Certified in the Governance of Enterprise IT (CGEIT) — Question 215

Which of the following would BEST support an enterprise's initiative to incorporate desired organizational behaviors into the IT governance framework?

Answer options

• A. Enterprise RACI matrix
• B. Risk mitigation strategies and action plans
• C. Enterprise code of ethics
• D. Documented consequences for noncompliance

Correct answer: C

Explanation

The Enterprise code of ethics serves as a guiding document that outlines the expected behaviors within the organization, making it the best option for embedding desired behaviors into the IT governance framework. In contrast, the Enterprise RACI matrix and risk mitigation strategies primarily focus on roles and risk management rather than behavior, while documented consequences address compliance issues but do not inherently promote positive behavior.