. create an IT risk scorecard.

Correct answer: B

Explanation

The correct answer is B because understanding the enterprise's risk tolerance is crucial before assessing any technology's impact. This foundational knowledge allows the CTO to prioritize risks appropriately. The other options, while relevant, should come after establishing the organization's risk tolerance.