SlideShare a Scribd company logo

Cobit as IT Management Best Practice Framework

J
jg20001234

Cobit as IT Management Best Practice Framework. What are the IT management issues that COBIT can help to solve? How COBIT is one of the most comprehensive IT management best practice frameworks - from IT Strategy, Architecture, Portfolio Management to Programme and Project Management to SDLC Management to Service Support and Delivery and Measure/Evaluate. Also, mapping of COBIT to various IT Management best practices as well as a look at the future COBIT v5 from an IT Managmenet Framework perspective.

Technology
1 of 24
Download to read offline
COBIT as IT Management Best Practice Framework Adapted from Jan 2011 Management Update Seminar: “Beyond IT Project Management: Advanced IT Management Best Practices” Goh BoonNam Institute of Systems Science ISACA®, IT Governance Institute® and CobiT® are registered trademarks of ISACA, Use of these trademarks in this document does NOT imply any association, sponsorship, affiliation, or endorsement by ISACA. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 1 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
What is COBIT?  Control OBjectives for Information and related Technology  International framework from ISACA (Information Systems Control & Audit Association) and IT Governance Institute  Helps maximise value of IT to business and minimise issues such as those listed earlier  Originally, more for monitoring/audit /risk assessment of IT management processes  Increasingly recognised as comprehensive framework of IT Management best practices ■ Advises on WHAT to do ■ Some high-level of how to do  Currently Version 4.1 COBIT References: http://www.isaca.org/Knowledge-Center/COBIT/Pages/Overview.aspx http://www.isaca.org/Knowledge-Center/cobit/Pages/Downloads.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 2 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Why COBIT?  Why COBIT as IT Management Best Practice Framework? ■ Comprehensive coverage of IT Management ■ Helps avoids issues such as: • Strategic oversights • Architecture oversights • Implementation oversights • Service Delivery oversights • Governance oversights ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 3 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Avoid Issue #1 – Strategic Oversight  Past report from Director of Audit of a large organisation: ■ no formal IT strategy exists which leads to piecemeal development and absence of monitoring and evaluation (of projects). ■ hence, additional expenditure had to be incurred …. ■ systems cannot satisfy objectives Reference: http://www.gov.mu/portal/site/auditsite/menuitem.afcc311f8d4ff832b4c3bb4e52a521ca/?content_id=a4ac207a78d48010VgnVCM100000ca6a12acRCRD ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 4 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Avoid Issue #2 - Architecture oversights  A leading European bank ■ struggled with a tangle of applications that hampered its retail-banking operations ■ the lack of unifying standards created difficulties in satisfying bank-wide business requirements, such as speeding time to market for a new banking services Reference : https://www.mckinseyquarterly.com/Overhauling_banks_IT_systems_2554 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 5 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
IT Issue #3 - Implementation oversights  Passport system in a European country: ■ half a million new passports couldn't be issued on time ■ Passport Agency had brought in a new system that was (not properly designed/developed and) without sufficient testing and staff training ■ hundreds of people missed their holidays with money in the millions spent in compensation for staff overtime and umbrellas for the poor people queuing in the rain for passports Reference : http://www.zdnet.com/news/the-top-10-it-disasters-of-all-time/177729 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 6 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
IT Issue #4 - Service Delivery oversights  Bank in a European country: ■ Online banking services, that had been in operation for some time, suddenly went down for nearly a week Reference : http://www.computerweekly.com/blogs/management-matters/2010/07/has-the-private-sector-caught-the-public-sector-it-disease.html ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 7 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
IT Issue #5 - Governance oversights  The Office of Inspector General (OIG) of the U.S. House of Representatives (House) sought to improve IT activities within the House. ■ A large number of the first audit reports issued by the OIG addressed weaknesses in various IT operations of the House - including the lack of policies and procedures (e.g., systems development life cycle), poor systems design and development, the lack of planning and performance measures, poor management of the mainframe and the lack of adequate information security. ■ Management needed to take control of the situation and establish clear roles and responsibilities…and adopt an IT governance framework. Reference : http://www.isaca.org/Knowledge-Center/cobit/Pages/US-House-of-Representatives.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 8 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
• Define a Strategic IT Plan • Define the Information COBIT - Overview Architecture • Determine Technological • Monitor and Evaluate IT Direction Processes • Define the IT Processes, • Monitor and Evaluate Internal Organization and Relationships Control • Manage the IT Investment • Ensure Regulatory Compliance • Communicate Management Aims • Provide IT Governance and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Define and Manage Service • Manage Projects Levels • Manage Third-party Services • Manage Performance and Capacity Deliver & Support Acquire & Implement • Identify Automated Solutions • Ensure Continuous Service • Acquire and Maintain Application • Ensure Systems Security Software • Identify and Allocate Costs • Acquire and Maintain Technology • Educate and Train Users Infrastructure • Manage Service Desk and • Enable Operation and Use Incidents • Procure IT Resources • Manage the Configuration • Manage Changes • Manage Problems • Install and Accredit Solutions and • Manage Data Changes • Manage the Physical Environment • Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 9 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Components • Define a Strategic IT Plan • Define the Information Architecture PROCESSES • Determine Technological Direction • Define the IT Processes, Organization and Relationships • Manage the IT Investment • Communicate Management Aims and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Manage Projects • Programme Management Framework • Project Management Framework • Project Management Approach • Stakeholder Commitment Deliver & Support Acquire & Implement • Project Scope Statement • Project Phase Initiation • Integrated Project Plan • Project Resources • Project Risk Management • Project Quality Plan DOMAINS • Project Change Control • Project Planning of Assurance Methods • Project Performance Measurement, Reporting and CONTROL Monitoring • Project Closure OBJECTIVES ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 10 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Plan & Organise (PO) Plan &  Strategy / Architecture / Portfolio ■ Define a Strategic IT Plan Monitor & Evaluate Organise ■ Define the Information Architecture ■ Determine Technological Direction Deliver & Acquire & Support Implement  Programme & Project Management ■ Manage Projects  IT Organisation Management ■ Define the IT Processes, Organization and Relationships ■ Manage the IT Investment ■ Communicate Management Aims and Direction Nb: Bold headings are author’s own categorisation ■ Manage IT Human Resources & are not part of COBIT ■ Manage Quality ■ Assess and Manage IT Risks ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 11 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Plan & Organise (PO) Strategic Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Level of Work IT Programme Organisation Management Management Project Management Tactical Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within PO. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 12 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Acquire & Implement (AI) Monitor &  Requirements & Feasibility ■ Identify Automated Solutions Plan & Organise Evaluate Deliver & Acquire &  Design & Build Support Implement ■ Acquire and Maintain Application Software ■ Acquire and Maintain Technology Infrastructure  Test & Implement ■ Install and Accredit Solutions and Changes ■ Enable Operation and Use  Changes ■ Manage Changes Nb: Bold headings are author’s own categorisation & are NOT part of COBIT  Procurement Management  Procure IT Resources ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 13 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
AI Relationship with PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Requirements & Design & Test & Acquire & Feasibility Build Implement Implement Manage (System-Related) Changes (AI) Procurement Management Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 14 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Deliver & Support  Service Delivery ■ Define and Manage Service Levels Monitor & Evaluate Plan & Organise ■ Manage Third-party Services ■ Manage Performance and Capacity Deliver & Acquire & Implement ■ Ensure Continuous Service Support ■ Ensure Systems Security ■ Identify and Allocate Costs  Service Support ■ Educate and Train Users ■ Manage Service Desk and Incidents ■ Manage the Configuration Nb: Bold headings are author’s own categorisation ■ Manage Problems & are not part of COBIT ■ Manage Data ■ Manage the Physical Environment ■ Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 15 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
DS Relationship with AI & PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Acquire & Requirements & Feasibility Design & Build Test & Implement Implement Manage (System-Related) Changes (AI) Procurement Management Deliver & Service Delivery Support Service Support (DS) Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 16 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Monitor & Evaluate  Monitor & Evaluate Monitor & Evaluate ■ Monitor and Evaluate IT Processes Plan & Organise ■ Monitor and Evaluate Internal Control Deliver & Support Acquire & Implement ■ Ensure Regulatory Compliance  Direct ■ Provide IT Governance Nb: Bold headings are author’s own categorisation & are not part of COBIT ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 17 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Overview ME Relationship with PO / AI / DS Measure & Pre-Project Development Production Evaluate (ME) IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management Measure & Evaluate IT IT Systems Devt Life Cycle Mgt Organisation Acquire & / Management Requirements Design & Test & Implement & Feasibility Build Implement Direct (AI) Manage (System-Related) Changes Procurement Management Deliver & Service Delivery Support (DS) Service Support Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 18 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Other Elements of COBIT  Besides ■ Domains ■ Processes ■ Control Objectives  Some Key Elements ■ Management Guidelines • roles and responsibilities • goals and metrics ■ Maturity Model ■ Associated Toolkits (for ISACA members) • Implementation Guide • Assurance Guide ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 19 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Mapping to Other Frameworks P3O TOGAF PRINCE2 PMP CITPM CMMI SCRUM CBAP COMIT ISO20000 CISSP ITIL Monitor & Plan & Organise CGEIT Evaluate COBIT Acquire & Deliver & Support Implement Nb: Some of the other frameworks can map to more than one COBIT domain (eg. ITIL/COBIT) but for simplicity, only one domain is mapped here ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 20 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Future of COBIT as IT Management Framework – Draft COBIT v5 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 21 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Future of COBIT as IT Management Framework – Draft COBIT v5  Some Key New Features ■ Explicit recognition of COBIT as covering IT Management processes in addition to IT Governance processes ■ Identification of degree of involvement of IT and Business in the various processes ■ Enterprise Architecture (instead of Information Architecture of prior versions) ■ Consolidation into one new “Manage the IT Organisation” process those v4.1 processes that were for internal IT organisation support - eg. • Define IT Processes, Organization and Relationships • Communicate Management Aims and Direction • Manage IT Human Resources etc ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 22 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
For Further Information Please refer to: http://www.iss.nus.edu.sg/ Or email BoonNam Goh at: issgbn@nus.edu.sg ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 23 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
The End ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 24 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/

Recommended

IT Strategy & Planning
IT Strategy & PlanningIT Strategy & Planning
IT Strategy & Planningchakraj
 
An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019Gregor Polančič
 
Data governance, Information security strategy
Data governance, Information security strategyData governance, Information security strategy
Data governance, Information security strategyvasanthi4ever
 
IT Governance
IT GovernanceIT Governance
IT GovernanceCarlos Chalico
 
It governance
It governanceIt governance
It governanceMahetab Khan
 
Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...Prashanth Panduranga
 
Cobit, itil and cmmi - a tutorial
Cobit, itil and cmmi - a tutorialCobit, itil and cmmi - a tutorial
Cobit, itil and cmmi - a tutorialseveman
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledTony Price
 

Recommended

IT Strategy & Planning
IT Strategy & PlanningIT Strategy & Planning
IT Strategy & Planningchakraj
 
An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019Gregor Polančič
 
Data governance, Information security strategy
Data governance, Information security strategyData governance, Information security strategy
Data governance, Information security strategyvasanthi4ever
 
IT Governance
IT GovernanceIT Governance
IT GovernanceCarlos Chalico
 
It governance
It governanceIt governance
It governanceMahetab Khan
 
Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...Prashanth Panduranga
 
Cobit, itil and cmmi - a tutorial
Cobit, itil and cmmi - a tutorialCobit, itil and cmmi - a tutorial
Cobit, itil and cmmi - a tutorialseveman
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledTony Price
 
IT Strategy Framework
IT Strategy FrameworkIT Strategy Framework
IT Strategy FrameworkVishal Sharma
 
Review of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsReview of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsAlan McSweeney
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACAMDFazlaRabbiAbir
 
Digital Transformation And Solution Architecture
Digital Transformation And Solution ArchitectureDigital Transformation And Solution Architecture
Digital Transformation And Solution ArchitectureAlan McSweeney
 
Define an IT Strategy and Roadmap
Define an IT Strategy and RoadmapDefine an IT Strategy and Roadmap
Define an IT Strategy and RoadmapAndrew Byers
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementChristian F. Nissen
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Alan McSweeney
 
IT Enterprise architecture ppt
IT Enterprise architecture pptIT Enterprise architecture ppt
IT Enterprise architecture pptMonsif sakienah
 
ValueFlowIT: A new IT Operating Model Emerges
ValueFlowIT: A new IT Operating Model EmergesValueFlowIT: A new IT Operating Model Emerges
ValueFlowIT: A new IT Operating Model EmergesDavid Favelle
 
Implementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureImplementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureLeo Shuster
 
IT Operating Model - Fundamental
IT Operating Model - FundamentalIT Operating Model - Fundamental
IT Operating Model - FundamentalEryk Budi Pratama
 
TOGAF 9.2 - Transforming Business
TOGAF 9.2 - Transforming BusinessTOGAF 9.2 - Transforming Business
TOGAF 9.2 - Transforming BusinessReal IRM
 
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...CTE Solutions Inc.
 
Align IT and Enterprise Operating Models.pdf
Align IT and Enterprise Operating Models.pdfAlign IT and Enterprise Operating Models.pdf
Align IT and Enterprise Operating Models.pdfJoelRodriguze
 
Qap cobit2019-20181111
Qap cobit2019-20181111Qap cobit2019-20181111
Qap cobit2019-20181111Patrick Soenen
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance FrameworkSherri Booher
 
Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Dinesh O Bareja
 
IT Architecture’s Role In Solving Technical Debt.pdf
IT Architecture’s Role In Solving Technical Debt.pdfIT Architecture’s Role In Solving Technical Debt.pdf
IT Architecture’s Role In Solving Technical Debt.pdfAlan McSweeney
 
Business-IT Alignment
Business-IT AlignmentBusiness-IT Alignment
Business-IT AlignmentWalter Adamson
 
Creating A Business Focussed Information Technology Strategy
Creating A Business Focussed Information Technology StrategyCreating A Business Focussed Information Technology Strategy
Creating A Business Focussed Information Technology StrategyAlan McSweeney
 
Vettery Pitch Deck
Vettery Pitch DeckVettery Pitch Deck
Vettery Pitch DeckTech in Asia ID
 
MapMe Pitch Deck
MapMe Pitch DeckMapMe Pitch Deck
MapMe Pitch DeckTech in Asia ID
 

More Related Content

What's hot

IT Strategy Framework
IT Strategy FrameworkIT Strategy Framework
IT Strategy FrameworkVishal Sharma
 
Review of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsReview of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsAlan McSweeney
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACAMDFazlaRabbiAbir
 
Digital Transformation And Solution Architecture
Digital Transformation And Solution ArchitectureDigital Transformation And Solution Architecture
Digital Transformation And Solution ArchitectureAlan McSweeney
 
Define an IT Strategy and Roadmap
Define an IT Strategy and RoadmapDefine an IT Strategy and Roadmap
Define an IT Strategy and RoadmapAndrew Byers
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementChristian F. Nissen
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Alan McSweeney
 
IT Enterprise architecture ppt
IT Enterprise architecture pptIT Enterprise architecture ppt
IT Enterprise architecture pptMonsif sakienah
 
ValueFlowIT: A new IT Operating Model Emerges
ValueFlowIT: A new IT Operating Model EmergesValueFlowIT: A new IT Operating Model Emerges
ValueFlowIT: A new IT Operating Model EmergesDavid Favelle
 
Implementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureImplementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureLeo Shuster
 
IT Operating Model - Fundamental
IT Operating Model - FundamentalIT Operating Model - Fundamental
IT Operating Model - FundamentalEryk Budi Pratama
 
TOGAF 9.2 - Transforming Business
TOGAF 9.2 - Transforming BusinessTOGAF 9.2 - Transforming Business
TOGAF 9.2 - Transforming BusinessReal IRM
 
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...CTE Solutions Inc.
 
Align IT and Enterprise Operating Models.pdf
Align IT and Enterprise Operating Models.pdfAlign IT and Enterprise Operating Models.pdf
Align IT and Enterprise Operating Models.pdfJoelRodriguze
 
Qap cobit2019-20181111
Qap cobit2019-20181111Qap cobit2019-20181111
Qap cobit2019-20181111Patrick Soenen
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance FrameworkSherri Booher
 
Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Dinesh O Bareja
 
IT Architecture’s Role In Solving Technical Debt.pdf
IT Architecture’s Role In Solving Technical Debt.pdfIT Architecture’s Role In Solving Technical Debt.pdf
IT Architecture’s Role In Solving Technical Debt.pdfAlan McSweeney
 
Creating A Business Focussed Information Technology Strategy
Creating A Business Focussed Information Technology StrategyCreating A Business Focussed Information Technology Strategy
Creating A Business Focussed Information Technology StrategyAlan McSweeney
 

What's hot (20)

IT Strategy Framework
IT Strategy FrameworkIT Strategy Framework
IT Strategy Framework
 
Review of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsReview of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability Models
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACA
 
Digital Transformation And Solution Architecture
Digital Transformation And Solution ArchitectureDigital Transformation And Solution Architecture
Digital Transformation And Solution Architecture
 
Define an IT Strategy and Roadmap
Define an IT Strategy and RoadmapDefine an IT Strategy and Roadmap
Define an IT Strategy and Roadmap
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT management
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
 
IT Enterprise architecture ppt
IT Enterprise architecture pptIT Enterprise architecture ppt
IT Enterprise architecture ppt
 
ValueFlowIT: A new IT Operating Model Emerges
ValueFlowIT: A new IT Operating Model EmergesValueFlowIT: A new IT Operating Model Emerges
ValueFlowIT: A new IT Operating Model Emerges
 
Implementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureImplementing Effective Enterprise Architecture
Implementing Effective Enterprise Architecture
 
IT Operating Model - Fundamental
IT Operating Model - FundamentalIT Operating Model - Fundamental
IT Operating Model - Fundamental
 
TOGAF 9.2 - Transforming Business
TOGAF 9.2 - Transforming BusinessTOGAF 9.2 - Transforming Business
TOGAF 9.2 - Transforming Business
 
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
 
Align IT and Enterprise Operating Models.pdf
Align IT and Enterprise Operating Models.pdfAlign IT and Enterprise Operating Models.pdf
Align IT and Enterprise Operating Models.pdf
 
Qap cobit2019-20181111
Qap cobit2019-20181111Qap cobit2019-20181111
Qap cobit2019-20181111
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance Framework
 
Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing Basics in IT Audit and Application Control Testing
Basics in IT Audit and Application Control Testing
 
IT Architecture’s Role In Solving Technical Debt.pdf
IT Architecture’s Role In Solving Technical Debt.pdfIT Architecture’s Role In Solving Technical Debt.pdf
IT Architecture’s Role In Solving Technical Debt.pdf
 
Business-IT Alignment
Business-IT AlignmentBusiness-IT Alignment
Business-IT Alignment
 
Creating A Business Focussed Information Technology Strategy
Creating A Business Focussed Information Technology StrategyCreating A Business Focussed Information Technology Strategy
Creating A Business Focussed Information Technology Strategy
 

Viewers also liked

Viewers also liked (13)

Vettery Pitch Deck
Vettery Pitch DeckVettery Pitch Deck
Vettery Pitch Deck
 
MapMe Pitch Deck
MapMe Pitch DeckMapMe Pitch Deck
MapMe Pitch Deck
 
Tealet Pitch Deck
Tealet Pitch DeckTealet Pitch Deck
Tealet Pitch Deck
 
BrandBoards Pitch Deck
BrandBoards Pitch DeckBrandBoards Pitch Deck
BrandBoards Pitch Deck
 
Tinder Pitch Deck
Tinder Pitch DeckTinder Pitch Deck
Tinder Pitch Deck
 
Castle Pitch Deck
Castle Pitch DeckCastle Pitch Deck
Castle Pitch Deck
 
Ooomf (Crew) Pitch Deck
Ooomf (Crew) Pitch DeckOoomf (Crew) Pitch Deck
Ooomf (Crew) Pitch Deck
 
Foursquare Pitch Deck
Foursquare Pitch DeckFoursquare Pitch Deck
Foursquare Pitch Deck
 
Airbnb Pitch Deck
Airbnb Pitch DeckAirbnb Pitch Deck
Airbnb Pitch Deck
 
Podozi Pitch Deck
Podozi Pitch DeckPodozi Pitch Deck
Podozi Pitch Deck
 
The Facebook Pitch Deck
The Facebook Pitch DeckThe Facebook Pitch Deck
The Facebook Pitch Deck
 
PinMyPet Pitch Deck
PinMyPet Pitch DeckPinMyPet Pitch Deck
PinMyPet Pitch Deck
 
BuzzFeed Pitch Deck
BuzzFeed Pitch DeckBuzzFeed Pitch Deck
BuzzFeed Pitch Deck
 

Similar to Cobit as IT Management Best Practice Framework

It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013James Sutter
 
It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013Jim Sutter
 
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon NamCOBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon NamNUS-ISS
 
Frameworks For Predictability
Frameworks For PredictabilityFrameworks For Predictability
Frameworks For Predictabilitytlknecht
 
Congressional it reform-roadmap_2011
Congressional it reform-roadmap_2011Congressional it reform-roadmap_2011
Congressional it reform-roadmap_2011John Weiler
 
Modern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaModern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaEryk Budi Pratama
 
IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008ssusera19f45
 
Business Intelligence Module 3
Business Intelligence Module 3Business Intelligence Module 3
Business Intelligence Module 3Home
 
Frameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyFrameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyJohn Halliday
 
Bobby.german
Bobby.germanBobby.german
Bobby.germanNASAPMC
 
Change Management
Change ManagementChange Management
Change Managementramikanso
 
ThinkFaculty ITIL Training Course IBM
ThinkFaculty ITIL Training Course IBMThinkFaculty ITIL Training Course IBM
ThinkFaculty ITIL Training Course IBMZyma Arsalan
 
Cobi T Top Down Bottom Up
Cobi T Top Down Bottom UpCobi T Top Down Bottom Up
Cobi T Top Down Bottom UpDave Kohrell
 
A Beginner's Guide to IT Project Management
A Beginner's Guide to IT Project ManagementA Beginner's Guide to IT Project Management
A Beginner's Guide to IT Project ManagementWorkfront
 

Similar to Cobit as IT Management Best Practice Framework (20)

It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013
 
It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013
 
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon NamCOBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
 
Frameworks For Predictability
Frameworks For PredictabilityFrameworks For Predictability
Frameworks For Predictability
 
Dit yvol2iss43
Dit yvol2iss43Dit yvol2iss43
Dit yvol2iss43
 
Diskusi buku: Securing an IT Organization through Governance, Risk Management...
Diskusi buku: Securing an IT Organization through Governance, Risk Management...Diskusi buku: Securing an IT Organization through Governance, Risk Management...
Diskusi buku: Securing an IT Organization through Governance, Risk Management...
 
Congressional it reform-roadmap_2011
Congressional it reform-roadmap_2011Congressional it reform-roadmap_2011
Congressional it reform-roadmap_2011
 
Modern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaModern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL Indonesia
 
IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008
 
Business Intelligence Module 3
Business Intelligence Module 3Business Intelligence Module 3
Business Intelligence Module 3
 
Frameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyFrameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information Technology
 
Bobby.german
Bobby.germanBobby.german
Bobby.german
 
CObIT
CObITCObIT
CObIT
 
Change Management
Change ManagementChange Management
Change Management
 
ThinkFaculty ITIL Training Course IBM
ThinkFaculty ITIL Training Course IBMThinkFaculty ITIL Training Course IBM
ThinkFaculty ITIL Training Course IBM
 
PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019
PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019 PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019
PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019
 
Cobi T Top Down Bottom Up
Cobi T Top Down Bottom UpCobi T Top Down Bottom Up
Cobi T Top Down Bottom Up
 
IT Governance
IT GovernanceIT Governance
IT Governance
 
A Beginner's Guide to IT Project Management
A Beginner's Guide to IT Project ManagementA Beginner's Guide to IT Project Management
A Beginner's Guide to IT Project Management
 

Recently uploaded

Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Vector Databases 101 - An introduction to the world of Vector Databases
Vector Databases 101 - An introduction to the world of Vector DatabasesVector Databases 101 - An introduction to the world of Vector Databases
Vector Databases 101 - An introduction to the world of Vector DatabasesZilliz
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embeddingZilliz
 

Recently uploaded (20)

Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Vector Databases 101 - An introduction to the world of Vector Databases
Vector Databases 101 - An introduction to the world of Vector DatabasesVector Databases 101 - An introduction to the world of Vector Databases
Vector Databases 101 - An introduction to the world of Vector Databases
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embedding
 

Cobit as IT Management Best Practice Framework

  • 1. COBIT as IT Management Best Practice Framework Adapted from Jan 2011 Management Update Seminar: “Beyond IT Project Management: Advanced IT Management Best Practices” Goh BoonNam Institute of Systems Science ISACA®, IT Governance Institute® and CobiT® are registered trademarks of ISACA, Use of these trademarks in this document does NOT imply any association, sponsorship, affiliation, or endorsement by ISACA. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 1 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 2. What is COBIT?  Control OBjectives for Information and related Technology  International framework from ISACA (Information Systems Control & Audit Association) and IT Governance Institute  Helps maximise value of IT to business and minimise issues such as those listed earlier  Originally, more for monitoring/audit /risk assessment of IT management processes  Increasingly recognised as comprehensive framework of IT Management best practices ■ Advises on WHAT to do ■ Some high-level of how to do  Currently Version 4.1 COBIT References: http://www.isaca.org/Knowledge-Center/COBIT/Pages/Overview.aspx http://www.isaca.org/Knowledge-Center/cobit/Pages/Downloads.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 2 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 3. Why COBIT?  Why COBIT as IT Management Best Practice Framework? ■ Comprehensive coverage of IT Management ■ Helps avoids issues such as: • Strategic oversights • Architecture oversights • Implementation oversights • Service Delivery oversights • Governance oversights ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 3 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 4. Avoid Issue #1 – Strategic Oversight  Past report from Director of Audit of a large organisation: ■ no formal IT strategy exists which leads to piecemeal development and absence of monitoring and evaluation (of projects). ■ hence, additional expenditure had to be incurred …. ■ systems cannot satisfy objectives Reference: http://www.gov.mu/portal/site/auditsite/menuitem.afcc311f8d4ff832b4c3bb4e52a521ca/?content_id=a4ac207a78d48010VgnVCM100000ca6a12acRCRD ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 4 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 5. Avoid Issue #2 - Architecture oversights  A leading European bank ■ struggled with a tangle of applications that hampered its retail-banking operations ■ the lack of unifying standards created difficulties in satisfying bank-wide business requirements, such as speeding time to market for a new banking services Reference : https://www.mckinseyquarterly.com/Overhauling_banks_IT_systems_2554 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 5 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 6. IT Issue #3 - Implementation oversights  Passport system in a European country: ■ half a million new passports couldn't be issued on time ■ Passport Agency had brought in a new system that was (not properly designed/developed and) without sufficient testing and staff training ■ hundreds of people missed their holidays with money in the millions spent in compensation for staff overtime and umbrellas for the poor people queuing in the rain for passports Reference : http://www.zdnet.com/news/the-top-10-it-disasters-of-all-time/177729 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 6 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 7. IT Issue #4 - Service Delivery oversights  Bank in a European country: ■ Online banking services, that had been in operation for some time, suddenly went down for nearly a week Reference : http://www.computerweekly.com/blogs/management-matters/2010/07/has-the-private-sector-caught-the-public-sector-it-disease.html ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 7 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 8. IT Issue #5 - Governance oversights  The Office of Inspector General (OIG) of the U.S. House of Representatives (House) sought to improve IT activities within the House. ■ A large number of the first audit reports issued by the OIG addressed weaknesses in various IT operations of the House - including the lack of policies and procedures (e.g., systems development life cycle), poor systems design and development, the lack of planning and performance measures, poor management of the mainframe and the lack of adequate information security. ■ Management needed to take control of the situation and establish clear roles and responsibilities…and adopt an IT governance framework. Reference : http://www.isaca.org/Knowledge-Center/cobit/Pages/US-House-of-Representatives.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 8 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 9. • Define a Strategic IT Plan • Define the Information COBIT - Overview Architecture • Determine Technological • Monitor and Evaluate IT Direction Processes • Define the IT Processes, • Monitor and Evaluate Internal Organization and Relationships Control • Manage the IT Investment • Ensure Regulatory Compliance • Communicate Management Aims • Provide IT Governance and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Define and Manage Service • Manage Projects Levels • Manage Third-party Services • Manage Performance and Capacity Deliver & Support Acquire & Implement • Identify Automated Solutions • Ensure Continuous Service • Acquire and Maintain Application • Ensure Systems Security Software • Identify and Allocate Costs • Acquire and Maintain Technology • Educate and Train Users Infrastructure • Manage Service Desk and • Enable Operation and Use Incidents • Procure IT Resources • Manage the Configuration • Manage Changes • Manage Problems • Install and Accredit Solutions and • Manage Data Changes • Manage the Physical Environment • Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 9 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 10. COBIT Components • Define a Strategic IT Plan • Define the Information Architecture PROCESSES • Determine Technological Direction • Define the IT Processes, Organization and Relationships • Manage the IT Investment • Communicate Management Aims and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Manage Projects • Programme Management Framework • Project Management Framework • Project Management Approach • Stakeholder Commitment Deliver & Support Acquire & Implement • Project Scope Statement • Project Phase Initiation • Integrated Project Plan • Project Resources • Project Risk Management • Project Quality Plan DOMAINS • Project Change Control • Project Planning of Assurance Methods • Project Performance Measurement, Reporting and CONTROL Monitoring • Project Closure OBJECTIVES ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 10 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 11. COBIT Domains – Plan & Organise (PO) Plan &  Strategy / Architecture / Portfolio ■ Define a Strategic IT Plan Monitor & Evaluate Organise ■ Define the Information Architecture ■ Determine Technological Direction Deliver & Acquire & Support Implement  Programme & Project Management ■ Manage Projects  IT Organisation Management ■ Define the IT Processes, Organization and Relationships ■ Manage the IT Investment ■ Communicate Management Aims and Direction Nb: Bold headings are author’s own categorisation ■ Manage IT Human Resources & are not part of COBIT ■ Manage Quality ■ Assess and Manage IT Risks ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 11 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 12. Plan & Organise (PO) Strategic Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Level of Work IT Programme Organisation Management Management Project Management Tactical Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within PO. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 12 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 13. COBIT Domains – Acquire & Implement (AI) Monitor &  Requirements & Feasibility ■ Identify Automated Solutions Plan & Organise Evaluate Deliver & Acquire &  Design & Build Support Implement ■ Acquire and Maintain Application Software ■ Acquire and Maintain Technology Infrastructure  Test & Implement ■ Install and Accredit Solutions and Changes ■ Enable Operation and Use  Changes ■ Manage Changes Nb: Bold headings are author’s own categorisation & are NOT part of COBIT  Procurement Management  Procure IT Resources ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 13 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 14. AI Relationship with PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Requirements & Design & Test & Acquire & Feasibility Build Implement Implement Manage (System-Related) Changes (AI) Procurement Management Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 14 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 15. COBIT Domains – Deliver & Support  Service Delivery ■ Define and Manage Service Levels Monitor & Evaluate Plan & Organise ■ Manage Third-party Services ■ Manage Performance and Capacity Deliver & Acquire & Implement ■ Ensure Continuous Service Support ■ Ensure Systems Security ■ Identify and Allocate Costs  Service Support ■ Educate and Train Users ■ Manage Service Desk and Incidents ■ Manage the Configuration Nb: Bold headings are author’s own categorisation ■ Manage Problems & are not part of COBIT ■ Manage Data ■ Manage the Physical Environment ■ Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 15 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 16. DS Relationship with AI & PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Acquire & Requirements & Feasibility Design & Build Test & Implement Implement Manage (System-Related) Changes (AI) Procurement Management Deliver & Service Delivery Support Service Support (DS) Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 16 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 17. COBIT Domains – Monitor & Evaluate  Monitor & Evaluate Monitor & Evaluate ■ Monitor and Evaluate IT Processes Plan & Organise ■ Monitor and Evaluate Internal Control Deliver & Support Acquire & Implement ■ Ensure Regulatory Compliance  Direct ■ Provide IT Governance Nb: Bold headings are author’s own categorisation & are not part of COBIT ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 17 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 18. COBIT Overview ME Relationship with PO / AI / DS Measure & Pre-Project Development Production Evaluate (ME) IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management Measure & Evaluate IT IT Systems Devt Life Cycle Mgt Organisation Acquire & / Management Requirements Design & Test & Implement & Feasibility Build Implement Direct (AI) Manage (System-Related) Changes Procurement Management Deliver & Service Delivery Support (DS) Service Support Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 18 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 19. Other Elements of COBIT  Besides ■ Domains ■ Processes ■ Control Objectives  Some Key Elements ■ Management Guidelines • roles and responsibilities • goals and metrics ■ Maturity Model ■ Associated Toolkits (for ISACA members) • Implementation Guide • Assurance Guide ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 19 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 20. COBIT Mapping to Other Frameworks P3O TOGAF PRINCE2 PMP CITPM CMMI SCRUM CBAP COMIT ISO20000 CISSP ITIL Monitor & Plan & Organise CGEIT Evaluate COBIT Acquire & Deliver & Support Implement Nb: Some of the other frameworks can map to more than one COBIT domain (eg. ITIL/COBIT) but for simplicity, only one domain is mapped here ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 20 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 21. Future of COBIT as IT Management Framework – Draft COBIT v5 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 21 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 22. Future of COBIT as IT Management Framework – Draft COBIT v5  Some Key New Features ■ Explicit recognition of COBIT as covering IT Management processes in addition to IT Governance processes ■ Identification of degree of involvement of IT and Business in the various processes ■ Enterprise Architecture (instead of Information Architecture of prior versions) ■ Consolidation into one new “Manage the IT Organisation” process those v4.1 processes that were for internal IT organisation support - eg. • Define IT Processes, Organization and Relationships • Communicate Management Aims and Direction • Manage IT Human Resources etc ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 22 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 23. For Further Information Please refer to: http://www.iss.nus.edu.sg/ Or email BoonNam Goh at: issgbn@nus.edu.sg ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 23 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 24. The End ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 24 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/