Summer Certification Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

OGEA-102 Exam Dumps - TOGAF Enterprise Architecture Part 2 Exam (English)

Searching for workable clues to ace the The Open Group OGEA-102 Exam? You’re on the right place! ExamCert has realistic, trusted and authentic exam prep tools to help you achieve your desired credential. ExamCert’s OGEA-102 PDF Study Guide, Testing Engine and Exam Dumps follow a reliable exam preparation strategy, providing you the most relevant and updated study material that is crafted in an easy to learn format of questions and answers. ExamCert’s study tools aim at simplifying all complex and confusing concepts of the exam and introduce you to the real exam scenario and practice it with the help of its testing engine and real exam dumps

Go to page:
Question # 9

Scenario

Your role is that of an Enterprise Architect, reporting to the Chief Enterprise Architect, at a technology company.

The company uses the TOGAF standard as the method and guiding framework for its Enterprise Architecture (EA) practice. The Chief Technology Officer (CTO) is the sponsor of the activity. The EA practice uses an iterative approach for its architecture development. This has enabled the decision-makers to gain valuable insights into the different aspects of the business.

The nature of the business is such that the data and the information stored on the company systems is the company’s major asset and is highly confidential. The company employees travel a lot for work and need to communicate over public infrastructure. They use message encryption, secure internet connections using Virtual Private Networks (VPNs), and other standard security measures. The company has provided computer security awareness training for all its staff. However, despite good education and system security, there is still a need to rely on third-party suppliers for infrastructure and software.

The Chief Security Officer (CSO) has noted an increase in ransomware (malicious software used in ransom demands) attacks on companies with a similar profile. The CSO recognizes that no matter how much is spent on education and support, the company could be a victim of a significant attack that could completely lock them out of their important data.

A risk assessment has been completed, and the company has looked for cyber insurance that covers ransomware. The price for this insurance is very high. The CTO recently saw a survey that said 1 out of 4 businesses that paid ransoms could not get their data back, and almost thesame number were able to recover the data without paying. The CTO has decided not to get cyber insurance to cover ransom payment.

You have been asked to describe the steps you would take to strengthen the current architecture to improve data protection.

Based on the TOGAF standard, which of the following is the best answer?

A.

You would ensure that the company has in place up-to-date processes for managing change to the current Enterprise Architecture. Based on the scope of the concerns raised, you recommend that this be managed at the infrastructure level. Changes should be made to the baseline description of the Technology Architecture. The changes should be approved by the Architecture Board and implemented by change management techniques.

B.

You would request an Architecture Compliance Review with the scope to examine the company’s ability to respond to ransomware attacks. You would identify the departments involved and have them nominate representatives. You would then tailor checklists to address the requirement for increased resilience. You would circulate to the nominated representatives for them to complete. You would then review the completed checklists, identifying and

C.

You would monitor for technology updates from your existing suppliers that could enhance the company’s capabilities to detect, react, and recover from an IT security incident. You would prepare and run a disaster recovery planning exercise for a ransomware attack and analyze the performance of the current Enterprise Architecture. Using the findings, you would prepare a gap analysis of the current Enterprise Architecture. You would prepare

D.

You would assess business continuity requirements and analyze the current Enterprise Architecture for gaps. You would recommend changes to address the situation and create a change request. You would engage the Architecture Board to assess and approve the change request. Once approved, you would create a new Request for Architecture Work to begin an ADM cycle to implement the changes.

Full Access
Question # 10

Please read this scenario prior to answering the question

You have been appointed as senior architect working for an autonomous driving technology development company. The mission of the company is to build an industry leading unified technology and software platform to support connected cars and autonomous driving.

The company uses the TOGAF Standard as the basis for its Enterprise Architecture (EA) framework. Architecture development within the company follows the purpose-based EA Capability model as described in the TOGAF Series Guide: A Practitioners ' Approach to Developing Enterprise Architecture Following the TOGAF® ADM.

An architecture to support strategy has been completed defining a long-range Target Architecture with a roadmap spanning five years. This has identified the need for a portfolio of projects over the next two years. The portfolio includes development of travel assistance systems using swarm data from vehicles on the road.

The current phase of architecture development is focused on the Business Architecture which needs to support the core travel assistance services that the company plans to provide. The core services will manage and process the swarm data generated by vehicles, paving the way for autonomous driving in the future.

The presentation and access to different variations of data that the company plans to offer through its platform poses an architecture challenge. The application portfolio needs to interact securely with various third-party cloud services, and V2X (Vehicle-to-Everything) service providers in many countries to be able to manage the data at scale. The security of V2X is a key concern for the stakeholders. Regulators have stated that the user ' s privacy be always protected, for example, so that the drivers ' journey cannot be tracked or reconstructed by compiling data sent or received by the car.

Refer to the scenario

You have been asked to describe the risk and security considerations you would include in the current phase of the architecture development?

Based on the TOGAF standard which of the following is the best answer?

A.

You will focus on the relationship with the third parties required for the travel assistance systems and define a trust framework. This will describe the relationship with each party. Digital certificates are a key part of the framework and will be used to create trust between parties. You will monitor legal and regulatory changes across all the countries to keep the trust framework in compliance.

B.

You will perform a qualitative risk assessment for the data assets exchanged with partners. This will deliver a set of priorities, high to medium to low, based on identified threats, the likelihood of occurrence, and the impact if it did occur. Using the priorities, you would then develop a Business Risk Model which will detail the risk strategy including classifications to determine what mitigation is enough.

C.

You will focus on data quality as it is a key factor in risk management. You will identify the datasets that need to be safeguarded. For each dataset, you will assign ownership and responsibility for the quality of data needs. A security classification will be defined and applied to each dataset. The dataset owner will then be able to authorize processes that are trusted for a certain activity on the dataset under certain circumstances.

D.

You will create a security domain model so that assets with the same level can be managed under one security policy. Since data is being shared across partners, you will establish a security federation to include them. This would include contractual arrangements, and a definition of the responsibility areas for the data exchanged, as well as security implications. You would undertake a risk assessment determining risks relevant to specific

Full Access
Question # 11

Please read this scenario prior to answering the question

You are the Lead Enterprise Architect at a major agribusiness company. The company ' s main

annual harvest is lentils, a highly valued food grown worldwide. The lentil parasite, broomrape,

has been an increasing concern for many years and is now becoming resistant to chemical

controls. In addition, changes in climate favor the propagation and growth of the parasite. As a

result, the parasite cannot realistically be exterminated, and it has become pandemic, with lentil

yields falling globally.

The CEO appreciates the seriousness of the situation and has set out a change in direction

that is effectively a new business for the company. There are opportunities for new products,

and new markets. The company will use the fields for another harvest and will cease to process

third-party lentils. Thus, the target market will change, and the end-products will be different

and more varied. This is a major decision and the CEO has stated a desire to repurpose rather

than replace so as to manage the risks and limit the costs.

The company has a mature Enterprise Architecture practice based in its headquarters and uses

the TOGAF standard as the method and guiding framework. The practice has an established

Architecture Capability, and uses iteration for architecture development. The CIO is the sponsor

of the activity.

The CIO has assigned the Enterprise Architecture team to this activity. At this stage there is no

shared vision, or requirements.

Refer to the scenario

You have been asked to propose the best approach for architecture development to realize the

CEO ' s change in direction for the company.

Based on the TOGAF standard which of the following is the best answer?

A.

You propose that the team focus on architecture definition, with emphasis on definingthe change parameters to support this new business strategy that the CEO hasidentified. Once understood, the team will be in the best position to identify therequirements, drivers, issues, and constraints for the change. You would ensure that thearchitecture development addresses non-functional requirements to assure that thetarget architecture is robust an

B.

You propose that this engagement define the baseline Technology Architecture first inorder to assess the current infrastructure capacity and capability for the company. Thenthe focus should be on transition planning and incremental architecture deployment.This will identify requirements to ensure that the projects are sequenced in an optimalfashion so as to realize the change.

C.

You propose that the priority is to understand and bring structure to the definition of thechange. The team should focus iteration cycles on a baseline first approach toarchitecture development, and then transition planning. This will identify what needs tochange in order to transition from the baseline to the target, and can be used to work outin detail what the shared vision is for the change.

D.

You propose that the team focus its iteration cycles on architecture development bygoing through the architecture definition phases (B-D) with a baseline first approach.This will support the change in direction as stated by the CEO. It will ensure that thechange can be defined in a structured manner and address the requirements needed torealize the change.

Full Access
Question # 12

Please read this scenario prior to answering the question

You are employed as an Enterprise Architect working within the Enterprise Architecture (EA) team at an electric vehicle manufacturer. The company focuses on designing, manufacturing, and advancing battery technology for sustainable transportation. The goal of the company is to build the best technology and software platform to support self-driving cars.

An architecture to support strategy has been completed defining a long-term Target Architecture with a roadmap over five years. This has identified the need for a portfolio of projects over the next two years. The portfolio includes development of an advanced driver assistance system using data gathered from multiple vehicles on the road.

The design of the presentation and accessibility of different types of data that the company plans to offer through its platform is challenging. It is important for the application portfolio to work securely with third-party cloud services, and V2X (Vehicle-to-Everything) service providers across many countries in order to effectively manage large amounts of data. Stakeholders are particularly concerned about the security of V2X. Regulations in various markets mandate that user privacy must always be safeguarded, to prevent tracking and compiling of data that could reveal the drivers ' journey.

The company follows the TOGAF standard as the basis for its Enterprise Architecture practice and uses the purpose-based EA Capability model as described in the TOGAF Series Guide: A Practitioners ' Approach to Developing Enterprise Architecture Following the TOGAF® ADM. The EA team reports to the Chief Information Officer (CIO), who is the sponsor of the EA program.

You have been assigned to lead the architecture development effort for the driver assistance system. A security resource plan and a vision for a security-specific architecture design have been completed. You have a meeting with the EA team leader to talk about the progress of your work.

Refer to the scenario

You have been asked how you will address risk and security at this stage of the architecture project.

Based on the TOGAF standard which of the following is the best answer?

A.

Data quality is a key factor in risk management. The datasets that need to be safeguarded should be identified. For each dataset, ownership and responsibility for the quality of data should be assigned. A security classification will be defined and applied to each dataset. The dataset owner will then be able to authorize processes that are trusted for a certain activity on the dataset under specific circumstances.

B.

Since data is being shared across multiple service providers, a security federation should be established. This includes contractual arrangements, and a definition of the responsibility areas for the data exchanged, as well as security implications. Assets with the same security criteria should be grouped together so they can be managed under one security policy. A risk assessment should be carried out to determine the risks relevant to spe

C.

A trust framework should be established with the third parties required for the travel assistance systems. This will describe the relationship with each party and establish the foundation for secure cloud operations. Digital certificates should be a key part of the framework and will be used to create trust between the parties. Regular monitoring for legal and regulatory changes across all the countries should occur to keep the trust framew

D.

A qualitative risk assessment should be carried out for the data assets exchanged with the service providers. This will deliver a set of priorities, high to medium to low, based on identified threats, the likelihood of occurrence, and the impact. Using the priorities, a Business Risk Model can then be developed detailing the risk strategy including classifications to determine what mitigation is sufficient. This model can then used to deter

Full Access
Go to page: