Your client has configured separate roles for control assessor and control assessment reviewer. The control assessor has submitted his or her assessment. The control assessor realizes later that he or she has forgotten to attach a critical test evidence document to the assessment and needs to attach it now. How can this be accomplished?
Correct Answer: D
* The assessor navigates to the Manage Assessments page. * They select the assessment that they have previously submitted. * They click the Reopen button to reopen the assessment. * The assessor can then attach the critical test evidence document that was initially forgotten. * After attaching the document, the assessor can resubmit the assessment for review. References:The steps are based on the Oracle Risk Management documentation which outlines the process for managing assessments, including the ability to reopen an assessment to attach additional documents before resubmitting it12.
1z0-1058-23 Exam Question 27
You are implementing Advanced Access Controls and there is a requirement for a control to monitor user access to specific, client-defined access points which give users the ability to both initiate a purchase order and approve payments on that purchase order. Which is a valid option to implement the control?
Correct Answer: D
* Navigate to the "Access Entitlements" page within Oracle Advanced Access Controls. * Create two separate entitlements that include the client-defined access points for initiating a purchase order and for approving payments on that purchase order. * Go to the "Models" tab of Advanced Controls and create an access model. This model will be based on the entitlements you have just created. * After creating the access model, proceed to the "Controls" tab of Advanced Controls. * Deploy an access control and select the access model you previously created. This will enforce the control to monitor user access as per the requirement. References: * Oracle Advanced Access Controls documentation provides a comprehensive overview of the process for creating models and controls to monitor access assignments for separation-of-duties violations1. * The Oracle Advanced Access Controls Cloud Data Sheet details the features relevant to monitoring access policies, including the creation and deployment of access controls2. 1: Overview of Oracle Advanced Controls 2: Oracle Advanced Access Controls Cloud Data Sheet
1z0-1058-23 Exam Question 28
When validating imported data, the control manager at your client has identified an incorrect Risk-Control mapping; that is, Control A was mapped incorrectly to Risk B instead of Risk A. What needs to be done to fix the mapping?
Correct Answer: B
To correct an incorrect Risk-Control mapping, the following steps should be taken according to Oracle's documentation: * From the Data Load Workbench, select the Validation Errors tab. * Select Fix Maps to access the mappings. * In the Data Load Mappings screen, identify and fix any errors. * Click Validate, and then click Save to apply the changes1. References: * Oracle Help Center provides a guide on fixing mapping errors in the Data Load Workbench1. * The overview of Oracle Advanced Controls outlines the process of managing risk and compliance within Oracle applications2.
1z0-1058-23 Exam Question 29
Select three fields that are required to create an impromptu assessment. (Choose three.)
Correct Answer: A,C,D
To create an impromptu assessment in Oracle Risk Management, the following steps are outlined: * Navigate to the record of an individual process, risk, or control. * Initiate the creation of an impromptu assessment. * In the General region of the Create Impromptu Assessment page, you are required to: * Compose a Name for the assessment. * Select a Due Date for the assessment completion. * Optionally, select a survey template and provide a survey name prefix, though these are not mandatory fields. * An Assessment Record Security Assignment region becomes active, where you can authorize users as * viewers, assessors, reviewers, or approvers. Here, you would select a Reviewer for the assessment. It's important to note that an impromptu assessment does not require a template or a plan, and perspectives or activity are not mentioned as required fields in the documentation. References:The information for creating an impromptu assessment is detailed in the Oracle documentation1. Further overview of assessments can be found in related Oracle documentation2.
1z0-1058-23 Exam Question 30
Your client has subscribed to Financial Reporting Compliance and would like to address risks using treatment plans. Which option shows the settings that will help in achieving this configuration?
Correct Answer: B
To address risks using treatment plans in Financial Reporting Compliance, the following settings should be configured: * Navigate to the Module Objects in the application. * Select the Edit Risk Object Configuration option. * Set the Treatment attribute to Show. This will enable the visibility of treatment plans within the risk object configuration, allowing for the management and association of treatment plans with specific risks1. References: * Oracle's documentation on Financial Reporting Compliance details the management of treatment plans, including the configuration settings required to show treatment plans within the risk object configuration1. * Additional resources from Oracle provide guidance on the use of treatment plans in Financial Reporting Compliance, outlining the steps to create, view, edit, and delete treatment plans23.
