Patterns & Co. is introducing a Commercial Off-the-Shelf (COTS) Market Analytics solution in order to improve its new delivery service.

Patterns & Co. has a mature enterprise architecture capability and the CIO is the sponsor of the enterprise architecture team. The business vision and requirements for the new system are defined. It includes a detailed business process analysis. The supplier has proposed a solution but the Architecture Board identified some of the project requirements not consistent with the adopted infrastructure standards. The CIO considered the risks and approved the implementation. The CIO has asked the EA team to execute the Phase G ensuring that the system performance KPIs are respected, the project remains within budget and security guidelines are met.

Refer to the scenario above

As Lead Enterprise Architect you have to recommend a plan to implement the CIO decision. Choose the best answer according to TOGAF 9.

Choose one of the following answers

A. You ask the supplier to modify the web server hardware and software components so they can meet the current infrastructure standards. You advise to execute a proof of concept to anticipate any coding issue. Then, after the agreement with the development leads for supporting the development, you will provide the project plan to the project manager and develop an Architecture Contract. A set of frequent operational reviews to monitor the solution's performance is then scheduled after the implementation is completed.

B. You recommend the co-existence of a second web server standard and modify the company Standards Information Base adding this new technology.You ask the project architects to create an Architecture Contract with the development teams. You identify the need of a performance testing and a compliance review You agree with the business on SLA and delivery dates. You identify re-usable procedures and objects.

C. You eliminate the non-standard web server from the solution as recommended by the Architecture Board. You create a revised plan and Architecture Contract for the development stressing the re-use of standard technologies. You share the budget implication of this solution with a finance committee and inform the CIO of the long term cost benefits of this choice. You define periodical project management meetings to monitor compliance.

D. You execute a risk analysis and set deliverables and timing requirements with the development team. You implement a detailed impact analysis of the chosen solution. You create an Architecture Contract and ask for the CIO's approval before implementing it. You test the solution just prior to implementation and deliver the project artifacts and store after the completion of the implementation.

Please read this scenario prior to answering the question

Worldwide Mobile is a mobile telecommunications company formed through a series of mergers and acquisitions. They are yet to fully integrate the customer service systems for the most recent acquisitions, and as result, customer service has been a major concern for the Chief Technology Officer.

Results for the last two quarters have shown that Average Revenue Per User (ARPU) and the customer retention (Churn) rate have fallen below the industry average. The Corporate Marketing group has published some new finding about customer satisfaction. The customers appear to be switching to Air Light, a competitor, because of superior customer service. WorldwideMobile actually has better coverage in nearly all markets than Air Light, and good roaming agreement that keep rates low for business travellers. But customer satisfaction has remained low. The Business Strategy group and the Enterprise Architecture group have conducted a high-level project to develop the enterprise-wide strategic plan. They have developed a business scenario which contains a good conceptual model of what needs to be done and also identifies the key requirements. This was used in preparing the proposal presented to the Executive Council and the Corporate Board.
The planning for the program has been underway for several months. WorldwideMobile has selected TOGAF 9 as the basis for its Enterprise Architecture.
The Corporate Board has approved funding for a multi-million Euro conversion to transition to a packaged Customer Service System. It is anticipated that the overall program will take five years to complete, but there are some tactical projects that can commence immediately to address the situation. The Executive Council has stated that the program should define specific initiatives to enable each regional business units to create an implementation of the Customer Service System. The implementation must meet the needs of the business unit and still provide the information needed to enable major improvements to the customer.

Refer to WorldwideMobile-2 Scenario You are serving as the Lead Architect for the Performance and Integrity project of the Customer Service System program.
The project has been chartered to address the architecture(s) required to support the Customer Service System from an infrastructure perspective. At present time, the project team is conducting an architecture development project that is focused on the customer self service capability, which was defined as part of the earlier strategic planning activities. This capability will enable customers to access their accounts, pay bills, request account reviews, and provision services from any web-enabled device.
The project team has gathered information about the self-service capability, developed a business scenario, and used the results to define an Architecture Vision for achieving the capability. You have been asked to recommend the course of action to complete the project. Based on TOGAF 9, which of the following is best answer?

A. In the remaining architecture definition phases, the project team should map out the capability in the Technology domain. In the Phases E and F, the capability should be broken down into a set of Solution Building Blocks that define the Target Architecture. Where possible, the Solution Building Blocks should be drawn from the Architecture Repository. The completed Architecture Definition Document and the Implementation and Migration Plan will be submitted for approval. Upon approval, the architecture team will conduct Compliance Assessments to ensure that the Target Architecture is properly implemented.

B. In the remaining architecture definition phases, the project team should map out the capability across the Business, Information System and Technology domains. In the Phases E and F, the capability should be broken down into a set of increments that are sequenced into Transition Architectures that will lead to the realization of the Target Architecture. The resulting Solution Building Blocks will then provide the basis for the capability increment solutions. The complete Architecture Definition Document and the Implementation and Migration Plan will be submitted for approval. Upon approval, the architecture team will oversee the implementation process through monitoring Architecture Contracts and by conduction Compliance Assessments.

C. In the remaining architecture definition phases, the project team should map out the capability across the Business, Information System and Technology domains. In the Phases E and F, the capability should be broken down into a set of increments that defines the Target Architecture. The Solution Building Blocks will provide the basis for the capability increment solutions. The complete Architecture Definition Document and the Implementation and Migration Plan will be submitted for approval. Upon approval, the architecture team will oversee the implementation process through monitoring Architecture Contracts and by conducting Compliance Assessments.

D. The remaining architecture definition work should be focused on mapping out the technology and infrastructure capability in the Technology domain. In Phases E and F, the capability should be broken down into a set of Solution Building Blocks that will be implemented to realize the Target Architecture. The Solution Building Blocks will provide the basis for the completed Architecture Definition Document that will be submitted for approval. Upon approval, the implementation team will conduct Compliance Assessments to ensure that the self-service capability is compliant with the overall Enterprise Architecture.

Scenario: Marona Inc.

Marona Inc is a Fortune 500 Enterprise in the retail industry with retail store components manufacturing units and marketing outlets spanning the globe and having an annual turnover of 20 billion$ with more than 100, 000 employees world wide.
The CEO, CIO and the stakeholders of the ongoing EA projects are concerned about rising costs and as one measure want to do an investigation into the operational aspects of the realized Enterprise Architecture using TOGAF9.

The CIO approaches you as the Lead Enterprise Architect to carry out this exercise the stakeholder had voiced to him the following concerns:

They want to analyze the roles of the top management for each revenue earning service. Moreover, many of the HR related critical Search application component have become extremely slow. This needs to be diagnosed and rectified. Moreover there is no proper tracking of revenue from retail store component products over time. There has also been a lot of unauthorized or unwanted access to many of the critical information.

Hence the mode of access needs to be strengthened and made much more secure. Another additional concern is the new launches and the progress of each of the launches over time.

Determine which of the following set of viewpoints are most appropriate to analyze and view in order to address this concern of the stakeholders.

A. (i) System/Functions Matrix(ii) Actor/Role Matrix(iii) Data Entity/Business Function Matrix(iv) Technology Portfolio Catalog(v) Data Security Diagram

B. (i) Goal/Objective/Service Diagram(ii) Contract Measure Catalog(iii) Data Dissemination Diagram(iv) Application Communication Diagram(v) Data Life Cycle Diagram

C. (i) Location Catalog(ii) Service/Function Catalog(iii) Data Entity/Business Function Matrix(iv) Application Communication Diagram

D. (i) System/Functions Catalog(ii) System/Technology Matrix(iii) Goal/Objective/Service Diagram(iv) Product Life Cycle Diagram(v) Data Security Diagram

Scenario

Please read this scenario prior to answering the question

You have been assigned the role of Lead Enterprise Architect for a firm that produces components and replacement parts for the automobile, electronics, and telecommunications industries. The firm has been established for over 70 years. North America has been the primary market for its products, with just 20% of its output being exported to Europe. The firm is planning to expand its exports to Europe and also to establish sales in South America and the Asia Pacific region.

The firm is organized into business units that each focus on the different industry sectors. Each business unit has acquired other producers to expand its manufacturing capacity. This has resulted in a complex environment with a high diversity of business and manufacturing systems.
The Enterprise Architecture (EA) program within the firm has been functioning for several years.

It has made significant progress in consolidating the technology portfolio and establishing key standards. The CIO and the COO are joint sponsors of the EA program. The EA program is mature, with an active Architecture Board and a well-defined architecture process and standard content templates based on the TOGAF 9 Architecture Content Framework. The EA process framework is well coordinated with the PMO, Systems Development, and Operations functions.

The firm has completed a strategic plan to reorganize its Sales & Marketing organization according to the target geographic markets. One of the goals of this reorganization is to improve the ability of Marketing to collect more meaningful market analytics that will enable each sector to better address market needs with effective marketing campaigns and global product presence.

A Request for Architecture Work to address the goals of the reorganization has been approved. As the architecture team commences its work, the CIO has expressed concerns about whether the firm will be able to adapt to the proposed change and how to manage the associated risks.

Refer to the Scenario

You have been asked how to address the concerns of the CIO. Based on TOGAF, which of the following is the best answer?

A. In Phase B, the team should create a set of views that will enable them to identify the factors that will influence the reorganization. There should then be an assessment of each factor on a maturity scale that will allow the team to gauge the urgency, readiness, and degree of difficulty to fix. These factors can then be used to assess the initial risks associated with the proposed project.

B. In Phase A, the team should analyze their risk by completing an Implementation Factor Assessment and Deduction Matrix to identify the particular risks associated with the implementation and deployment. The matrix should include a list of factors to be considered, their descriptions, and constraints that should be taken into account. These factors can then used to assess the initial risks associated with the proposed project.

C. In Phase A, the team should use the Business Transformation Readiness Assessment technique to identify the factors that will influence the reorganization. The assessment should include determining the readiness rating for each factor based on a maturity scale that will allow the team to gauge the urgency, readiness, and degree of difficulty to fix. These factors can then used to assess the initial risks associated with the proposed project.

D. In Phase A, the team should conduct a Business Scenario to identify the stakeholders1 concerns and the resulting requirements. Once the requirements have been identified, they can be assessed in terms of their risks. The risks should be evaluated in terms of how they could be avoided, transferred, or mitigated. Any risks that cannot be resolved should be identified as residual risks and their disposition should be decided by the Architecture Board.

UTrack Transports is a strong UK logistics company. The head of the strategic marketing division engaged the Principal Architect issuing a Request for architectural work to design an enhancement of the current Enterprise Data Warehouse system. An enhancement is needed to support the change in the business model; UTrack wants to leverage on customer data collected during business as usual activities and anonymize them to offer marketing agencies a fresh and accessible source of analytics data, this will increase the company revenues.
TOGAF 9 is the architectural framework in use.
Refer to the scenario above The Principal Architect has decided to ask you as Business Intelligence Subject Matter Expert to design the Data Architecture. The Chief Architect shared with you the Architecture Definition Document including the Business Architecture design. You now need to choose the artifacts you want to produce as part of the Data Architecture design. Identify the best answer accordingly to the TOGAF 9.
Choose one of the following answers

A. You first list the data used across the enterprise using a Data Entity/Data Component Catalog, including data entities and also the data components where data entities are stored. You then classify what the data source are and the relationship with the data entities via a System/Data Matrix. You finally identify common data requirements using a Data Lifecycle Diagram.

B. You first list the data used across the enterprise using a Data Entity/Data Component Matrix, including data entities and also the data components where data entities are stored. You then classify what the data source are and the relationship with the data entities via a Role/System Catalog. You finally identify common data requirements using a Data Use Case Diagram.

C. You first list the data used across the enterprise using a Data Entity/Data Component Catalog, including data entities and also the data components where data entities are stored. You then classify what the data source are and the relationship with the data entities via a System/Data Matrix.

D. You first list the data used across the enterprise using a Data Entity/Data Component Catalog, including data entities and also the data components where data entities are stored. You then assign ownership of data entities to the organization via a System/Data Matrix.

RIG Networks, a global network supplier is implementing a massive replacement of its supply chain to reduce production cost of their new LTE (Long Term Evolution) gateways. As part of this renovation process the CIO decided to replace their ERP (Enterprise Resource Planning) system using a greenfield approach (where the legacy ERP system will be decommissioned). The CIO engaged a team of TOGAF 9 certified consultants to design the solution, he then identified the suppliers and asked you as Chief Architect to supervise the definition of the Architecture Design and Development Contract. Refer to the scenario above
You now need to write the Architecture Design and Development Contract, identify how you would o this following TOGAF 9.
Choose one of the following answers

A. You would define the Architecture Design and Development Contract with : introduction and background, the nature of the agreement, scope of the architecture, architecture and strategic principles and requirements, conformance requirements, Target Architecture Measures, Define phases of deliverables, Prioritized joint workplan, Time window, Architecture delivery and business metrics.

B. You would define the Architecture Design and Development Contract with : introduction and background, the nature of the agreement, scope of the architecture, architecture and strategic principles and requirements, conformance requirements, Baseline Architecture definition, Target Architecture Measures, Define phases of deliverables, Prioritized joint workplan, Time window, Architecture delivery and business metrics.

C. You would define the Architecture Design and Development Contract with : Target Architecture Measures, Define phases of deliverables, Prioritized joint workplan, Time window, Architecture delivery and business metrics.

D. You would define the Architecture Design and Development Contract with : scope, goals, objectives and constraints, Architecture Principles, Baseline Architecture, Architecture Models, Gap Analysis, Impact Assessment.

You are serving as an Enterprise Architect at a large aerospace company. It designs, manufactures and sells civil and military aviation products worldwide and manufactures in multiple countries both inside and outside of the European Union. The company has grown rapidly by acquisition and has inherited numerous different procurement processes and related IT systems.
Recently, several procurement processes, within the civil aviation business, have had problems related to the timing of purchases, which has led to excess inventory. The Vice President in change of Supply Chain Management has made the decision to consolidate and reduce redundant procurement processes and systems. He has committed to the CEO that the business will move to a "Just-in-time" procurement system so as to keep inventory costs low.

The TOGAF standard is used for internal Enterprise Architecture activities. At presents, there are no architectural assets in the Architecture Repository related to this initiative. All assets will need to be acquired, customized, or created from scratch. The company prefers to implement commercial off the shelf package applications with little customization. The CIO, who is the project sponsor, has stated that she is not concerned about preserving the existing procurement processes or systems.
This project is using an iterative approach for executing the Architecture Development Method (ADM). The architecture development project has completed the Architecure Vision Phase and has started a number of iteration cycles to develop the Architecture. As a packeged application is being considered, the next iteration will include both the Business and Application Architectures.

Stakeholder concerns that should be addressed by these architectures include:

1. What groups of people should be involved in procurement-related business processes?
2. What applications will these groups use once the architecture development is complete?
3. What non-procurement applications will need to be integrated with the new procurement applications?
4. What are the dependencies between the non-procurement and the new procurement applications?
[Note: You may need to refer to the Architectural Artifacts chapter, section 31.6 (located in Part IV) within the reference text in order to answer this question.]
You have been asked to identify the most appropriate catalogs, matrices, and diagrams to support the next iteration of Architecture development.
Based on the TOGAF Standard, Version 9.2, which of the following is the best answer?

A. You would describe the Baseline Business Architecture with an Organization/Actor catalog, a Business Service/Function catalog, and a Data Entity/Business Function matrix. You would describe the Baseline Application Architecture with an Application Portfolio catalog and an Application/Function matrix.

B. You would describe the Target Business Architecture with a Business Service/Function catalog, an Organization/Actor catalog, and Data Lifecycle diagrams. You would describe the Target Application Architecture with Application Communication diagrams, an Application Interaction matrix, and an Application Portfolio catalog.

C. You would describe the Target Business Architecture with a Business Interaction matrix, and a Business Service/Function catalog. You would describe the Target Application Architecture with an Application Communication diagram, an Application/Organization matrix, an Application Interaction matrix and an Interface catalog.

D. You would describe the Baseline Business Architecture with a Baseline Business Process catalog, and an Object lifecycle catalog. You would describe the Baseline Application Architecture with an Interface catalog and a Technology Portfolio catalog.

Scenario:

Please read this scenario prior to answering the Question

You are serving as the Lead Architect for the enterprise architecture team at the prime contractor for the Dreadnought Unmanned Aircraft System program.

Over the course of this contract, the company has grown rapidly by acquisition and has inherited numerous different procurement processes and related IT systems. The decision has been made to consolidate and reduce redundant procurement processes and systems. The CEO has announced that the company will seek to leverage higher volume discounts and lower related IT support costs by instituting a preferred supplier program.

TOGAF 9 Is used for internal Enterprise Architecture activities, with an iterative approach for executing Architecture Development Method (ADM) projects.

At present, there are no particularly useful architectural assets related to this initiative, so all assets need to be acquired and customized or created from scratch. The company prefers to implement commercial off the shelf package applications with little customization. The CIO, who is the project sponsor, has stated that she is not concerned about preserving existing processes or systems.

The architect-re development project has put in place Its Architecture Capability for this project and has started a number of iteration cycles to develop the Architecture. Some tasks to address concerns related to the Business Architecture have been completed. The next immediate task is to address the Information Systems Architectures.

The Information Systems Architectures must address stakeholder concerns such as:

1. Which procurement-related business processes are supported by zero, one, or many existing applications?
2. What non-procurement applications will need to be integrated with any new procurement applications?
3. What data will need to be shared?
Refer to the Scenario

[Note: You may need to refer to TOGAF 9 Chapter 35 in order to answer this question.]

You have been asked to identify the most appropriate catalogs, matrices, and diagrams for this situation.

Based on TOGAF 9, which of the following is the best answer?

A. in the early iterations of Architecture development, you would describe the Baseline Application Architecture with a System/Function matrix, and describe the Baseline Data Architecture using a Data Entity/Data Component catalog. In the later Iterations of the Architecture Definition, you would describe the Target Application Architecture using Application Communication diagrams and an Application Interaction matrix, and describe the Target Data Architecture with a System/Data matrix.

B. In the early iterations of Architecture development, you would describe the Target Application Architecture with Application Communication diagrams and an Application Interaction matrix, and describe the Target Data Architecture with a System/Data matrix. In the later iterations of Architecture development, you would describe the Baseline Application Architecture with an Application and User Location diagram and a System/Function matrix, and describe the Baseline Data Architecture with a Data Entity/Data Component catalog.

C. In the early iterations of Architecture development, you would describe the Target Application Architecture with Application Communication diagrams and an Application Interaction matrix, and describe the Target Data Architecture with a Data Entity/Business Function matrix and a System/Data matrix. In the later iterations of Architecture development, you would describe the Baseline Application Architecture with a System/Function matrix, and describe the Baseline Data Architecture with a Data Entity/Data Component catalog.

D. In the early iterations of Architecture development, you would describe the Baseline Application Architecture with a Technology Portfolio catalog, and describe the Baseline Data Architecture with a Data diagram. In the later iterations of Architecture development, you would describe the Target Application Architecture with a System/Technology matrix, and describe the Target Data Architecture with a Data Dissemination diagram.

Scenario

Please read this scenario prior to answering the question

You are serving as the Lead Architect for an insurance company, which has been formed through the merger of three previously independent companies. The company now consists of three divisions with the same names and division headquarters as their predecessors.

The lack of integration between the three divisions has increasingly caused problems in the handling of customer and financial information. The inability to share information has resulted in lost opportunities to "leverage the synergies" that had been intended when the company was formed. At present, each division maintains its own applications. Despite an earlier initiative to install a common application to manage customer, products, and claims information, each division has different ways of defining these core elements and has customized the common application to the point where the ability to exchange information is difficult, costly, and error-prone.

As a result, the company has made the decision to introduce a common web portal, contact center software suite, and document management system. Also the company has selected a single enterprise-wide customer relationship management (CRM) application to consolidate information from several applications that exist across the divisions. The application will be used by each of the divisions and accessed by third party partners through well defined interfaces.

The Corporate Board is concerned that the new application must be able to manage and safeguard confidential customer information in a secure manner that meets or exceeds the legal requirements of the countries in which the company operates. This will be an increasingly important capability as the company expands its online services in cooperation with its partners.

The CIO has formed an Enterprise Architecture department, and one of the primary goals in its charter is to coordinate efforts between the implementation team and the migration teams in each division. The CIO has also formed a cross-functional Architecture Board to oversee and govern the architecture. The company has an existing team of security architects.

TOGAF 9 has been selected as the core framework for use for the Enterprise Architecture program. The CIO has endorsed this choice with the full support of top management.

Refer to the Scenario

In the Preliminary Phase you need to define suitable policies and ensure that the company has the appropriate capability to address the concerns of the Corporate Board. Based on TOGAF, which of the following is the best answer?

A. You evaluate the implications of the concerns raised by the Corporate Board in terms of regulatory requirements and their impact on business goals and objectives. Based on this understanding, you then issue a Request for Architecture Work to commence an architecture development project to develop a solution that will address the concerns. You allocate a security architect to oversee the implementation of the new application that is being developed.

B. You start by clarifying the intent that the Board has for raising these concerns. This enables you to understand the implications of the concerns in terms of regulatory requirements and the potential impact on current business goals and objectives. You propose that a security architect or security architecture team be allocated to develop a comprehensive security architecture and that this be considered an additional domain architecture.

C. You evaluate the implications of the Board's concerns by examining the security and regulatory impacts on business goals, business drivers and objectives. Based on your understanding, you then update the current security policy to include an emphasis on the concerns. You define architecture principles to form constraints on the architecture work to be undertaken in the project. You then allocate a security architect to ensure that security considerations are included in the architecture planning for all domains.

D. You identify and document the security and regulatory requirements for the application and the data being collected. You ensure that written policies are put in place to address the requirements, and that they are communicated across the organization, together with appropriate training for key employees. You identify constraints on the architecture and communicate those to the architecture team. You establish an agreement with the security architects defining their role within the ongoing architecture project.

Scenario: Rollins Manufacturing

Please read this scenario prior to answering the question

Rollins Manufacturing is a major supplier in the automotive industry, headquartered in Cleveland, Ohio with manufacturing plants in Chicago, Sao Paulo, Stuttgart, Yokohama, and Seoul. Each of these plants has been operating its own Manufacturing Requirements Planning (MRPII) system, production scheduling, and custom developed applications that drive the automated production equipment at each plant.

Rollins is implementing lean manufacturing principles to minimize waste and improve the efficiency of all of its production operations. During a recent exercise held for internal quality improvement, it was determined that a significant reduction in process waste could be achieved by replacing the current MRPII and scheduling systems with a common Enterprise Resource Planning (ERP) system located in the Cleveland data center. This central system would provide support to each of the plants replacing the functionality in the existing systems. It would also eliminate the need for full data centers at each of the plant facilities. A reduced number of IT staff could support the remaining applications. In some cases, a third-party contractor could provide those staff.

The Rollins Enterprise Architecture department has been operating for several years and has mature, well-developed architecture governance and development processes that are strongly based on TOGAF 9.At a recent meeting, the Architecture Review Board approved a Request for Architecture Work from the Chief Engineer of Global Manufacturing Operations who is the project sponsor. The request covered the initial architectural investigations and the development of a comprehensive architecture to plan the transformation.

The Common ERP Deployment architecture project team has now been formed, and the project team has been asked to develop an Architecture Vision that will achieve the desired outcomes and benefits. Some of the plant managers have expressed concern about the security and reliability of driving their MRPII and production scheduling from a central system located in Cleveland. The Chief Engineer wants to know how these concerns can be addressed.

Refer to the Rollins Manufacturing Scenario

You are serving as the Lead Enterprise Architect of the newly-formed Common ERP Deployment architecture project team.

As the Common ERP Deployment architecture project team assembles for its initial meeting, many of the participants have voiced concerns about the sweeping scope of the initiative. Others are confident that they know a solution that will work. During the meeting, a number of alternative recommendations for how to proceed are put forward by members of the team. You have been asked to select the most appropriate recommendation to ensure that the team evaluates different approaches to the problem and clarifies the requirements for the architecture.

Based on TOGAF 9, which of the following is the best answer?

A. The team should hold a series of interviews at each of the manufacturing plants using the business scenario technique. This will then enable them to identify and document the characteristics of the architecture from the business requirements.

B. The team should exercise due diligence and carefully research vendor literature and conduct a series of briefings with vendors that are on the current approved supplier list. Based on the findings from the research, the team should define a preliminary target Architecture Vision. The team should then use that model to build consensus among the key stakeholders.

C. The team should create Baseline and Target Architectures for each of the manufacturing plants. A gap analysis between the architectures will then validate the approach, and determine the Transition Architecture needed to achieve the target state.

D. The team should conduct a pilot project that will enable vendors on the short list to demonstrate potential solutions that will access the concerns of the stakeholders. Based on the findings of that pilot project, a complete set of requirements can be developed that will arrive the evolution of the architecture.

Scenario: Raxlon Inc.

Case Study Title (Case Study):

Raxlon Inc. is a Fortune 500 Company dealing in high value drugs and pharma products. Its annual turnover is over 120 billion $. It has more than 100,000 employees all over the globe in its R&D, Manufacturing and Marketing Units.
Raxlon’s CEO, Dr Peter Fowles, is a pharmacology expert and has over 72 patents on various types of drugs mainly used for treating patients with genetic disorders. Raxlon is now moving into a suite of high end critical drug products used for Genetic Repair of congenital Diseases like Alzhmeir’s disease and Epilepsy. Rexlon has a well developed EA practice and in 2009 the EA practice has adopted TOGAF 9 as the primary Framework for Enterprise Architectural Change Agent.

Dr Fowles’ main concerns are:

Security of the critical data which they have gained over the years after painstaking research. Although Rexlon had an adequate security system Dr Fowles feels it may not be adequate to deal with the new order of things, especially with data which is highly confidential and if leaked would have major financial impact on the Company.

Dr Fowles calls his CIO and explains his position to him and entrusts whim with the responsibly of evaluating the current security system, operation and governance and determine which are the gaps which need to be addressed during the fresh architectural work. Assume that a new Security Framework would be used in the ADM life cycle. To protect Rexlon’s valuable IP. The CIO apprises the Lead Architect of the sensitive nature of the work he has to complete within the next 2 months.

Identify which of the following processes would be most appropriate for the Lead Architect to adopt in this situation.

A. Identify the sources of threat, review the relevant security statutes, see how disaster recovery can be achieved, find who are the actors vis vis the system and design suitable access control mechanisms, identify critical data and applications and ensure that they are given the highest level of security

B. First revisit the Preliminary Phase to determine the tailoring of ADM vis a vis Security. Identify any change in the Principles or additions to be carried out. Engage with all Stakeholders to finalize the Vision. Then in Business, Information systems and Technology Architectures ensure the Security Frame work adopted to the ADM addresses all critical security issues. Finally conduct an overall review to assess how effective the security ecosystem designed is and whether it meets the security level desired

C. Invoke Preliminary Phase and Vision Phase Identify Sources of threat, review and determine revised regulatory, security and assumptions, document them get management buy in , develop business continuity plans especially for critical data operations, assure data, application and technological component security.

D. Determine who are the people who are hacking into similar organizations, ensure that highly secure measures are taken when external people enter the R&D and manufacturing locations, ensure that there is a very strong firewall so that people cannot get illicit entry into the system, periodically check the effectiveness of the security measures

Scenario: AGEX Inc.

Please read this scenario prior to answering the question

AGEX is a large, global commodities trading company which has been growing rapidly through a series of acquisitions.

Each new business is performing well in its markets. However, the lack of integration between headquarters and the business units has increasingly caused problems in the handling of customer and financial information. The inability to share information across businesses has resulted in lost opportunities to "leverage the synergies" that had been intended when the businesses were acquired. At present, each business unit maintains its own applications. Despite an earlier initiative to install a common application to manage customer, products, supplier, and inventory information, each business unit has different ways of defining each of these core elements and has customized the common application to the point where the ability to exchange information is difficult, costly, and error-prone.

As a result, AGEX has begun implementing a single Enterprise Resource Planning (ERP) system to consolidate information from several applications that exist across the lines of business. The Corporate Board is concerned that the new ERP system must be able to manage and safeguard customer information in a manner that meets or exceeds the legal requirements of the countries in which the company operates. This will be an increasingly important capability as the company expands its online services offered to clients and trading partners.

The CIO has formed an Enterprise Architecture department, and one of the primary goals in its charter is to coordinate efforts between the ERP implementation team and the business unit personnel who will be involved in the migration process. The CIO has also formed a cross-functional Architecture Review Board to oversee and govern the architecture.

After reviewing the available alternatives, and based on recommendations from the ERP vendor, AGEX has selected TOGAF 9 as the basis for its Enterprise Architecture program.

The CIO has endorsed this choice with the full support of top management. Refer to the AGEX Inc. Scenario

You are serving as the Chief Architect.

As part of the process for establishing the Enterprise Architecture department, you have decided to create a set of principles to guide the activities.
You have been asked to recommend the best approach for this work.
Based on TOGAF 9, which of the following is the best answer?

A. You define a set of principles that support the preferred best practices embodied in the Enterprise Architecture department charter. You publish the principles on the corporate intranet to ensure widespread acceptance and compliance.You then schedule regular periodic Compliance Assessments with individual business units to check that they have made satisfactory progress toward meeting the objectives and conditions embodied in the principles.

B. You gather information from credible industry sources in the commodities business. Based on that, you assess current trends and apply that to defining a set of principles that embody best practices.You select architecture principles that do not conflict with each other and that should be stable. You ensure that all the principles are realistic and avoid including principles that are obvious.

C. You examine the mission statements for AGEX and each of its businesses, together with the corporate value statements. Based on that, you define a set of principles and review with the CIO.When developing the principles you ensure that they actively promote the alignment of IT with the business strategies and initiatives of AGEX. You then seek the endorsement of the CIO and senior management.

D. You examine the mission statements for AGEX and each of its businesses, together with the corporate value statements. Based on that, you work with the Architecture Review Board to define the principles.When developing the principles you ensure that they actively promote the alignment of IT with the AGEX business strategies. You then run a series of reviews with all the relevant stakeholders, including senior management, ensuring their support.