Oracle Risk Management Cloud 2019 Implementation Essentials

Question 1

You have created security roles for the Procure-to-Pay (P2P) Control Manager for the EMEA region in your client's organization. But, there are two problems with his or her security configuration.
Problem 1: This person should not receive notifications to complete control assessments, but currently he or she does.
Problem 2: Also, although he or she has access to controls associated with EMEA, he or she is unable to access controls created for individual regions within EMEA.
You have given him or her the following job role:
* EMEA P2P Control Manager Job Role
* Seeded Control Manager Duty Composite
* Seeded Control Certification Assessor Duty Composite
* EMEA P2P Control Manager Data Security Policy
* Seeded Control Manager Data Security Policy
* Perspective filter where Region Perspective "equals" EMEA
* Perspective filter where Process Perspective "equals" P2P
Which two actions need to be taken to correct the problems? (Choose two.)

A. Create EMEA P2P Control Certification Assessor Data Security Policy striped by both EMEA and P2P perspectives and assign to the job role.

B. While defining data security policy, set the perspective value to EMEA including all child nodes of the EMEA region.

C. Add to the EMEA P2P Control Manager Data Security Policy the seeded Control Certification Assessor Data Security Policy.

D. Remove Control Certification Assessor Composite from the EMEA P2P Control Manager job role.

Correct Answer: B,C

Question 2

You are helping your client identify and define their controls. You have determined that your client requires two perspectives: Business Units and Regulatory Standards.
The controls are going to be secured by the business unit, and you want to ensure that when the client defines new controls, it is mandatory to assign a Business Units perspective to the control. You are going to set the
"Required" field to "yes" for the Control-Business Units association.
Where do you do this in the product?

A. The Import template

B. The Create Control screen

C. The Create Perspectives screen

D. The Manage Module Perspectives screen

E. The Manage Object Perspectives screen

Correct Answer: C

Question 3

You are remediating access incidents in Advanced Access Controls (AAC), and have just completed the remediation of a segregation of duties conflict for users in Fusion Security by removing the conflicting access from the users.
What status do you set for the incident in AAC?

A. Authorized

B. Resolved

C. Remediation

D. Remedy

E. Accepted

Correct Answer: C

Question 4

The internal auditor advised the Control Owner of North America to perform assessment for two P2P controls.
Which three steps can the Control Owner perform to kick-off assessments for only those two controls?
(Choose three.)

A. Initiate a planned assessment that includes all controls assigned to perspective P2P.

B. Enable impromptu assessments during configuration of module objects.

C. Initiate two planned assessments, one for each control.

D. Initiate a planned assessment and include the two controls as part of the same assessment.

E. Perform impromptu assessments for the two controls.

Correct Answer: A,B,C

Question 5

Your client has configured separate roles for control assessor and control assessment reviewer. The control assessor has submitted his or her assessment. The control assessor realizes later that he or she has forgotten to attach a critical test evidence document to the assessment and needs to attach it now.
How can this be accomplished?

A. The assessor can request the reviewer to reject the assessment. After the assessment is rejected, the assessor can then attach the document and resubmit the assessment.

B. The assessor can request the reviewer to attach the document during the review.

C. On the Manage Assessments page, the assessor can select the assessment and click the Reopen button.
He or she can then attach the document and resubmit the assessment.

D. On the Assessment tab in the Control definition, the assessor can select the assessment and click the Complete Assessment button. He or she can attach the document and resubmit the assessment.

Correct Answer: C

Question 6

Your customer has a requirement to define an IT Compliance Manager job role with privileges to manage risks and controls, and the issues related to the risks and controls.
What are the duty roles that must be included in this job role to achieve this requirement?

A. Seeded Issue Manager Composite

B. Seeded Risk Manager Composite, Control Manager Composite, and Issue Manager Composite

C. Seeded Risk Issue Manager and Control Issue Manager

D. Seeded Issue Manager Composite and Issue Validator Composite

Correct Answer: B

Question 7

You are validating your customer's import template before import. The customer requires that all controls be set up so they are noted to be used for the Audit Test assessment type. How do you verify that this has been done?

A. The Control comment filed has a notation for "Audit Test."

B. The Control status filed is set to "Audit Test."

C. The Assessment Flag and the Audit Testing Flag are both set to "Y."

D. The Control has a related process.

Correct Answer: D

Question 8

During implementation, you created a Financial Reporting Compliance superuser and assigned this user the following roles:
* Enterprise Risk and Control Manager
* IT Security Manager
* Employee
The superuser logs in to Financial Reporting Compliance but is not able to create new Data Security Policies.
What is wrong?

A. The superuser's account is not yet approved by his or her supervisor in Financial Reporting Compliance.

B. The superuser's account is created but the synchronization jobs have not been run.

C. The superuser's account is inactive and his or her account needs to be activated.

D. The application will not allow a user to both create users and assign them roles.

Correct Answer: B

Oracle Risk Management Cloud 2019 Implementation Essentials - 1Z1-1058 Exam Practice Test

Latest Update

Useful Links

Contact Us