CGEIT · Question #521
CGEIT Question #521: Real Exam Question with Answer & Explanation
The correct answer is B: for periodic service provider audits.. To ensure ongoing quality of service oversight for a third-party hosted and supported business process, establishing a process for periodic service provider audits is the most effective approach.
Question
An enterprise has decided to use third-party software for a business process which is hosted and supported by the same third party. The BEST way to provide quality of service oversight would be to establish a process:
Options
- Afor robust change management.
- Bfor periodic service provider audits.
- Cfor enterprise architecture (EA) updates.
- Dto qualify service providers.
Explanation
To ensure ongoing quality of service oversight for a third-party hosted and supported business process, establishing a process for periodic service provider audits is the most effective approach.
Common mistakes.
- A. Robust change management is critical for managing changes to the service but does not provide comprehensive oversight of the ongoing quality of the service provider's entire operation.
- C. A process for enterprise architecture (EA) updates is for internal strategic planning and documentation, not for directly overseeing the quality of a third-party service.
- D. Qualifying service providers is done initially during selection; it does not provide ongoing quality of service oversight once the provider is already engaged.
Concept tested. Third-party service quality oversight
Reference. https://learn.microsoft.com/en-us/compliance/regulatory/auditing-vendor-access
Topics
Community Discussion
No community discussion yet for this question.