Question 1

You have created security roles for the Procure-to-Pay (P2P) Control Manager for the EMEA region in your

client’s organization. But, there are two problems with his or her security configuration.

Problem 1: This person should not receive notifications to complete control assessments, but currently he or

she does.

Problem 2: Also, although he or she has access to controls associated with EMEA, he or she is unable to

access controls created for individual regions within EMEA.

You have given him or her the following job role:

EMEA P2P Control Manager Job Role

Seeded Control Manager Duty Composite

Seeded Control Certification Assessor Duty Composite

EMEA P2P Control Manager Data Security Policy

Seeded Control Manager Data Security Policy

Perspective filter where Region Perspective “equals” EMEA

Perspective filter where Process Perspective “equals” P2P

Which two actions need to be taken to correct the problems? (Choose two.)

Options :

A : Remove Control Certification Assessor Composite from the EMEA P2P Control Manager job role.

B : Create EMEA P2P Control Certification Assessor Data Security Policy striped by both EMEA and P2P perspectives and assign to the job role.

C : Add to the EMEA P2P Control Manager Data Security Policy the seeded Control Certification Assessor Data Security Policy.

D : While defining data security policy, set the perspective value to EMEA including all child nodes of the EMEA region.

Answer: C,D

Question 2

You have created a risk definition R100 and have created a new control C100 for this risk. No user has been assigned the Risk or Control reviewer and approver roles. What will be the state of R100 and C100 after submitting?

Options :

A : Both R100 and C100 will be in the “In Review” state.

B : Both R100 and C100 will be in the “Awaiting Approval” state.

C : Both R100 and C100 will be in the “Approved” state.

D : Both R100 and C100 will be in the “New” state.

Answer: B

Question 3

You have defined an initial Perspective Hierarchy for your client in the Advanced Controls module. After

refining their business requirements, your client wants to expand the existing hierarchy to include 150

perspective items in various levels. For efficient processing, you decide to use the GRC data migration feature

to import the new items.

Which three are valid processing steps required to define the export file? (Choose three.)

Options :

A : Navigate to Risk Management Tools > Setup and Administration > Data Migration, and select Advanced Controls.

B : Generate Template as Without Data.

C : Navigate to Manage Module Perspectives.

D : Generate Template as Without Data – Perspectives Only.

E : Click the Create Import Template button.

Answer: A,B,C

Question 4

The GRC Business owner responsible for reviewing and investigating access incidents related to the “Order to

Cash” perspective does not see any worklists for the generated results. You have validated that:

1. Other business owners are able to view their assigned worklists without any problem

2. Incidents have been generated for the controls related to Order to Cash

3. The business owner’s assigned roles contain the correct functional privileges and data access to the correct

perspective values

What is the reason the business owner cannot see any worklists for the generated incidents?

Options :

A : The Result Management Perspective Assignment has not been linked.

B : The underlying model is not linked to Order to Cash.

C : The business owner was recently assigned the role and the worklist needs to be refreshed.

D : Worklist assignment does not include the business owner.

E : The Control Perspectives are not linked to the control.

Answer: D

Question 5

Which controls can user A manage for the following Control Manager role Configuration? See details of perspective trees and control-perspective association below.

Options :

A : All controls

B : Controls 2 and 4

C : Controls 1, 2, and 4

D : None

E : Controls 1 and 2

Answer: A

Higher Test Marks with Free Online 1D0-1058-25-D Exam Practice

Buying Options: