CGEIT Question #686: Real Exam Question with Answer & Explanation

The correct answer is A: Review the current data governance policy.. When preparing to migrate sensitive patient records to a cloud service, the initial step should be to review the existing data governance policy.

Submitted by the_admin· Apr 18, 2026Governance of Enterprise IT

Question

Which of the following should be done FIRST when preparing to migrate patient records to a cloud service provider?

Options

AReview the current data governance policy.
BUpdate the enterprise architecture (EA).
CRevise the risk management framework.
DDefine the service level agreement (SLA).

Explanation

When preparing to migrate sensitive patient records to a cloud service, the initial step should be to review the existing data governance policy.

Common mistakes.

B. Updating the enterprise architecture is a subsequent step that would be informed by the data governance policy, not the first action.
C. Revising the risk management framework is an important step, but it must be based on an understanding of existing data governance requirements and potential new risks introduced by the cloud.
D. Defining the service level agreement (SLA) comes after understanding the data's governance needs and designing the service based on those requirements.

Concept tested. Data governance in cloud migration

Reference. https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/govern/data-management/data-governance

Topics

#Data Governance#Cloud Migration#Policy Review#Regulatory Compliance

Community Discussion

No community discussion yet for this question.

Full CGEIT Practice Browse All CGEIT Questions