Basics of IT and Governance
Drill 20 practice questions focused entirely on Basics of IT and Governance for the CompTIA PK0-005 exam. Tap an answer for instant feedback and a full explanation — no sign-up, always free.
A project team is releasing a major update to a customer-facing e-commerce application that must remain available 24/7. The operations manager wants the ability to switch users to the new version instantly and revert immediately if problems surface, with minimal risk to live traffic. Which deployment approach best meets these requirements?
A project team is preparing to deploy a new customer billing module into the organization's production environment. The organization follows ITIL service management practices. Before the deployment can proceed, the operations group insists the change be formally reviewed for risk, scheduling conflicts with other releases, and potential business impact. Which governance body is responsible for authorizing this production change?
A project team is building an internal analytics platform that will ingest customer records, employee HR files, and publicly available marketing content. Before storage architecture decisions are finalized, the project manager wants to ensure each type of information receives the appropriate level of encryption, access control, and retention handling. Which organizational governance artifact should the team consult FIRST to determine how each data type must be protected?
A project manager is implementing a new customer records system for a healthcare client operating in Germany. During vendor selection, the client's legal team states that all patient data must be stored and processed exclusively within the European Union and never transferred to servers outside that region. One shortlisted cloud vendor offers the lowest price but replicates data across data centers in the United States and Asia for redundancy. What should the project manager do FIRST?
A project manager is closing out an IT project that processed customer financial records. The organization's governance framework requires that certain project artifacts be kept for seven years before disposal, while temporary working files can be deleted immediately. Which organizational policy should the project manager consult to determine how long each type of record must be preserved and when it may be destroyed?
A software project team is setting up their IT environments. Developers need an isolated space where they can write and unit-test new code changes without affecting anyone else's work or any shared testing data. Which environment should the project manager ensure is provisioned for this specific purpose?
A project team is migrating a customer records system to a new cloud platform. During a security review, the compliance officer notes that customer data is properly encrypted while stored in the database, but data flowing between the web application and the database server travels unprotected across the network. Which control must the project team implement to address this specific gap?
A project team has completed integration testing of a new customer portal in the QA environment. The business sponsor is eager to release the portal to customers this week. Before the code can be promoted to production, the project manager insists that business users must first log in and confirm the portal meets documented requirements in a dedicated environment that mirrors production. Which environment is the project manager referring to?
A project manager at a healthcare organization encounters a decision that exceeds the budget threshold defined in the project charter. The steering committee has established a formal governance structure with defined decision-making tiers. According to sound project governance, what should the project manager do FIRST?
A project manager is procuring a vendor to build a website with fully documented, unchanging requirements and a firm delivery date. The organization wants to shift the cost risk of the work to the vendor and pay a single predetermined amount regardless of the vendor's actual labor hours. Which contract type best fits this situation?
A project manager is leading the rollout of a new customer relationship management (CRM) system for a company that markets products to consumers in the European Union. During planning, the team designs a database that will store customer names, email addresses, and purchase histories. Which regulatory consideration must the project manager ensure is addressed before the system goes live?
During the deployment of a new customer portal, a critical security vulnerability is discovered in production that is actively being exploited. The project manager needs a fix deployed within hours, but the organization's normal release process requires a full regression cycle and a scheduled maintenance window three days away. Which release approach is MOST appropriate to address this situation while maintaining governance?
A project manager is engaging a software development vendor for a series of related projects over the next two years. Legal wants to establish the overall terms, liability limits, and payment conditions once, while each individual project's specific deliverables and timelines will be detailed separately. Which document should define the overarching, reusable terms of the ongoing relationship?
A project manager is leading the development of a new e-commerce checkout module that will store and process customer credit card numbers. During planning, the compliance officer asks which regulatory standard must govern the handling, storage, and transmission of this cardholder data. Which standard is the primary compliance driver for this project?
A project team is nearing the release of a new customer-facing web application that will process credit card payments. The organization's security policy requires that all externally accessible applications handling cardholder data undergo a controlled attempt to exploit vulnerabilities before they are allowed into the production environment. The project manager must schedule the appropriate activity in the release plan. Which activity satisfies this requirement?
A software project team has completed development of a new customer portal feature. Before releasing it to end users, the project manager insists the build be moved to an environment that mirrors production configuration so the QA team can validate functionality against realistic data volumes and integrations. Which environment should the build be deployed to for this validation?
A project team is preparing to deploy a new feature to a customer-facing web application. During final testing, they discover that the test environment uses a different database version and less memory than production. The QA lead is concerned that test results may not accurately predict production behavior. What is the BEST way to address this concern before release?
During a scheduled production release of a new payroll module, the project team discovers that a critical integration with the existing HR database is returning errors. Payroll processing is due to run in six hours, and the failing integration cannot be fixed in time. Which action should the project manager direct the team to take FIRST?
A project manager is negotiating a hosting agreement with a cloud vendor for a customer-facing application. The vendor's proposed SLA guarantees 99.9% monthly uptime. The project manager wants to ensure that if the vendor fails to meet this uptime commitment, the organization is compensated without having to pursue formal legal action. Which SLA element should the project manager insist on including?
During contract negotiations with a managed hosting vendor, the vendor proposes a clause allowing them to recover previously issued service credits if they maintain 100% uptime for three consecutive months following any breach. As the project manager reviewing the SLA, what does this clause represent, and what should you consider?
More PK0-005 practice
Keep going with the other CompTIA Project+ (PK0-005) domains, or take a full timed mock exam.
← Back to PK0-005 overview