CGEIT Question #260: Real Exam Question with Answer & Explanation

The correct answer is A: Plan the risk-based assurance initiatives.. The Planning phase of IT Assurance methodology involves defining risk-based initiatives, conducting a quick risk assessment, and assessing process maturity to inform the scope and approach of assurance activities.

Submitted by eva_at· Apr 18, 2026Governance of Enterprise IT

Question

Which of the following steps are performed in the Planning phase of IT Assurance methodology? Each correct answer represents a complete solution. Choose all that apply.

Options

APlan the risk-based assurance initiatives.
BScope and plan assurance initiatives.
CPerform a quick risk assessment.
DAssess process maturity.

Explanation

The Planning phase of IT Assurance methodology involves defining risk-based initiatives, conducting a quick risk assessment, and assessing process maturity to inform the scope and approach of assurance activities.

Common mistakes.

B. 'Scope and plan assurance initiatives' represents the overarching objective of the planning phase itself rather than a discrete, actionable step performed within it, whereas options A, C, and D describe specific activities that comprise this broader objective.

Concept tested. IT assurance planning phase activities

Reference. https://www.isaca.org/credentialing/cisa/cisa-exam-content-outline

Topics

#IT Assurance Methodology#Assurance Planning#Risk Assessment#Process Maturity Assessment

Community Discussion

No community discussion yet for this question.

Full CGEIT Practice Browse All CGEIT Questions