Certified in the Governance of Enterprise IT (CGEIT) — Question 323

Which of the following IT governance actions would be the BEST way to minimize the likelihood of IT failures jeopardizing the corporate value of an IT-dependent organization?

Answer options

• A. Define IT performance management measures
• B. Install an IT continuous monitoring solution
• C. Implement an IT risk management framework
• D. Benchmark IT strategy against industry peers

Correct answer: C

Explanation

Implementing an IT risk management framework is essential as it systematically identifies, assesses, and mitigates risks that could lead to IT failures, thereby protecting corporate value. While defining performance measures and continuous monitoring are important, they do not comprehensively address the root causes of risks. Benchmarking against peers provides insight but does not directly minimize potential IT failures.