OGEA-102 The Open Group TOGAF Enterprise Architecture Part 2 Exam (English) exact Exam Questions

TOGAF Enterprise Architecture Part 2 Exam (English)

Last Update 18 hours ago Total Questions : 34

The TOGAF Enterprise Architecture Part 2 Exam (English) content is now fully updated, with all current exam questions added 18 hours ago. Deciding to include OGEA-102 practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our OGEA-102 exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these OGEA-102 sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any TOGAF Enterprise Architecture Part 2 Exam (English) practice test comfortably within the allotted time.

Question # 4

Scenario:

You are working as an Enterprise Architect at a large company. The company runs a chain of home improvement stores, as well as a website for selling products. The website lets many brands work with the company.

The stores open seven days a week and use a standard method to track sales and inventory. This involves sending accurate and timely sales data to a central inventory management system that can predict demand, adjust stock levels, and automate reordering. The website is supported by regional fulfillment centers and also uses the central inventory management system. The central inventory management system is housed at the company’s central data center.

The company has agreed to merge with a major competitor. The leadership teams of both organizations have said they are committed to a smooth transition for customers. All stores will keep their own brand names. They will combine the systems of the organizations, which includes merging retail operations and systems. Duplicated systems will be replaced with one standard retail management system. Additionally, they will reduce the number of applications being used. The CIO expects that these changes will lead to substantial cost savings for the newly merged company.

An enterprise plan for both organizations has been created. The aim is to set priorities for the transition, especially in terms of information management and application development. It is crucial to make decisions that will create long-term value.

The company has a mature Enterprise Architecture (EA) practice and uses the TOGAF standard for its architecture development method. The EA program is sponsored by the Chief Information Officer (CIO).

The Request for Architecture Work to oversee the transition has been approved. The project has been scoped, and you have been assigned to work on it.

You have been asked to confirm the most relevant architecture principles for the transition.

Based on the TOGAF Standard, which of the following is the best answer?

Control Technical Diversity, Interoperability, Data is an Asset, Data is Shared, Business Continuity

Service Orientation, Compliance with the Law, Requirements Based Change, Responsive Change Management, Data Security

Common Use Applications, Data is an Asset, Common Vocabulary and Data Definitions, Maximize Benefit to the Enterprise, Business Continuity

Ease of Use, Common Use Applications, Data is an Asset, Technology Independence, Business Continuity

Answer:

Explanation:

The correct answer is C, as it aligns with the key TOGAF principles necessary for guiding enterprise architecture in a merger scenario where retail operations and systems are being consolidated.

Analysis of the Principles in Option C:

Common Use Applications

Since the two companies are merging, it is essential to standardize applications across the enterprise.

Using common applications ensures consistency, reduces costs, and improves efficiency.

TOGAF emphasizes this principle to prevent duplicate or redundant systems, which aligns with the CIO’s goal of reducing the number of applications used.

Data is an Asset

In the scenario, a central inventory management system is a core business function.

Treating data as an asset ensures it is managed properly, shared efficiently, and used strategically across the merged organization.

This principle supports the company’s ability to predict demand, adjust stock levels, and automate reordering.

Common Vocabulary and Data Definitions

The merger requires integrating different systems and data structures.

Having a common vocabulary ensures that all stakeholders (stores, fulfillment centers, and digital platforms) use consistent terminology and data definitions.

This minimizes confusion and ensures interoperability across business functions.

Maximize Benefit to the Enterprise

Every architectural decision should focus on the overall benefit to the business.

By consolidating IT systems and reducing redundancies, the company achieves cost savings, which directly supports this principle.

Business Continuity

The stores operate seven days a week, so system changes must ensure uninterrupted service.

Business continuity ensures that customers are not affected during the transition and that critical retail operations (sales, inventory tracking, and fulfillment) remain functional.

Why Other Options Are Incorrect?

Option A: Control Technical Diversity, Interoperability, Data is an Asset, Data is Shared, Business Continuity

Control Technical Diversity is not the primary concern here. The focus is on system consolidation, not necessarily on limiting technology diversity.

Interoperability is important but not as critical as defining a common system and data structure.

Option B: Service Orientation, Compliance with the Law, Requirements-Based Change, Responsive Change Management, Data Security

While service orientation and compliance are valuable, they are not the most relevant to this specific business transition.

Change management and data security are important but do not address the primary enterprise-wide architectural concerns of system consolidation.

Option D: Ease of Use, Common Use Applications, Data is an Asset, Technology Independence, Business Continuity

Ease of Use is beneficial but is not a core architecture principle in this case.

Technology Independence is useful but does not align directly with the scenario’s priority, which is consolidating applications and data structures.

[References:, TOGAF Standard, ADM Techniques, Architecture Principles (Section 2.6), TOGAF Standard, Part III: ADM Guidelines and Techniques, TOGAF Enterprise Architecture Principles – The Open Group, , , , , , , ]

Question # 5

Scenario

You are working as an Enterprise Architect within a large manufacturing company. The company has multiple divisions located worldwide.

After a recent study, senior management is concerned about the impact of the company’s multiple data centers and duplication of applications on business efficiency. To address this concern, a strategic architecture has been defined; it will help improve the ability to meet customer demand and improve the efficiency of operations. The strategic architecture involves the consolidation of multiple application programs that are currently used in different divisions and putting them all onto a cloud-based solution instead.

Each division has completed the Architecture Definition documentation to meet its own specific operational requirements. The enterprise architects have analyzed the corporate changes and implementation constraints. A consolidated gap analysis has been completed. Based on its results, the architects have reviewed the requirements, dependencies, and interoperability requirements needed to integrate the cloud-based solution. The architects have completed the Business Transformation Readiness Assessment. Based on all these factors, they have produced a risk assessment. They have also completed the draft Implementation and Migration Plan, the draft Architecture Roadmap, and the Capability Assessment deliverables.

Due to the risks of changing from the current environment, the decision has been taken that a gradual approach is needed to implement the target architecture. It will likely take a few years to complete the whole implementation process.

The company has a mature Enterprise Architecture (EA) practice and uses the TOGAF standard for its architecture development method. The EA practice is engaged throughout all the divisions, with implementation governance assigned to a business line. In addition to providing guidance on using architecture frameworks, including business planning, project/portfolio management, and operations management, the EA program is sponsored by the Chief Information Officer (CIO).

You have been asked to decide on the next steps for the migration planning.

Based on the TOGAF standard, which of the following is the best answer?

You update the Architecture Definition Document, which includes setting project objectives and documenting the final requirements. This will ensure that the architecture remains relevant and responsive to the needs of the enterprise. You then produce an Implementation Governance Model to manage the lessons learned prior to finalizing the Implementation and Migration Plan. You recommend that lessons learned be applied as changes to the archi

You conduct a series of Compliance Assessments to ensure that the architecture is being implemented according to the contract. The Compliance Assessment verifies that the implementation team is using the proper development methodology. It should include deployment of monitoring tools and ensure that performance targets are being met. If they are not met, then you would identify changes to performance requirements and update those in the Imp

You examine how the Implementation and Migration Plan affects the other frameworks being used in the organization. You coordinate the planning with the business planning, project/portfolio management, and operations management frameworks. You assign a business value to each project, considering the available resources and how well they align with the strategy. You then update the architecture roadmap and the Implementation and Migration Pla

You assess the business value for each project by applying the Business Value Assessment Technique. The assessment should focus on return on investment and performance evaluation criteria to prioritize the most progress of the architecture transformation. You confirm and plan a series of Transition Architecture phases using an Architecture Definition Increments Table. You document the lessons learned and generate the final Implementation an

Answer:

Explanation:

Context of the Scenario

The organization is currently in the Migration Planning phase, which corresponds to Phase F of the TOGAF ADM (Architecture Development Method). The key activities for this phase involve:

Evaluating dependencies and impacts on other organizational frameworks.

Aligning the roadmap and migration plan with strategic objectives and available resources.

Addressing the risks of transitioning from the current architecture to the target architecture using a phased approach.

The deliverables (Architecture Roadmap, Capability Assessment, etc.) and assessments (Gap Analysis, Risk Assessment, Transformation Readiness) have already been developed. The next step is to refine and finalize the migration planning.

Option Analysis

Option A:

While updating the Architecture Definition Document could ensure alignment, this step was completed in earlier phases (B, C, D). At this stage, further changes to the architecture must go through a formal governance review, and applying lessons learned without review contradicts TOGAF principles.

Producing an Implementation Governance Model is more relevant in Phase G (Implementation Governance), not in Phase F.

Conclusion: Incorrect, as it suggests revisiting earlier steps and does not align with the current phase.

Option B:

Conducting Compliance Assessments ensures the architecture is implemented correctly, but this is a task for Phase G (Implementation Governance) after migration planning has been finalized and implementation begins.

Deployment of monitoring tools is also part of implementation and governance activities, not migration planning.

Conclusion: Incorrect, as it focuses on tasks belonging to a later phase.

Option C:

Examining how the Implementation and Migration Plan affects other organizational frameworks is critical in Phase F, as TOGAF emphasizes alignment with business planning, project/portfolio management, and operations management.

Assigning business value to each project ensures prioritization and optimal allocation of resources.

Updating the Architecture Roadmap and the Implementation and Migration Plan based on this analysis ensures strategic alignment and readiness for implementation.

Conclusion: Correct, as it addresses the key objectives of the Migration Planning phase comprehensively.

Option D:

Applying the Business Value Assessment Technique is valid for prioritizing initiatives but is a limited aspect of Migration Planning.

Planning Transition Architecture phases and documenting lessons learned are valid, but this does not address broader organizational impacts or dependencies as effectively as Option C.

Conclusion: Narrow focus; less comprehensive than Option C.

References to TOGAF

Phase F (Migration Planning): The focus is on aligning the migration plan with business objectives, considering organizational dependencies, and prioritizing projects (TOGAF 9.2, Chapter 12).

Architecture Roadmap and Implementation Plan: Updated to reflect changes in priorities and alignment with business frameworks (TOGAF 9.2, Section 12.4).

Framework Integration: Collaboration with other frameworks (e.g., business planning, portfolio management) ensures alignment across the organization (TOGAF 9.2, Section 6.5.2).

Business Value Assessment Technique: Used to prioritize initiatives based on return on investment and performance criteria (TOGAF 9.2, Section 24.4).

Question # 6

Please read this scenario prior to answering the question

You are employed as an Enterprise Architect in a team at a large company. The

company sells luxury food and drinks in more than 10,000 stores worldwide. The

company is a leader in using technology to connect with its customers. This includes

online ordering, mobile apps, and rewards programs. The company is also famous for

bringing new ideas to the market, like ordering through apps, using Al to suggest

personalized options, self-service pickup stations, and changing prices based on

demand.

The stores are open every day. They send timely sales data to a central system that

manages inventory. This system can predict what products are needed, adjust how

much stock there is, and order more stock automatically. The stores and the main

inventory system work directly with the mobile apps, allowing orders to be made

online. The central inventory system is located at the company ' s main data center.

The company will merge with a major competitor. This competitor has a synergistic

business. Leaders from both companies have told shareholders that the merger will

happen fast. There will be minimal impact for customers. All stores will keep the

current brand names. They will combine their systems, choosing the best ones to use.

This means their store management and back-office systems will become one. They

will stop using duplicate systems and use one main system to manage the stores.

They will also cut down on the number of back-office applications they use.

The Request for Architecture Work to oversee the merger has been approved.

Stakeholders, concerns, and business requirements have been identified. The

stakeholders have made it clear that they expect to continue to be able to innovate

quickly, and that changes should not restrict that capability. The scope of what is

inside and what is outside the architecture efforts has been confirmed. The next step

is to revisit and review the Architecture Principles, as they form part of the constraints

on architecture work.

Business Continuity is essential given that the business depends on real-time

ordering and automated inventory management. During the systems integration,

maintaining service for customers and inventory operations must be prioritized

Refer to the scenario

You have been asked to identify the most relevant Architecture Principles for the

merger besides Business Continuity.

Based on the TOGAF standard, which of the following is the best answer?

[Note: You should assume that the company follows the example set of Architecture

Principles provided in the TOGAF standard, ADM Techniques, Architecture Principles

chapter.]

Control Technical Diversity will help by standardizing technology platforms aspart of the integration process. This will be vital for standardizing the appintegration for digital orders with the back-office systems, and will reducecomplexity and costs during integration. Data Trustee will establish owners tomanage the shared data across the company, thereby assuring data quality.Ease-of-Use is needed to make sure that new user interfaces fo

Primacy of Principles will make sure that the same principles apply to bothorganizations of the newly merged operation, creating consistency acrosslocations. Data as an Asset is critical. Since you ' re maintaining separate mobileapps but consolidating back-end systems, treating data as an asset becomesessential. This principle helps ensure that customer data, and inventoryinformation from both brands are properly integrated and managed.Tec

Compliance with the Law makes sure that all company activities comply withrelevant laws and regulations. This principle provides the foundation forensuring the merger meets all legal requirements. Requirements-BasedChange will make sure that when combining systems, changes to applicationsand technology are only made if required by business needs. ResponsiveChange Management focuses on the speed needed to achieve the goals setby the leaders

Service orientation will speed up the merger and make it easier to integratesystems while maintaining business operations. Maximize Benefit to theEnterprise will make sure that merger decisions prioritize the overall benefit tothe combined company. Common Use Applications across the mergedcompany is preferred over the use of similar or duplicative applications forcertain parts of the company. This help supports the goal of merging back-offi

Answer:

Explanation:

You are asked to identify the most relevant Architecture Principles, besides Business Continuity, that apply to a rapid merger, where:

Back-office and store management systems will be consolidated

Duplicate applications will be eliminated

Innovation must remain fast

Customer experience must remain uninterrupted

Combined enterprise value is the priority

TOGAF’s example Architecture Principles include four main categories:

Business Principles

Data Principles

Application Principles

Technology Principles

Option D contains the principles that best support the specific needs of the merger as described.

✔ Why Option D is correct

1. Service Orientation (Business Principle)

This principle states that architecture should be organized around services, enabling flexibility, loose coupling, and ease of integration.

For the merger:

Integrating two companies’ store systems, mobile apps, and inventory platforms requires modular, interoperable services.

Service orientation directly supports the requirement that innovation must not slow down.

It allows systems to be merged with minimal disruption.

This principle supports fast integration + ongoing innovation — exactly what stakeholders demand.

2. Maximize Benefit to the Enterprise (Business Principle)

This principle ensures decisions are made from an enterprise-wide (not departmental or local) perspective.

In the scenario:

Two companies are merging.

Decisions must prioritize combined enterprise value, not local optimizations by either company.

System consolidation and elimination of duplicates requires an enterprise-first mindset.

This principle aligns perfectly with a merger that aims to unify operations and reduce redundancy.

3. Common Use Applications (Application Principle)

This is one of the MOST relevant principles in any merger.

TOGAF defines this principle as:

“Applications should be shared across the enterprise and not duplicated.”

In the scenario:

Back-office systems and store management tools must be consolidated.

Duplicate applications are explicitly to be reduced.

One main system will be used across stores.

This principle directly matches the merger ' s objectives.

✔ Summary

Option D contains the three principles that best support:

A major merger

System consolidation

Reduction of duplication

Enterprise-wide benefit

Flexible, service-oriented integration

Continued innovation

Therefore, Option D is the most appropriate selection according to TOGAF’s example Architecture Principles.

Question # 7

Please read this scenario prior to answering the question

You are the Lead Enterprise Architect at a major agribusiness company. The company ' s main harvest is lentils, a highly valued food grown worldwide. The lentil parasite, broomrape, has been an increasing concern for many years and is now becoming resistant to chemical controls. In addition, changes in climate favor the propagation and growth of the parasite. As a result, the parasite cannot realistically be exterminated, and it has become pandemic, with lentil yields falling globally.

In response to the situation, the CEO has decided that the lentil fields will be used for another harvest. The company will also cease to process third-party lentils and will repurpose its processing plants. Thus, the target market will change, and the end-products will be different and more varied.

The company has recently established an Enterprise Architecture practice based on the TOGAF standard as method and guiding framework. The CIO is the sponsor of the activity. A formal request for architecture change has been approved. At this stage there is no fixed scope, shared vision, or objectives.

Refer to the scenario

You have been asked to propose the best approach for architecture development to realize the CEO ' s change in direction for the company.

Based on the TOGAF standard which of the following is the best answer?

You propose that this engagement define the baseline Technology Architecture first in order to assess the current infrastructure capacity and capability for the company. Then the focus should be on transition planning and incremental architecture deployment. This will identify requirements to ensure that the projects are sequenced in an optimal fashion so as to realize the change.

You propose that the team uses the architecture definition document and focus on architecture development starting simultaneously phases B, C and D. This is because the CEO has identified the need to change. This will ensure that the change can be defined in a structured manner and address the requirements needed to realize the change.

You propose that the team focus on architecture definition including development of business models, with emphasis on defining the change parameters to support this new business strategy that the CEO has identified. Once understood, the team will be in the best position to identify the requirements, drivers, issues, and constraints for the change.

You propose that the priority is to produce a new Request for Architecture Work leading to development of a new Architecture Vision. The trade-off method should be applied to identify and select an architecture satisfying the stakeholders. For an efficient change the EA team should be aligned with the organization ' s planning, budgeting, operational, and change processes.

Answer:

Explanation:

A Request for Architecture Work is a document that describes the scope, approach, and expected outcomes of an architecture project. A Request for Architecture Work is usually initiated by the sponsor or client of the architecture work, and approved by the Architecture Board, which is a governance body that oversees the architecture work and ensures compliance with the architecture principles, standards, and goals. A Request for Architecture Work triggers a new cycle of the Architecture Development Method (ADM), which is the core process of the TOGAF standard that guides the development and management of the enterprise architecture12

An Architecture Vision is a high-level description of the desired outcomes and benefits of the proposed architecture. An Architecture Vision is the output of Phase A: Architecture Vision of the ADM cycle, which is the first phase of the architecture development. An Architecture Vision defines the scope and approach of the architecture work, and establishes the business goals and drivers that motivate the architecture work. An Architecture Vision also involves obtaining the approval and commitment of the sponsors and other key stakeholders, and initiating the Architecture Governance process3

A trade-off analysis is a technique that can be used to evaluate and compare different architecture alternatives and select the most suitable one. A trade-off analysis involves identifying the criteria and factors that are relevant to the decision, such as costs, benefits, risks, and opportunities, and assessing the strengths and weaknesses of each alternative. A trade-off analysis also involves balancing and reconciling the multiple, often conflicting, requirements and concerns of the stakeholders, and ensuring alignment with the Architecture Vision and the Architecture Principles.

Therefore, the best answer is D, because it proposes the best approach for architecture development to realize the CEO’s change in direction for the company. The answer covers the Request for Architecture Work, the Architecture Vision, and the trade-off analysis techniques that are relevant to the scenario.

1: The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 7: Request for Architecture Work 2: The TOGAF Standard, Version 9.2, Part VI: Architecture Capability Framework, Chapter 50: Architecture Governance 3: The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 18: Phase A: Architecture Vision : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 30: Trade-Off Analysis

Question # 8

Scenario:

You are working as an Enterprise Architect within a company providing legal services. The company operates in many countries and has a complicated structure. Every office must follow the local regulations in their country.

The company’s Enterprise Architecture (EA) department has been operating for several years and has mature, well-developed architecture governance and development processes based on the TOGAF standard. In addition to the EA program, the company has several management frameworks, including business planning, project/portfolio management, and operations management. The Architecture Board includes representatives from all parts of the company.

The Chief Information Officer (CIO) is the sponsor of the Enterprise Architecture program. The CIO has actively encouraged architecting with agility within the EA department as the preferred approach for projects. The CIO has given approval for a Request for Architecture Work to explore the adoption of an AI-powered system for managing legal cases and financial processes.

Senior management has become more concerned about business performance, especially with the advancements in Artificial Intelligence (AI). Many of the company’s competitors have started using AI to assist with legal strategies, streamline processes, and boost productivity. One of the most important benefits AI has for the business is its ability to increase accuracy and minimize mistakes.

Some of the top managers are worried about a change in the way of working, and if it will achieve the business goals. Their staff also fear that management will use the AI system to measure their performance. The CIO wants to know how to address these concerns and reduce risks.

The new system is expected to guide legal professionals and analysts on which tasks to focus on. The main goals are to improve productivity and make better use of staff. In addition, the CIO hopes these changes will lead to higher customer satisfaction.

Refer to the scenario:

You have been asked to respond to the Chief Information Officer (CIO) recommending an approach that would enable the development of an architecture that addresses the concerns of the top managers and the multiple branches in different parts of the company.

Based on the TOGAF standard, which of the following is the best answer?

You recommend that models be created for each of the Business, Application, and Technology architectures. These can be used to ensure that the system will be compliant with the local regulations for each operating entity. This ensures that all necessary data and detail is addressed. A formal review should be held with the stakeholders to verify that their concerns have been properly addressed by the models.

You recommend that an analysis of the stakeholders is undertaken. This will allow the architects to define groups of partners (the stakeholders) who have common concerns and include development of a Stakeholder Map. The concerns and relevant views should then be defined for each group and recorded in the Architecture Vision document. To reduce risk, you include a requirement that there be progressive development of the target architecture t

You recommend creation of a set of business models that can be applied uniformly across all AI-related architecture projects. These should be developed in a portable format to ensure maximum portability across the many tools used in the firm. Each architecture should then be defined based on this fixed set of models. All concerned stakeholders can then examine the models to ensure that their needs have been addressed.

You recommend that a Communications Plan be created to address the key stakeholders, particularly influential partners. This plan should include a report summarizing the key features of the architecture with respect to each location and reflect the stakeholders’ requirements. You will check with each key stakeholder that their concerns have been addressed. Risk mitigation should be explicitly addressed as a component of the architecture be

Answer:

Explanation:

The correct answer is B, as it aligns with TOGAF ' s stakeholder management approach, ensuring that stakeholder concerns are captured and addressed iteratively throughout the architecture development process.

Analysis of the Correct Answer (Option B):

Stakeholder Analysis and Mapping

The scenario highlights that top managers and staff are worried about the changes AI will bring.

TOGAF recommends stakeholder analysis early in the ADM process to ensure that concerns, expectations, and risks are documented.

Creating a Stakeholder Map groups stakeholders by common concerns, allowing architects to develop tailored viewpoints.

Recording Concerns in the Architecture Vision Document

The Architecture Vision (ADM Phase A) serves as a high-level guiding document.

Capturing stakeholder concerns in the Vision document ensures alignment between business goals and technology implementation.

Iterative Development and Regular Feedback

The scenario describes an AI-powered system with major business impacts, so incremental validation is necessary.

TOGAF emphasizes progressive development to manage risk and validate requirements continuously.

Regular feedback loops help mitigate resistance from top managers and staff.

Why Other Options Are Incorrect?

Option A: Creating Models for Business, Application, and Technology Architectures

Incorrect because while compliance is important, it does not address stakeholder concerns directly.

The scenario is about ensuring buy-in from top managers and employees, not just regulatory compliance.

Option C: Using Uniform Business Models Across AI Projects

Incorrect because a one-size-fits-all model does not allow for regional and functional differences within the company.

The scenario emphasizes the need to address specific concerns of top managers and different locations, which requires stakeholder-specific customization.

Option D: Creating a Communications Plan

Incorrect because communication alone does not resolve stakeholder concerns.

While communication is useful, the architecture development process should include stakeholder engagement and progressive validation, not just reporting.

[References:, TOGAF Standard, ADM Phase A – Architecture Vision, TOGAF Standard, Stakeholder Management (ADM Guidelines and Techniques), TOGAF Enterprise Architecture Principles – The Open Group, , , , , , ]

Question # 9

Please read this scenario prior to answering the question

Your role is that of a senior architect, reporting to the Chief Enterprise Architect, at a medium-sized company with 400 employees. The nature of the business is such that the data and the information stored on the company systems is their major asset and is highly confidential.

The company employees travel extensively for work and must communicate over public infrastructure using message encryption, VPNs, and other standard safeguards. The company has invested in cybersecurity awareness training for all its staff. However, it is recognized that even with good education as well as system security, there is a dependency on third-parly suppliers of infrastructure and software.

The company uses the TOGAF standard as the method and guiding framework for its Enterprise Architecture (EA) practice. The CTO is the sponsor of the activity.

The Chief Security Officer (CSO) has noted an increase in ransomware (malicious software used in ransom demands) attacks on companies with a similar profile. The CSO recognizes that no matter how much is spent on education, and support, it is likely just a matter of time before the company suffers a significant attack that could completely lock them out of their information assets.

A risk assessment has been done and the company has sought cyber insurance that includes ransomware coverage. The quotation for this insurance is hugely expensive. The CTO has recently read a survey that stated that one in four organizations paying ransoms were still unable to recover their data, while nearly as many were able to recover the data without paying a ransom. The CTO has concluded that taking out cyber insurance in case they need to pay a ransom is not an option.

Refer to the scenario

You have been asked to describe the steps you would take to improve the resilience of the current architecture?

Based on the TOGAF standard which of the following is the best answer?

You would determine business continuity requirements, and undertake a gap analysis of the current Enterprise Architecture. You would make recommendations for change requirements to address the situation and create a change request. You would manage a meeting of the Architecture Board to assess and approve the change request. Once approved you would produce a new Request for Architecture Work to activate an ADM cycle to carry out a project t

You would monitor for technology changes from your existing suppliers that could improve resilience. You would prepare and run a disaster recovery planning exercise for a ransomware attack and analyze the performance of the current Enterprise Architecture. Using the findings, you would prepare a gap analysis of the current Enterprise Architecture. You would prepare change requests to address identified gaps. You would add the changes implem

You would ensure that the company has in place up-to-date processes for managing change to the current Enterprise Architecture. Based on the scope of the concerns raised you recommend that this be managed at the infrastructure level. Changes should be made to the baseline description of the Technology Architecture. The changes should be approved by the Architecture Board and implemented by change management techniques.

You would request an Architecture Compliance Review with the scope to examine the company ' s resilience to ransomware attacks. You would identify the departments involved and have them nominate representatives. You would then tailor checklists to address the requirement for increased resilience. You would circulate to the nominated representatives for them to complete. You would then review the completed checklists, identifying and resolvi

Answer:

Explanation:

Business continuity is the ability of an organization to maintain essential functions during and after a disaster or disruption. Business continuity requirements are the specifications and criteria that define the acceptable level of performance and availability of the business processes and services in the event of a disaster or disruption. A gap analysis is a technique that compares the current state of the architecture with the desired state, and identifies the gaps or differences that need to be addressed. A change request is a formal proposal for an amendment to some product or system, such as the architecture. A Request for Architecture Work is a document that describes the scope, approach, and expected outcomes of an architecture project123

The best answer is A, because it describes the steps that would improve the resilience of the current architecture, which is the ability to withstand and recover from a ransomware attack or any other disruption. The steps are:

Determine the business continuity requirements, which specify the minimum acceptable level of performance and availability of the business processes and services in case of a ransomware attack. This would involve identifying the critical business functions, the recovery time objectives, the recovery point objectives, and the dependencies and resources needed for recovery.

Undertake a gap analysis of the current Enterprise Architecture, which compares the current state of the architecture with the desired state based on the business continuity requirements. This would involve assessing the strengths and weaknesses of the current architecture, the risks and opportunities for improvement, and the gaps or differences that need to be addressed.

Make recommendations for change requirements to address the situation and create a change request. This would involve proposing solutions and alternatives to close the gaps, enhance the resilience, and mitigate the risks of the current architecture. The change request would document the rationale, scope, impact, and benefits of the proposed changes, and seek approval from the relevant stakeholders.

Manage a meeting of the Architecture Board to assess and approve the change request. The Architecture Board is a governance body that oversees the architecture work and ensures compliance with the architecture principles, standards, and goals. The meeting would involve presenting the change request, discussing the pros and cons, resolving any issues or conflicts, and obtaining the approval or rejection of the change request.

Once approved, produce a new Request for Architecture Work to activate an ADM cycle to carry out a project to define the change. The Request for Architecture Work would describe the scope, approach, and expected outcomes of the architecture project that would implement the approved change request. The Request for Architecture Work would initiate a new cycle of the Architecture Development Method (ADM), which is the core process of the TOGAF standard that guides the development and management of the enterprise architecture.

1: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 33: Business Scenarios 2: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 30: Gap Analysis 3: The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 31: Architecture Change Management : The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 7: Request for Architecture Work : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 34: Business Transformation Readiness Assessment : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 30: Gap Analysis : The TOGAF Standard, Version 9.2, Part III: ADM Guidelines and Techniques, Chapter 31: Architecture Change Management : The TOGAF Standard, Version 9.2, Part VI: Architecture Capability Framework, Chapter 50: Architecture Governance : The TOGAF Standard, Version 9.2, Part II: Architecture Development Method (ADM), Chapter 7: Request for Architecture Work

Question # 10

Please read this scenario prior to answering the question

You are employed as an Enterprise Architect within a clinical research and health

technologies company. The company is dedicated to transforming healthcare with

new ideas and advancements. The company has multiple divisions that cover different

aspects of the business.

The company ' s Enterprise Architecture (EA) department has mature, well-developed

architecture governance and development processes following the TOGAF standard.

In addition to the EA program, the company has a number of management

frameworks in use. The Architecture Board includes representatives from each

division of the company. The Chief Information Officer (CIO) is the sponsor of the

Enterprise Architecture program. The CIO has actively encouraged architecting with

agility within the EA department as the preferred approach for projects.

Many of the company ' s rivals have begun using Artificial Intelligence (Al) in their

operations, and the indications are that this will be transformative for healthcare

delivery. This is something the EA department has been interested in for a while, and

they had recently submitted an architecture Change Request which was approved. As

a result, the CIO has approved a Request for Architecture Work to investigate the

implementation of Al in the company.

Areas for evaluation include:

How can staff use Al daily in their current roles?

How can Al enhance access to care for patients, and how to make that experience

seamless?

How can Al offer new workplace platforms and tools to increase efficiency?

Some of the top managers are worried about a change in the way of working, and if it

will achieve the goals. Many are not confident that the company ' s risk management

processes are adequate for a company-wide integration of generative Al. There are

also questions from staff about whether enough specific guidelines and polices have

been put in place for responsible use of Al.

Refer to the scenario

You have been assigned to the architecture development and asked how to address

the concerns and manage risk for the project. How do you begin?

Based on the TOGAF standard which of the following is the best answer?

You recommend that an analysis of the stakeholders is carried out. This willallow the architects to define groups of stakeholders who have commonconcerns and include development of a Stakeholder Map. The concerns andrelevant views should then be defined for each group and recorded in theArchitecture Vision document. To mitigate risk, you include a requirement thatthere be progressive development of the target architecture to ensure there is

You recommend that all the stakeholders be identified, and a CommunicationsPlan created to address the most powerful and influential stakeholders. Thisplan should include a report that summarizes the key features of thearchitecture with respect to each division and reflects the stakeholders ' requirements. You will check with each key stakeholder that their concerns arebeing addressed. Risk mitigation should be explicitly addressed as acomp

You recommend creation of a simple solution concept diagram to show howthe stakeholders will be impacted, and the benefits to the firm. You would alsocreate a benefits diagram showing the various opportunities from adoption ofAl-based solutions. A meeting should be held with the main stakeholders toreview the diagrams. They can then decide the priorities and sequencingdecisions for the architecture development. Risk will be evaluated whende

You recommend that models be created for the Draft Business, Data,Application, and Technology Architectures. These can be used to minimize risk,and make sure that the system meets the local regulations for each division.Together with the problem description, and requirements, these should beincluded in the Architecture Vision document. A formal review should be heldwith the stakeholders to verify that their concerns are included in theArchi

Answer:

Explanation:

In this scenario you are right at the start of an ADM cycle: a Request for Architecture Work has been approved to investigate AI, and there are strong stakeholder concerns and risk questions. According to the TOGAF standard, the correct place to start is Phase A: Architecture Vision, with a strong focus on stakeholder management and capturing their concerns and required views.

Option A is the only answer that correctly reflects this:

Stakeholder analysis & Stakeholder Map (Phase A core task)TOGAF explicitly states that in Phase A you must:

Identify stakeholders

Analyze and group them by common concerns

Use a Stakeholder Map to understand their influence, interest, and required engagement

Determine which views/viewpoints are needed to address their concerns in the architecture description coe.qualiware.com+1

Option A says:

“analysis of the stakeholders … define groups of stakeholders who have common concerns and include development of a Stakeholder Map. The concerns and relevant views should then be defined for each group and recorded in the Architecture Vision document.”

This is exactly how TOGAF describes stakeholder management and views in Phase A:

Stakeholder Map to classify and prioritize stakeholders

Concerns and required views captured and traced

These elements feeding into the Architecture Vision deliverable Visual Paradigm TOGAF+1

Concerns, views, and Architecture VisionTOGAF emphasizes that architecture views are constructed to address specific stakeholder concerns; you do not just build generic models. opengroup.org+1

Option A explicitly links concerns → views → Architecture Vision, which aligns with TOGAF guidance for early phases.

Capturing this in the Architecture Vision provides a high-level, shared understanding of what the AI initiative is trying to achieve and how stakeholder issues (e.g., responsible AI, risk processes, change in way of working) will be addressed.

Risk management and “architecting with agility”In the scenario, the CIO has encouraged architecting with agility. TOGAF is compatible with incremental and iterative development of the target architecture, especially when there is high uncertainty and risk. conexiam.com

Option A includes:

“a requirement that there be progressive development of the target architecture to ensure there is regular feedback.”

This “progressive development” and frequent feedback loop is exactly how you mitigate risk in an AI-heavy, change-sensitive initiative:

Frequent stakeholder feedback

Early validation of assumptions

Ability to adjust scope, constraints, and principles as risk and understanding evolve

This directly addresses management’s worry about the change in the way of working and whether risk management and responsible AI policies are adequate: these become explicit stakeholder concerns and requirements that are iteratively refined.

Why the other options are weaker / not TOGAF-aligned as a starting point

Option B

Focuses mainly on a Communications Plan and powerful stakeholders.

While TOGAF does expect a stakeholder communications plan, it is derived from a proper stakeholder analysis and Stakeholder Map, not a substitute for it.

It also treats risk as a “component of the architecture” rather than something to be addressed early through stakeholder concerns, principles, and iteration.

Option C

Jumps straight to a solution concept diagram and benefits diagram and defers risk evaluation to when the Architecture Roadmap is defined (Phase E).

In TOGAF, risk and stakeholder concerns must be addressed already in Phase A and refined throughout, not postponed to roadmap development.

Option D

Proposes creating draft Business, Data, Application, and Technology models and putting them into the Architecture Vision.

This is too detailed for the starting point: Phase A is about high-level vision, not full draft core architecture models (those belong in Phases B, C, D).

It also doesn’t emphasize Stakeholder Mapping and grouping by concerns, which is central to resolving the worries about way of working, risk, and responsible AI.

In summary, Option A is the best and TOGAF-consistent way to begin:

Start in Phase A: Architecture Vision

Perform stakeholder analysis and create a Stakeholder Map

Define stakeholder concerns and relevant views

Record them in the Architecture Vision

Add an explicit requirement for progressive (iterative) development of the target architecture for continuous feedback and risk mitigation