CoBiT & ITIL<br />Control Objectives for Information Technology and It’s Relationship to the <br />Information Technology Infrastructure Library<br />Pink elephant Iberoamérica<br />
Quality Systems vs. Process Frameworks<br />Define<br />Quality Control Systems<br />ITIL Best Practices<br />Process Frameworks<br />IT Infrastructure Library<br />Gartner CSD<br />IBM Processes<br />EDS Digital Workflow<br />Deloitte And Touche<br />Microsoft MOF<br />Telecom Ops Map<br />Etc..<br />ISO 900x<br />COBIT<br />TQM<br />EFQM<br />Six Sigma<br />Malcolm Baldrige<br />Theory of Constraints<br />Statistical Process Control<br />Deming<br />Etc..<br />Improve<br />Control And<br />Stabilize<br />Measure<br /><ul><li>What is not defined cannot be controlled
What is not measured cannot be improved</li></li></ul><li>CoBiT Mission<br /><ul><li>To research, develop, publicize and promote an authoritative, up-to-date, international set of generally accepted information technology control objectives for day to day use by business managers and auditors.</li></li></ul><li>CoBiT<br /><ul><li>CoBIT is an open standard control framework for IT Governance with a focus on IT Standards and Audit
Based on over 40 International standards and is supported by a network of 150 IT Governance Chapters operating in over 100 countries
CoBiT describes standards, controls, and maturity guidelines for four domains, and 34 control objectives.
For Each Control Objective CoBiT details the enablers, Key Peformance Indicators (KPI’s) Key Goal Indicators (KGI’s), Critical Success Factors (CSF’s) and Maturity Indicators</li></li></ul><li>Key Definitions<br /><ul><li>IT Governance: A structure of relations and processes to direct and control the enterprise in order to achieve the enterprise’s goals by adding value while balancing risk versus return over IT and its processes.
Control Objective: A statement of desired result or purpose to be achieved by implementing best practices and control procedures in a particular IT activity or process.
Control: The process, policies, procedures, practices and organizational structures are designed and in place to provide reasonable assurance that business objectives will be achieved and that undesired events will be prevented or detected and corrected.</li></li></ul><li>CoBiT Governance Scope<br />Domains<br />Control Objectives<br />Processes<br />Activities<br />Activities<br />Activities<br />Effectiveness<br />Reliability<br />Efficiency<br />Processes<br />Information<br />Compliance<br />Confidentially<br />Integrity<br />Availability<br />People<br />Application<br /> Systems<br />Technology<br />IT Resources<br />Data<br />Facilities<br />
CoBiT and ITIL<br /><ul><li>CoBiT provides the controls and audit requirements
ITIL provides the detail for process steps and relationships</li></li></ul><li>CoBiT Model and ITIL Implementation<br />CoBiT Governance<br />ITIL Integrated Processes <br />Four Domains<br />34 Control Objectives<br />Detailed Processes<br />Detail<br /><ul><li>Defined Activities / Relationships / Policies