Exam OG0-092 All QuestionsBrowse all questions from this exam
Go to Exam
Question 29

Scenario: Raxlon Inc.

Case Study Title (Case Study):

Raxlon Inc. is a Fortune 500 Company dealing in high value drugs and pharma products. Its annual turnover is over 120 billion $. It has more than 100,000 employees all over the globe in its R&D, Manufacturing and Marketing Units.

Raxlon's CEO, Dr Peter Fowles, is a pharmacology expert and has over 72 patents on various types of drugs mainly used for treating patients with genetic disorders. Raxlon is now moving into a suite of high end critical drug products used for Genetic Repair of congenital Diseases like Alzhmeir's disease and

Epilepsy. Rexlon has a well developed EA practice and in 2009 the EA practice has adopted TOGAF 9 as the primary Framework for Enterprise Architectural

Change Agent.

Dr Fowles' main concerns are:

Security of the critical data which they have gained over the years after painstaking research. Although Rexlon had an adequate security system Dr Fowles feels it may not be adequate to deal with the new order of things, especially with data which is highly confidential and if leaked would have major financial impact on the

Company.

Dr Fowles calls his CIO and explains his position to him and entrusts whim with the responsibly of evaluating the current security system, operation and governance and determine which are the gaps which need to be addressed during the fresh architectural work. Assume that a new Security Framework would be used in the ADM life cycle. To protect Rexlon's valuable IP.

The CIO apprises the Lead Architect of the sensitive nature of the work he has to complete within the next 2 months.

Identify which of the following processes would be most appropriate for the Lead Architect to adopt in this situation.

    Correct Answer: B

    In this situation, the most appropriate process for the Lead Architect to adopt is to revisit the Preliminary Phase to determine the tailoring of the ADM with respect to Security. This involves identifying any changes or additions to the Security Principles, engaging with all stakeholders to finalize the Vision, and ensuring that the Security Framework addresses all critical security issues in the Business, Information Systems, and Technology Architectures. This approach will create a robust security ecosystem that is aligned with the new security needs of the organization, ensuring that it meets the desired security level.

Discussion
sanjepauOption: B

The answer is B, as it talks about the tailoring of the Architecture framework and incorporates the Security framework to make use of Enterprise Security Architecture in order to address security and risk properly. Moreover, it is clearly mentioned that a new Security framework should be used, and also there is no mention of time, so revisiting the Preliminary phase is not an issue.

aaa111222Option: A

Answer A : This is Phase H, They already have an architecture with security component in place. CEO thinks they already have sufficient architecture. Here we have a new stakeholder (the Dr) he is the trigger to evaluate whether his concerns will kick off a new ADM cycle. So here we are evaluating his concerns. B and C are proceeding into new cycle without evaluating the new threat model..

qingheOption: B

Should be B, how is disaster recovery or business continuity relevant for concerns of data leak?

scuzzy2010Option: B

A and D are out, neither of them are related to ADM or TOGAF. Answer is B.

WatadOption: B

I would go with B, since it's the most suitable TOGAF standard answer, but the worrying thing here is the 2 months period, hope it's only a distractor and not a factor in the answer

panterarosaOption: B

It says "Assume that a new Security Framework would be used in the ADM lifecycle to protect Rexlon's valuable IP." I do not see any answer other than B seeking to properly incorporate a new Security Framework in the existing ADM. The 2 months deadline worries me, though.

mericovOption: B

Security Architecture and the ADM is TOGAF 9.1 chapter 21. Obsolete for 9.2

RoryGatesOption: B

Answer = B.

sameersoftyhclOption: A

Answer A : Principle 9 : Protection of Intellectual Property

tomvikOption: B

Concerns : Security of data Needs to be completed in next 2 months

tomvik

Revisiting preliminary phase again will not be right approach as it needs more time.

Victor6510

However the requirement is "Assume that a new Security Framework would be used in the ADM life cycle" and CEO wants "evaluating the current security system, operation and governance and determine which are the gaps" A and D neither address these requirements nor follow ADM practice. The security framework is served as an add-on to existing tailored TOGAF instead of from scratch, and a Fortune 500 company at the scale is capable of leveraging external EA consulting capabilities to speed up the development.

fanchvnOption: B

answer B