Certified Information Systems Auditor (CISA) — Question 258

Which of the following is the GREATEST benefit of adopting an international IT governance framework rather than establishing a new framework based on the actual situation of a specific organization?

Answer options

• A. Comprehensive coverage of fundamental and critical risk and control areas for IT governance
• B. Fewer resources expended on trial-and-error attempts to fine-tune implementation methodologies
• C. Readily available resources such as domains and risk and control methodologies
• D. Wide acceptance by different business and support units with IT governance objectives

Correct answer: A

Explanation

The correct answer is A because an international IT governance framework provides a well-rounded approach covering crucial risk and control areas that are essential for effective governance. Options B, C, and D, while beneficial, do not match the comprehensive coverage that is paramount for robust IT governance.