eGRACS Accreditation - Practice Test

Q1: What is the structural advantage of grouping the 120 controls into 40 'Golden Triangles'?

It is a visual branding tool that has no impact on the actual resilience of the controls.
It creates self-balancing micro-ecosystems where updating one control causes the others in the triad to adapt.
It allows the board to select only one corner of each triangle to save on operational costs.
It ensures that only three people in the organisation are responsible for each set of 40 controls.

Consider the relationship between individual units and the overall stability of the system.

B✔️The triadic interdependency ensures the system remains resilient and stable even when context or regulations change.
A❌The source states this design is a 'dynamic control architecture' that provides structural integrity.
C❌The triangles are interdependent triads; neglecting one part would break the balance and integrity of the governance.
D❌The 'triangle' refers to the relationship between controls, not a limit on personnel assignments.

Q2: Which specific regulation is mentioned as being bridged by eGRACS for the insurance industry?

Solvency II
EU AI Act
PCI DSS
HIPAA

This standard is critical for financial risk management in European insurance.

A✔️eGRACS lists Solvency II as an industry-specific regulation tailored through eGRACS Practices for insurance.
B❌The EU AI Act is a global regulatory update mentioned in the context of continuous normalisation, not insurance specifically.
C❌PCI DSS is a general standard for payment card security, not exclusive to insurance.
D❌HIPAA is explicitly mentioned as the standard bridged for the healthcare industry.

Q3: Which implementation path is recommended for an organisation with low operational maturity?

Top-Down Governance (Core to Tactical).
Static Checklist Integration.
Bottom-Up Transformation (Tactical to Core).
Global Evolution Mapping.

This path focuses on fixing immediate gaps before moving to high-level strategy.

C✔️Starting at the Tactical Tier allows low-maturity organisations to fix processes 'in the trenches' and build stability iteratively.
A❌Top-down focus on strategic alignment may be too abstract for organisations needing to first stabilize basic operations.
B❌eGRACS aims to move beyond static checklists; this is not a recommended implementation path.
D❌This is a mechanism for continuous normalisation, not a directional implementation path for building maturity.

Q4: Scenario: Your client’s enterprise IT is struggling with fragmented governance across multiple frameworks. Using the eGRACS Framework, outline a step-by-step approach to unify governance. Include domains, tiers, and examples of operational activities.

Q5: Scenario: Design a training plan for onboarding new ICT managers in the organization using the eGRACS Framework. Include objectives, modules, and evaluation methods.

eGRACS Accreditation - Practice Test

Looking for more?

🤝Calling Consultants

🤽Video Explainers

🎧Vodcasts