1Z0-1058-23 Online Practice Questions and Answers

The internal auditor advised the Control Owner of North America to perform assessment for two P2P controls.

Which three steps can the Control Owner perform to kick-off assessments for only those two controls? (Choose three.)

A. Initiate a planned assessment that includes all controls assigned to perspective P2P.

B. Perform impromptu assessments for the two controls.

C. Enable impromptu assessments during configuration of module objects.

D. Initiate a planned assessment and include the two controls as part of the same assessment.

E. Initiate two planned assessments, one for each control.

When you view or edit a transaction incident, you may see extra columns that are not present in the business objects used in the control. What three kinds of control logic or conditions can cause this? (Choose three.)

A. Equals (when the same attribute is used on both sides of the condition)

B. Not in

C. Similar

D. Average Function

E. Between (when using a date attribute)

You have created a risk definition R100 and have created a new control C100 for this risk. No user has been assigned the Risk or Control reviewer and approver roles. What will be the state of R100 and C100 after submitting?

A. Both R100 and C100 will be in the "In Review" state.

B. Both R100 and C100 will be in the "Awaiting Approval" state.

C. Both R100 and C100 will be in the "Approved" state.

D. Both R100 and C100 will be in the "New" state.

You are helping your client identify and define their controls. You have determined that your client requires two perspectives: Business Units and Regulatory Standards. The controls are going to be secured by the business unit, and you want

to ensure that when the client defines new controls, it is mandatory to assign a Business Units perspective to the control. You are going to set the "Required" field to "yes" for the Control-Business Units association.

Where do you do this in the product?

A. The Create Control screen

B. The Manage Object Perspectives screen

C. The Import template

D. The Create Perspectives screen

E. The Manage Module Perspectives screen

You are validating your customer's import template before import. The customer requires that all controls be set up so they are noted to be used for the Audit Test assessment type. How do you verify that this has been done?

A. The Assessment Flag and the Audit Testing Flag are both set to "Y."

B. The Control has a related process.

C. The Control status filed is set to "Audit Test."

D. The Control comment filed has a notation for "Audit Test."

Your customer needs to conduct monthly Operational Effectiveness assessments for controls across two organizations (North America and EMEA). Your customer requires that assessment results for North America be accessible only to

users in North America and likewise for EMEA. Additionally, the Chief Risk Officer reviews the assessment results by Business Process every week.

How should you design perspectives to achieve this?

A. Use the Region hierarchy for security and the Business Process hierarchy for reporting of controls.

B. Use the Region hierarchy initially, and later use both Region and Business Process hierarchies for security.

C. Use both Region and Business Process hierarchies solely for reporting purposes.

D. Use the Business Process hierarchy for security and the Region hierarchy for reporting of controls.

Your client needs to perform Design Review and Certification assessment for all their controls. Identify two options that show how this requirement can be met. (Choose two.)

A. Option A

B. Option B

C. Option C

D. Option D

E. Option E

Which part of the security structure cannot be created or viewed from the Security Console, when configuring security for Financial Reporting Compliance?

A. Composite Duty Role

B. Job Role Perspective Policy

C. Data Security Policy

D. Functional Security Policy

The GRC Business owner responsible for reviewing and investigating access incidents related to the "Order to Cash" perspective does not see any worklists for the generated results. You have validated that:

1.

Other business owners are able to view their assigned worklists without any problem

2.

Incidents have been generated for the controls related to Order to Cash

3.

The business owner's assigned roles contain the correct functional privileges and data access to the correct perspective values

What is the reason the business owner cannot see any worklists for the generated incidents?

A. The Result Management Perspective Assignment has not been linked.

B. The underlying model is not linked to Order to Cash.

C. The business owner was recently assigned the role and the worklist needs to be refreshed.

D. Worklist assignment does not include the business owner.

E. The Control Perspectives are not linked to the control.

You have scheduled quarterly assessments for a Control object at the beginning of the year with future dates. However, the test plans associated with the Control object were updated before the assessment could be started. Which statement is true about this scenario?

A. The user will have the option to select the older or newer versions of the test plans during the assessment process.

B. The scheduled assessment process will end in error.

C. The assessment will be associated with the version of the test plans from the time of assessment initiation.

D. The updated test plans will become available during the assessment.