New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CGEIT Exam - Topic 4 Question 95 Discussion

Actual exam question for Isaca's CGEIT exam
Question #: 95
Topic #: 4
[All CGEIT Questions]

An enterprise has decided to adopt cloud services. Which of the following should be established FIRST?

Show Suggested Answer Hide Answer
Suggested Answer: C

Before adopting cloud services, it is critical to establish the organization's risk tolerance levels. This ensures that decisions regarding the use of cloud services align with the enterprise's ability and willingness to accept risk, such as data exposure or operational disruptions. Risk tolerance informs the creation of SLAs, third-party management frameworks, and BCPs, making it a foundational step. Reference: ISACA Cloud Computing Governance guidelines, CGEIT Exam Manual.


by Vashti at Mar 03, 2025, 04:36 PM

Limited Time Offer

25%

Off

Get Premium CGEIT Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Adell
3 months ago
Totally agree with SLAs, they set the foundation!
upvoted 0 times
...
Ettie
3 months ago
Wait, why are we even talking about SLAs first? Seems off.
upvoted 0 times
...
Gertude
3 months ago
Risk tolerance levels are key before anything else.
upvoted 0 times
...
Bettye
4 months ago
I think a BCP should come first, though.
upvoted 0 times
...
Cordelia
4 months ago
SLAs are super important for cloud services!
upvoted 0 times
...
Elroy
4 months ago
I vaguely remember discussing third-party management frameworks, but I thought they were more of a later step in the process.
upvoted 0 times
...
Carli
4 months ago
I feel like a business continuity plan is important, but I can't recall if it comes before SLAs or not.
upvoted 0 times
...
Marylin
4 months ago
I remember a practice question where we had to prioritize risk management first, so maybe risk tolerance levels could be the right answer here.
upvoted 0 times
...
Chantay
5 months ago
I think we talked about SLAs being crucial for cloud services, but I'm not sure if they should be the very first thing established.
upvoted 0 times
...
Lawana
5 months ago
Risk tolerance levels seem like the logical starting point to me. The enterprise needs to understand its risk appetite before committing to cloud services.
upvoted 0 times
...
Jade
5 months ago
I'm leaning towards the business continuity plan (BCP) as the most important first step. You need to have a plan in place to maintain operations in case of any disruptions with the cloud services.
upvoted 0 times
...
Dannette
5 months ago
Okay, I've got this. The first thing that needs to be established is the service level agreements (SLAs) with the cloud provider. That will set the expectations and ensure the enterprise is getting the right level of service.
upvoted 0 times
...
Veronika
5 months ago
Hmm, I'm a bit unsure here. I'm trying to think through the logical order of steps, but I'm not totally confident in my approach.
upvoted 0 times
...
Elly
5 months ago
This is a tricky one. I think I need to focus on the key phrase "FIRST" to determine the most critical step before adopting cloud services.
upvoted 0 times
...

Save Cancel