Certified Information Systems Auditor (CISA) — Question 1210

Which of the following provides the BEST assurance that an organization's internal IT projects will consistently deliver the expected return on investment (ROI)?

Answer options

• A. Outsourcing software development to competent third parties
• B. Developing a robust business case
• C. Organizing the project portfolio according to business risk
• D. Providing project status updates

Correct answer: B

Explanation

The correct answer is B, as a robust business case helps justify investments and outlines expected benefits, making it easier to ensure a positive ROI. Options A and C focus on external resources and risk management, which do not guarantee ROI. Option D, while useful for tracking progress, does not directly influence the potential return on investment.