50 high-quality MCQ questions covering CISA Domain 2 – Governance and Management of IT (as per the latest ISACA CISA exam focus). ANSWERS AT THE END.
Questions are exam-oriented, conceptual, scenario-based, and tricky, exactly the type tested in CISA.
CISA – Domain 2: Governance and Management of IT
50 MCQs Time Allowed: 60 minutes
1. Which of the following BEST ensures alignment between IT strategy and business strategy?
A. IT steering committee
B. Enterprise architecture
C. Balanced scorecard
D. COBIT maturity model
Answer:
2. Who is PRIMARILY responsible for ensuring IT governance is effective?
A. CIO
B. IT operations manager
C. Board of directors
D. Internal auditor
Answer:
3. Which document formally defines decision-making authority for IT investments?
A. IT policies
B. IT governance framework
C. IT procedures
D. Service level agreements
Answer:
4. Which of the following BEST demonstrates effective IT governance?
A. High IT spending
B. Alignment of IT goals with enterprise goals
C. Use of latest technology
D. Centralized IT department
Answer:
5. A key objective of an IT steering committee is to:
A. Perform system audits
B. Resolve user access issues
C. Prioritize IT investments
D. Develop application code
Answer:
6. Which role is MOST responsible for IT risk management?
A. IT operations
B. Business process owners
C. IT governance body
D. Application developers
Answer:
7. Which metric BEST evaluates IT value delivery?
A. Number of IT staff
B. IT project completion time
C. Return on IT investment
D. Number of incidents
Answer:
8. Which framework is MOST commonly used for IT governance?
A. ITIL
B. ISO 27001
C. COBIT
D. PRINCE2
Answer:
9. Which of the following is a KEY component of IT governance?
A. Incident management
B. Value delivery
C. Change requests
D. Patch management
Answer:
10. Who should approve the IT strategic plan?
A. CIO
B. IT steering committee
C. Internal audit
D. Project manager
Answer:
11. Which practice ensures accountability in IT governance?
A. Segregation of duties
B. Clear roles and responsibilities
C. System documentation
D. Automated controls
Answer:
12. The PRIMARY goal of IT portfolio management is to:
A. Reduce IT staff
B. Balance risk and value of IT investments
C. Improve help desk response time
D. Increase system availability
Answer:
13. Which role ensures IT delivers business value?
A. IT technician
B. Data custodian
C. Business process owner
D. System programmer
Answer:
14. Which document defines acceptable use of IT resources?
A. IT charter
B. IT policy
C. IT procedure
D. SLA
Answer:
15. The BEST indicator of poor IT governance is:
A. High IT spending
B. Frequent system outages
C. Lack of business involvement in IT decisions
D. Outsourced IT services
Answer:
16. What is the PRIMARY purpose of enterprise architecture?
A. Reduce IT costs
B. Ensure systems compatibility
C. Align IT with business processes
D. Improve system security
Answer:
17. Which committee resolves conflicts between IT and business priorities?
A. Audit committee
B. Change advisory board
C. IT steering committee
D. Risk management committee
Answer:
18. Which of the following BEST ensures compliance with external regulations?
A. ITIL
B. Corporate governance
C. Information security policy
D. Business continuity planning
Answer:
19. Who should OWN IT risks?
A. IT department
B. Internal audit
C. Business management
D. External consultants
Answer:
20. Which is the MOST effective way to measure IT performance?
A. Number of servers
B. Service level metrics
C. IT budget size
D. Staff utilization
Answer:
21. Which governance principle emphasizes transparency and accountability?
A. Risk optimization
B. Value delivery
C. Stakeholder engagement
D. Performance measurement
Answer:
22. IT governance is BEST described as:
A. Management of IT operations
B. Decision rights and accountability framework
C. IT service management
D. Control over IT infrastructure
Answer:
23. Which role is MOST appropriate to approve IT policies?
A. System users
B. IT management
C. Senior management
D. Help desk
Answer:
24. What is the PRIMARY purpose of an IT charter?
A. Define IT architecture
B. Establish authority and responsibility of IT
C. Document procedures
D. Specify controls
Answer:
25. Which is MOST important for successful IT governance?
A. Advanced technology
B. Strong leadership support
C. Skilled developers
D. Automated tools
Answer:
26. Who should participate in IT governance decisions?
A. Only IT management
B. Only business executives
C. Both IT and business management
D. External auditors
Answer:
27. Which of the following BEST aligns IT initiatives with business priorities?
A. Project management office
B. IT policies
C. IT portfolio management
D. Change management
Answer:
28. Which metric BEST supports IT governance reporting?
A. CPU utilization
B. Cost variance
C. Business outcome indicators
D. Network uptime
Answer:
29. Which activity is part of IT demand management?
A. Incident resolution
B. Capacity planning
C. Evaluating business requests for IT services
D. Patch management
Answer:
30. Who should be accountable for IT investment benefits realization?
A. CIO
B. IT project manager
C. Business sponsor
D. System analyst
Answer:
31. Which factor MOST influences IT governance maturity?
A. Number of IT staff
B. Degree of management involvement
C. Level of automation
D. Hardware capacity
Answer:
32. Which tool helps map IT goals to business goals?
A. Risk register
B. COBIT goals cascade
C. ITIL service catalog
D. RACI chart
Answer:
33. Which role ensures segregation between IT development and operations?
A. CIO
B. IT governance body
C. Internal audit
D. HR department
Answer:
34. Which is the PRIMARY objective of IT performance management?
A. Reduce IT costs
B. Improve technical efficiency
C. Ensure IT meets business needs
D. Increase automation
Answer:
35. Which of the following is NOT part of IT governance?
A. Risk management
B. Value delivery
C. Incident handling
D. Strategic alignment
Answer:
36. Which framework integrates governance and management objectives?
A. ITIL
B. ISO 20000
C. COBIT
D. PMBOK
Answer:
37. What is the BEST evidence of effective IT governance?
A. Documented policies
B. Audit reports
C. Measurable business benefits from IT
D. Reduced IT headcount
Answer:
38. Who ensures compliance with IT policies?
A. End users
B. IT governance body
C. Internal audit
D. System developers
Answer:
39. Which governance mechanism ensures risk awareness?
A. Incident logs
B. Risk appetite statement
C. Change tickets
D. System metrics
Answer:
40. IT governance primarily focuses on:
A. Technology management
B. Business value and risk
C. Operational efficiency
D. System security
Answer:
41. Who defines IT risk appetite?
A. CIO
B. IT manager
C. Senior management
D. Internal audit
Answer:
42. Which practice ensures continuous improvement in IT governance?
A. Benchmarking
B. Incident tracking
C. Access reviews
D. Backup testing
Answer:
43. What is the PRIMARY benefit of an IT balanced scorecard?
A. Technical performance tracking
B. Financial reporting
C. Strategic alignment monitoring
D. Incident reduction
Answer:
44. Which role approves major IT investments?
A. Project manager
B. CIO
C. Board or executive committee
D. IT operations
Answer:
45. Which factor MOST impacts IT governance success?
A. Size of IT budget
B. Management commitment
C. Number of applications
D. Vendor relationships
Answer:
46. Which is MOST important when outsourcing IT services?
A. Lowest cost
B. Contract flexibility
C. Governance and oversight
D. Vendor reputation
Answer:
47. Who ensures alignment of IT KPIs with business KPIs?
A. IT operations
B. Business executives
C. IT governance body
D. System users
Answer:
48. Which document links IT objectives to enterprise objectives?
A. IT procedures
B. Enterprise strategy
C. IT strategic plan
D. IT asset register
Answer:
49. Which principle ensures IT risks are managed appropriately?
A. Value delivery
B. Risk optimization
C. Performance measurement
D. Resource management
Answer:
50. The MOST effective way to improve IT governance is to:
A. Increase controls
B. Use latest frameworks
C. Strengthen business-IT collaboration
D. Outsource IT
Answer:
📌 CISA Domain 2 – Exam Tips
- Board owns IT governance
- Business owns IT risks
- COBIT = BEST framework
- IT steering committee = key exam favorite
- Focus on alignment, value, risk, accountability
www.gmsisuccess.in
CISA – Domain 2: Governance and Management of IT
50 MCQs with Answers
1. Which of the following BEST ensures alignment between IT strategy and business strategy?
A. IT steering committee
B. Enterprise architecture
C. Balanced scorecard
D. COBIT maturity model
Answer: A
2. Who is PRIMARILY responsible for ensuring IT governance is effective?
A. CIO
B. IT operations manager
C. Board of directors
D. Internal auditor
Answer: C
3. Which document formally defines decision-making authority for IT investments?
A. IT policies
B. IT governance framework
C. IT procedures
D. Service level agreements
Answer: B
4. Which of the following BEST demonstrates effective IT governance?
A. High IT spending
B. Alignment of IT goals with enterprise goals
C. Use of latest technology
D. Centralized IT department
Answer: B
5. A key objective of an IT steering committee is to:
A. Perform system audits
B. Resolve user access issues
C. Prioritize IT investments
D. Develop application code
Answer: C
6. Which role is MOST responsible for IT risk management?
A. IT operations
B. Business process owners
C. IT governance body
D. Application developers
Answer: C
7. Which metric BEST evaluates IT value delivery?
A. Number of IT staff
B. IT project completion time
C. Return on IT investment
D. Number of incidents
Answer: C
8. Which framework is MOST commonly used for IT governance?
A. ITIL
B. ISO 27001
C. COBIT
D. PRINCE2
Answer: C
9. Which of the following is a KEY component of IT governance?
A. Incident management
B. Value delivery
C. Change requests
D. Patch management
Answer: B
10. Who should approve the IT strategic plan?
A. CIO
B. IT steering committee
C. Internal audit
D. Project manager
Answer: B
11. Which practice ensures accountability in IT governance?
A. Segregation of duties
B. Clear roles and responsibilities
C. System documentation
D. Automated controls
Answer: B
12. The PRIMARY goal of IT portfolio management is to:
A. Reduce IT staff
B. Balance risk and value of IT investments
C. Improve help desk response time
D. Increase system availability
Answer: B
13. Which role ensures IT delivers business value?
A. IT technician
B. Data custodian
C. Business process owner
D. System programmer
Answer: C
14. Which document defines acceptable use of IT resources?
A. IT charter
B. IT policy
C. IT procedure
D. SLA
Answer: B
15. The BEST indicator of poor IT governance is:
A. High IT spending
B. Frequent system outages
C. Lack of business involvement in IT decisions
D. Outsourced IT services
Answer: C
16. What is the PRIMARY purpose of enterprise architecture?
A. Reduce IT costs
B. Ensure systems compatibility
C. Align IT with business processes
D. Improve system security
Answer: C
17. Which committee resolves conflicts between IT and business priorities?
A. Audit committee
B. Change advisory board
C. IT steering committee
D. Risk management committee
Answer: C
18. Which of the following BEST ensures compliance with external regulations?
A. ITIL
B. Corporate governance
C. Information security policy
D. Business continuity planning
Answer: B
19. Who should OWN IT risks?
A. IT department
B. Internal audit
C. Business management
D. External consultants
Answer: C
20. Which is the MOST effective way to measure IT performance?
A. Number of servers
B. Service level metrics
C. IT budget size
D. Staff utilization
Answer: B
21. Which governance principle emphasizes transparency and accountability?
A. Risk optimization
B. Value delivery
C. Stakeholder engagement
D. Performance measurement
Answer: C
22. IT governance is BEST described as:
A. Management of IT operations
B. Decision rights and accountability framework
C. IT service management
D. Control over IT infrastructure
Answer: B
23. Which role is MOST appropriate to approve IT policies?
A. System users
B. IT management
C. Senior management
D. Help desk
Answer: C
24. What is the PRIMARY purpose of an IT charter?
A. Define IT architecture
B. Establish authority and responsibility of IT
C. Document procedures
D. Specify controls
Answer: B
25. Which is MOST important for successful IT governance?
A. Advanced technology
B. Strong leadership support
C. Skilled developers
D. Automated tools
Answer: B
26. Who should participate in IT governance decisions?
A. Only IT management
B. Only business executives
C. Both IT and business management
D. External auditors
Answer: C
27. Which of the following BEST aligns IT initiatives with business priorities?
A. Project management office
B. IT policies
C. IT portfolio management
D. Change management
Answer: C
28. Which metric BEST supports IT governance reporting?
A. CPU utilization
B. Cost variance
C. Business outcome indicators
D. Network uptime
Answer: C
29. Which activity is part of IT demand management?
A. Incident resolution
B. Capacity planning
C. Evaluating business requests for IT services
D. Patch management
Answer: C
30. Who should be accountable for IT investment benefits realization?
A. CIO
B. IT project manager
C. Business sponsor
D. System analyst
Answer: C
31. Which factor MOST influences IT governance maturity?
A. Number of IT staff
B. Degree of management involvement
C. Level of automation
D. Hardware capacity
Answer: B
32. Which tool helps map IT goals to business goals?
A. Risk register
B. COBIT goals cascade
C. ITIL service catalog
D. RACI chart
Answer: B
33. Which role ensures segregation between IT development and operations?
A. CIO
B. IT governance body
C. Internal audit
D. HR department
Answer: B
34. Which is the PRIMARY objective of IT performance management?
A. Reduce IT costs
B. Improve technical efficiency
C. Ensure IT meets business needs
D. Increase automation
Answer: C
35. Which of the following is NOT part of IT governance?
A. Risk management
B. Value delivery
C. Incident handling
D. Strategic alignment
Answer: C
36. Which framework integrates governance and management objectives?
A. ITIL
B. ISO 20000
C. COBIT
D. PMBOK
Answer: C
37. What is the BEST evidence of effective IT governance?
A. Documented policies
B. Audit reports
C. Measurable business benefits from IT
D. Reduced IT headcount
Answer: C
38. Who ensures compliance with IT policies?
A. End users
B. IT governance body
C. Internal audit
D. System developers
Answer: B
39. Which governance mechanism ensures risk awareness?
A. Incident logs
B. Risk appetite statement
C. Change tickets
D. System metrics
Answer: B
40. IT governance primarily focuses on:
A. Technology management
B. Business value and risk
C. Operational efficiency
D. System security
Answer: B
41. Who defines IT risk appetite?
A. CIO
B. IT manager
C. Senior management
D. Internal audit
Answer: C
42. Which practice ensures continuous improvement in IT governance?
A. Benchmarking
B. Incident tracking
C. Access reviews
D. Backup testing
Answer: A
43. What is the PRIMARY benefit of an IT balanced scorecard?
A. Technical performance tracking
B. Financial reporting
C. Strategic alignment monitoring
D. Incident reduction
Answer: C
44. Which role approves major IT investments?
A. Project manager
B. CIO
C. Board or executive committee
D. IT operations
Answer: C
45. Which factor MOST impacts IT governance success?
A. Size of IT budget
B. Management commitment
C. Number of applications
D. Vendor relationships
Answer: B
46. Which is MOST important when outsourcing IT services?
A. Lowest cost
B. Contract flexibility
C. Governance and oversight
D. Vendor reputation
Answer: C
47. Who ensures alignment of IT KPIs with business KPIs?
A. IT operations
B. Business executives
C. IT governance body
D. System users
Answer: C
48. Which document links IT objectives to enterprise objectives?
A. IT procedures
B. Enterprise strategy
C. IT strategic plan
D. IT asset register
Answer: C
49. Which principle ensures IT risks are managed appropriately?
A. Value delivery
B. Risk optimization
C. Performance measurement
D. Resource management
Answer: B
50. The MOST effective way to improve IT governance is to:
A. Increase controls
B. Use latest frameworks
C. Strengthen business-IT collaboration
D. Outsource IT
Answer: C
