Question 1

The GRC Business owner responsible for reviewing and investigating access incidents related to the “Order to

Cash” perspective does not see any worklists for the generated results. You have validated that:

1. Other business owners are able to view their assigned worklists without any problem

2. Incidents have been generated for the controls related to Order to Cash

3. The business owner’s assigned roles contain the correct functional privileges and data access to the correct

perspective values

What is the reason the business owner cannot see any worklists for the generated incidents?

Options :

A : The Result Management Perspective Assignment has not been linked.

B : The underlying model is not linked to Order to Cash.

C : The business owner was recently assigned the role and the worklist needs to be refreshed.

D : Worklist assignment does not include the business owner.

E : The Control Perspectives are not linked to the control.

Answer: D

Question 2

You have defined an initial Perspective Hierarchy for your client in the Advanced Controls module. After

refining their business requirements, your client wants to expand the existing hierarchy to include 150

perspective items in various levels. For efficient processing, you decide to use the GRC data migration feature

to import the new items.

Which three are valid processing steps required to define the export file? (Choose three.)

Options :

A : Navigate to Risk Management Tools > Setup and Administration > Data Migration, and select Advanced Controls.

B : Generate Template as Without Data.

C : Navigate to Manage Module Perspectives.

D : Generate Template as Without Data – Perspectives Only.

E : Click the Create Import Template button.

Answer: A,B,C

Question 3

You have created security roles for the Procure-to-Pay (P2P) Control Manager for the EMEA region in your

client’s organization. But, there are two problems with his or her security configuration.

Problem 1: This person should not receive notifications to complete control assessments, but currently he or

she does.

Problem 2: Also, although he or she has access to controls associated with EMEA, he or she is unable to

access controls created for individual regions within EMEA.

You have given him or her the following job role:

EMEA P2P Control Manager Job Role

Seeded Control Manager Duty Composite

Seeded Control Certification Assessor Duty Composite

EMEA P2P Control Manager Data Security Policy

Seeded Control Manager Data Security Policy

Perspective filter where Region Perspective “equals” EMEA

Perspective filter where Process Perspective “equals” P2P

Which two actions need to be taken to correct the problems? (Choose two.)

Options :

A : Remove Control Certification Assessor Composite from the EMEA P2P Control Manager job role.

B : Create EMEA P2P Control Certification Assessor Data Security Policy striped by both EMEA and P2P perspectives and assign to the job role.

C : Add to the EMEA P2P Control Manager Data Security Policy the seeded Control Certification Assessor Data Security Policy.

D : While defining data security policy, set the perspective value to EMEA including all child nodes of the EMEA region.

Answer: C,D

Question 4

Which three are true about implementing a best practice solution for Financial Reporting Compliance? (Choose three.)

Options :

A : Large scope of project requires high effort for maintenance and administration.

B : It promotes rapid implementation and go-live.

C : It promotes go-live with minimal acceptance testing and user training.

D : It provides maximum return on investment with minimum project risk.

E : It promotes successful adoption and minimizes on-going cost of operation.

Answer: A,B,D

Question 5

You have imported risks in Financial Reporting Compliance using data migration. Your client is asking if you

can add controls for these risks.

Which two statements are true? (Choose two.)

Options :

A : To relate controls to risks, the risks must be in “approved” state.

B : You cannot use the Data Migration tool to add control records to map to existing risks.

C : You can use the Data Migration tool to add control records for the existing risks.

D : To relate controls, risks must be assigned to the same perspective that is assigned to the control you want to map it to.

E : You can manually add control definitions and relate them to the risks in Financial Reporting Compliance.

Answer: C,D

Higher Test Marks with Free Online 1Z0-1058-25 Exam Practice

Buying Options: