1Z0-1058 Online Practice Questions and Answers

Which two would need to happen in order for Advanced Access Controls (AAC) to automatically assign a status of "Closed" to an access incident? (Choose two.)

A. The incident is resolved in Fusion Cloud and a subsequent evaluation of controls finds that the incident no longer exists.

B. A global condition was added that resolves the conflict and a subsequent evaluation of controls finds that the incident no longer exists.

C. A user sets the State of the incident to "Remediate".

D. The incident is resolved using simulation in AAC and a subsequent evaluation of controls finds that the incident no longer exists.

E. A user sets the Status of the incident to "Resolved".

When you view or edit a transaction incident, you may see extra columns that are not present in the

business objects used in the control.

What three kinds of control logic or conditions can cause this? (Choose three.)

A. Equals (when the same attribute is used on both sides of the condition)

B. Not in

C. Similar

D. Average Function

E. Between (when using a date attribute)

You build an access model with two entitlements. Each entitlement has four access points. The entitlements do not have any access points in common. How many access point combinations will be analyzed?

A. 20

B. 16

C. 8

D. 4

E. 25

Which statement related to Advanced Access Controls is true?

A. If helps enforce segregation of duties.

B. If helps perform risk analysis and evaluation.

C. It analyzes transaction records.

D. It documents risks and controls.

You have created security roles for the Procure-to-Pay (P2P) Control Manager for the EMEA region in your client's organization. But, there are two problems with his or her security configuration. Problem 1: This person should not receive notifications to complete control assessments, but currently he or she does. Problem 2: Also, although he or she has access to controls associated with EMEA, he or she is unable to access controls created for individual regions within EMEA. You have given him or her the following job role: EMEA P2P Control Manager Job Role Seeded Control Manager Duty Composite Seeded Control Certification Assessor Duty Composite EMEA P2P Control Manager Data Security Policy Seeded Control Manager Data Security Policy Perspective filter where Region Perspective “equals” EMEA Perspective filter where Process Perspective “equals” P2P

Which two actions need to be taken to correct the problems? (Choose two.)

A. Remove Control Certification Assessor Composite from the EMEA P2P Control Manager job role.

B. Create EMEA P2P Control Certification Assessor Data Security Policy striped by both EMEA and P2P perspectives and assign to the job role.

C. Add to the EMEA P2P Control Manager Data Security Policy the seeded Control Certification Assessor Data Security Policy.

D. While defining data security policy, set the perspective value to EMEA including all child nodes of the EMEA region.

You are implementing Advanced Access Controls for a client. You need to create a model that returns users who have been assigned a specified access point but excludes a specific operating unit. Which business object(s) do you need to add to your model to accomplish this objective?

A. Access Point and Fusion Access Condition

B. Access Entitlement

C. Access Point and User Business Object

D. Access Point

E. Fusion Access Condition

During implementation, you created a Financial Reporting Compliance superuser and assigned this user

the following roles:

Enterprise Risk and Control Manager

IT Security Manager

Employee

The superuser logs in to Financial Reporting Compliance but is not able to create new Data Security

Policies.

What is wrong?

A. The superuser's account is inactive and his or her account needs to be activated.

B. The application will not allow a user to both create users and assign them roles.

C. The superuser's account is created but the synchronization jobs have not been run.

D. The superuser's account is not yet approved by his or her supervisor in Financial Reporting Compliance.

You can relate objects in Financial Reporting Compliance. Which statement is true about editing or creating related objects in the Related Objects section on the Risk Definition page?

A. You can relate only process objects.

B. You can relate a new process and a new control.

C. You can relate only control objects.

D. You can relate only an existing control, but not a new control.

Your client has asked you to define a transaction model to identify duplicate invoices based on Invoice

Numbers and Invoice Amounts.

Which two standard filters can be combined to accomplish this? (Choose two.)

A. The "Payables Invoice" object's "Supplier ID" does not equal itself.

B. The "Payables Invoice" object's "Invoice ID" is similar to the "Payables Invoice" object's "Invoice Number".

C. The "Payables Invoice" object's "Invoice Amount" is equal to itself.

D. The "Payables Invoice" object's "Invoice Number" is equal to the "Payables Invoice" object's "Invoice ID."

E. The "Payables Invoice" object's "Invoice Number" is equal to itself.

You have scheduled quarterly assessments for a Control object at the beginning of the year with future dates. However, the test plans associated with the Control object were updated before the assessment could be started. Which statement is true about this scenario?

A. The user will have the option to select the older or newer versions of the test plans during the assessment process.

B. The scheduled assessment process will end in error.

C. The assessment will be associated with the version of the test plans from the time of assessment initiation.

D. The updated test plans will become available during the assessment.