Formal change reviews provide structured governance to assess, approve, and document requirement changes, directly addressing the root cause of risk from frequent scope modifications. This aligns with ISACA’s guidance on change control and project governance. CISA Review Manual (Chapter 3: Project Governance and Management):
"A formal change control process ensures that all modifications to project scope, schedule, or resources are evaluated for their impact on deliverables and risks before approval".
"Unauthorized changes (scope creep) are a primary risk driver in projects; formal reviews enforce traceability to the original business case".
D. Implementing formal reviews of changes.
Formal reviews of changes ensure that each change is thoroughly evaluated for its impact on the project scope, timeline, and resources. This process helps in managing and controlling changes effectively, reducing the risk of scope creep and ensuring that all stakeholders are aware of and agree to the changes.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
46080f2
1 month, 1 week agopLulu
5 months, 2 weeks ago