The Open Group TOGAF Enterprise Architecture Combined Part 1 and Part 2 Sample Questions:

1. Complete the sentence The purpose of the Preliminary Phase is to_____________.

A) identify the stakeholders and their requirements
B) architect an Enterprise Architecture Capability
C) describe the target architecture
D) define the enterprise strategy

2. Please read this scenario prior to answering the question
You are employed as an Enterprise Architect consultant within a manufacturing company. The company has multiple business units located worldwide, including retail, manufacturing, pharmaceuticals, and technology.
The company has a mature Enterprise Architecture (EA) practice and uses the TOGAF standard for its architecture development method. The EA practice is engaged throughout all the business units, with governance provided by multiple Architecture Boards with responsibility for a business line. In addition to the EA program, the company uses a number of management frameworks, including business planning, project
/portfolio management, and operations management. The EA program is sponsored by the Chief Information Officer (CIO).
After a recent study, senior management are concerned about the impact of the company's multiple data centers and duplication of applications on the business efficiency. To address the concern, a strategic architecture has been defined; it will help improve the ability to meet customer demand and improve the efficiency of operations. The strategic architecture involves the consolidation of multiple applications programs that are currently used in different business units and putting them all onto a cloud-based solution instead.
Each business unit has completed the Architecture Definition documentation to meet its own specific operational requirements. The Enterprise Architects have analyzed the corporate changes and implementation constraints. A consolidated gap analysis has been completed. Based on its results, the architects have reviewed the requirements, dependencies and interoperability requirements needed to integrate the cloud- based solution. The architects have completed the Business Transformation Readiness Assessment. Based on all these factors they have produced a risk assessment. They have also completed the draft Implementation and Migration Plan, the draft Architecture Roadmap, and the Capability Assessment deliverables.
Due to the risks of changing from the current environment, the decision has been taken that a gradual approach is needed to implement the target architectures. It will likely take a few years to complete the whole implementation process.
Refer to the scenario
You have been asked to decide on the next steps for the migration planning.
Based on the TOGAF standard which of the following is the best answer?

A) You update the Architecture Definition Document, which includes setting project objectives anddocumenting the final requirements. This will ensure that the architecture remains relevant andresponsive to the needs of the enterprise. You then produce an Implementation Governance Model tomanage the lessons learned prior to finalizing the Implementation and Migration plan.
Yourecommend that lessons learned be quickly applied as changes to the architecture.
B) You conduct a Compliance Assessment to ensure that the architecture is being implementedaccording to the contract. The Compliance Assessment verifies that the implementation team is usingthe proper development methodology. It should also include deployment of monitoring tools. If themonitoring tools show that performance targets are not being met, then the performancerequirements should be changed and the Implementation and Migration Plan updated.
C) You estimate the business value for each project by applying the Business Value AssessmentTechnique.
The assessment should focus on return on investment and performance evaluationcriteria used to monitor the progress of the architecture transformation. You confirm and plan a seriesof Transition Architecture phases using an Architecture Definition Increments Table. You thendocument the lessons learned and generate the final Implementation and Migration Plan.
D) You need to determine how the Implementation and Migration plan fits with the other frameworksbeing used in the organization. You coordinate the planning with the business planning,project/portfolio management and operations management frameworks. You assign a business valueto each project, considering the available resources and how well they align with the strategy. Youthen update the architecture roadmap and the Implementation and Migration Plan.

3. Consider the following statements.
1. All processes, decision-making, and mechanisms used will be established so as to minimize or avoid potential conflicts of interest.
2. More effective strategic decision-making will be made by C-Level executives and business leaders.
3. All actions implemented and their decision support will be available for inspection by authorized organization and provider parties.
4. Digital Transformation and operations will be more effective and efficient.
Which statements highlight the value and necessity for Architecture Governance to be adopted within organizations?

A) 1and4
B) 2and4
C) 2and3
D) 1and3

4. Which of the following best describes the TOGAF Architecture Development Method?

A) A process for managing and controlling change at an enterprise-wide level
B) A method for developing and managing the lifecycle of an Enterprise Architecture
C) A process for managing architecture requirements
D) A process for creating an Architecture Repository

5. Please read this scenario prior to answering the question
Your role is that of a senior architect, reporting to the Chief Enterprise Architect, at a medium-sized company with 400 employees. The nature of the business is such that the data and the information stored on the company systems is their major asset and is highly confidential.
The company employees travel extensively for work and must communicate over public infrastructure using message encryption, VPNs, and other standard safeguards. The company has invested in cybersecurity awareness training for all its staff. However, it is recognized that even with good education as well as system security, there is a dependency on third-parly suppliers of infrastructure and software.
The company uses the TOGAF standard as the method and guiding framework for its Enterprise Architecture (EA) practice. The CTO is the sponsor of the activity.
The Chief Security Officer (CSO) has noted an increase in ransomware (malicious software used in ransom demands) attacks on companies with a similar profile. The CSO recognizes that no matter how much is spent on education, and support, it is likely just a matter of time before the company suffers a significant attack that could completely lock them out of their information assets.
A risk assessment has been done and the company has sought cyber insurance that includes ransomware coverage. The quotation for this insurance is hugely expensive. The CTO has recently read a survey that stated that one in four organizations paying ransoms were still unable to recover their data, while nearly as many were able to recover the data without paying a ransom. The CTO has concluded that taking out cyber insurance in case they need to pay a ransom is not an option.
Refer to the scenario
You have been asked to describe the steps you would take to improve the resilience of the current architecture?
Based on the TOGAF standard which of the following is the best answer?

A) You would ensure that the company has in place up-to-date processes for managing change to the current Enterprise Architecture. Based on the scope of the concerns raised you recommend that this be managed at the infrastructure level. Changes should be made to the baselinedescription of the Technology Architecture. The changes should be approved by the Architecture Board and implemented by change management techniques.
B) You would monitor for technology changes from your existing suppliers that could improve resilience.
You would prepare and run a disaster recovery planning exercise for a ransomware attack and analyze the performance of the current Enterprise Architecture. Using the findings, you would prepare a gap analysis of the current Enterprise Architecture. You would prepare change requests to address identified gaps. You would add the changes implemented to the Architecture Repository.
C) You would determine business continuity requirements, and undertake a gap analysis of the current Enterprise Architecture. You would make recommendations for change requirements to address the situation and create a change request. You would manage a meeting of the Architecture Board to assess and approve the change request. Once approved you would produce a new Request for Architecture Work to activate an ADM cycle to carry out a project to define the change.
D) You would request an Architecture Compliance Review with the scope to examine the company's resilience to ransomware attacks. You would identify the departments involved and have them nominate representatives. You would then tailor checklists to address the requirement for increased resilience. You would circulate to the nominated representatives for them to complete. You would then review the completed checklists, identifying and resolving issues. You would then determine and present your recommendations.

Solutions: