Download Latest CGEIT Questions

Data storage and transmission policies are documents that define the rules and guidelines for how data is stored, accessed, shared, and transmitted within and outside an organization. Data storage and transmission policies can help to ensure the security, privacy, compliance, and quality of the data, as well as to prevent data loss, leakage, or breach12.

If an enterprise has decided to utilize a cloud vendor for the first time to provide email as a service, eliminating in-house email capabilities, one of the IT strategic actions that should be triggered by this decision is to update and communicate data storage and transmission policies. This is because using a cloud vendor for email as a service may introduce new risks and challenges for data storage and transmission, such as data sovereignty, data ownership, data encryption, data backup, data retention, data deletion, data access control, data audit, data breach notification, etc34. Therefore, it is important to update the data storage and transmission policies to reflect the changes in the email environment and the cloud vendor’s responsibilities and obligations. It is also important to communicate the updated policies to all relevant stakeholders, such as employees, customers, partners, regulators, etc., to ensure their awareness and compliance12. References: Data Storage Policy: Definition & Best Practices. Data Transmission Policy: Definition & Best Practices. Cloud Email Security: Definition & Best Practices. Cloud Data Protection: Definition & Best Practices.

The next step for the IT organization when they receive news that the branches in a country where the impact to the enterprise is to be greatest are being sold is to adjust the ERP implementation plan and budget. This means that the IT organization should assess the implications of the sale on the ERP transformation objectives, scope, timeline, resources, costs, and risks. The IT organization should also communicate with the relevant stakeholders, such as the business units, the vendors, and the buyers, to coordinate and align the ERP activities with the sale process. The IT organization should then revise the ERP implementation plan and budget to reflect the changes and ensure that the ERP transformation delivers value to the remaining enterprise

 The best way to demonstrate that IT strategy supports a new enterprise strategy is to map IT programs to business goals. This will show how IT initiatives are aligned with and contribute to the achievement of the enterprise vision, mission, and objectives. Mapping IT programs to business goals will also help to prioritize, monitor, and evaluate the performance and value of IT investments

When determining the optimal IT service levels to support business, the most important factor is the cost/benefit to the business. This means that the IT service levels should be aligned with the business objectives, needs, and expectations, and that the benefits of providing a certain level of IT service should outweigh the costs of delivering it. The cost/benefit analysis should consider both the direct and indirect costs and benefits of IT service levels, such as the impact on customer satisfaction, revenue, productivity, quality, risk, compliance, innovation, and competitive advantage. A cost/benefit analysis can help IT managers justify their IT service level decisions and communicate them effectively to the business stakeholders. References := IT cost/benefit analysis: Why it matters and how to do it right, IT Support Levels Clearly Explained: L1, L2, L3 & More, IT support levels: definition, tiers and advantages, The Importance of Adopting Formal IT Service Management