SlideShare a Scribd company logo

COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT

Mark Constable
Mark Constable

Frameworks assist enterprises in creating repeatable processes that can help in value creation, but sometimes it is difficult to thumb through a framework publication and completely understand how to use it. In this webinar we will explore ISACAs updated COBIT 2019 Framework and walk through examples on how to leverage its value. By using typical use cases, we will explore how to create a tailored governance framework for the governance and management of enterprise information and technology using COBIT 2019. Learning Objectives: - Understand the key elements of the COBIT 2019 framework and where to find them in the publications. - Explore how to adopt a tailored enterprise governance framework for the governance and management of information and technology. - Examine typical use cases that enterprises encounter when using the framework and walk through how to use COBIT 2019 to solve these. High Level Agenda - Framework introduction - Governance and framework principles - Governance systems and components - Governance and management objectives - Performance management - Designing a tailored governance system through use cases - Closing and questions About the host: Mark is an internationally known Governance, Risk and Compliance expert specializing in information assurance, IT strategy and service management. With over 28 years of professional experience Mark has a wide array of industry experience including government, health care, finance and banking, manufacturing, and technology services. He has held roles spanning from CIO to IT consulting and is considered a thought leader in frameworks such as COBIT, NIST, ITIL and multiple ISO standards. Mark routinely speaks at US and international conferences and earned the ISACA John Kuyers award twice for Best Speaker/Conference contributor. Mark also holds the CGEIT and CRISC certifications. Watch recording here: https://apmg-international.com/events/cobit-2019-use-cases-tailoring-governance-your-enterprise-it

Education
1 of 34
Download to read offline
1 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com [Webinar] COBIT 2019 Use Cases Tailoring Governance of Your Enterprise IT Presenter: Mark Thomas, Escoute
2 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Before We Get Started… This session is being recorded. The recording and slides will be sent to you after the webinar. Your feedback will help us to improve future webinars. Please send any comments and suggestions to: mark.constable@apmg- international.com.
3 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Your Presenter Mark Thomas (CRISC, CGEIT) President, Escoute Consulting Mark is an internationally known Governance, Risk and Compliance expert specializing in information assurance, IT risk, IT strategy, service management and digital transformation. With over 28 years of professional experience, Mark has a wide array of industry experience including government, health care, finance/banking, manufacturing, and technology services. He has held roles spanning from CIO to IT consulting and is considered a thought leader in frameworks such as COBIT, NIST, ITIL and multiple ISO standards. Mark routinely speaks at US and international conferences and earned the ISACA John Kuyers award twice for Best Speaker/Conference contributor of the year. Mark also holds the CGEIT (Certified in the Governance of Enterprise IT) and CRISC (Certified in Risk and Information Systems Control) certifications.
4 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Background • Frameworks assist enterprises in creating repeatable processes that can help in value creation, but sometimes it is difficult to thumb through a framework publication and completely understand how to use it. • In this webinar we will explore ISACAs updated COBIT 2019 Framework and walk through examples on how to leverage its value. • By using typical use cases, we will explore how to create a tailored governance framework for the governance and management of enterprise information and technology using COBIT 2019.
5 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Learning Objectives • Understand the key elements of the COBIT 2019 framework and where to find them in the publications. • Explore how to adopt a tailored enterprise governance framework for the governance and management of information and technology. • Examine typical use cases that enterprises encounter when using the framework and walk through how to use COBIT 2019 to solve these.
6 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
7 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Enterprise Governance of Information and Technology In the light of digital transformation, information and technology (I&T) have become crucial in the support, sustainability and growth of enterprises. EGIT is concerned with value delivery with three main outcomes: Benefits realization Risk optimization Resource optimization
8 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
9 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com What COBIT 2019 is and is not Reference: COBIT 2019 Framework: Introduction and Methodology • COBIT is not a full description of the whole IT environment of an enterprise. • COBIT is not a framework to organize business processes. • COBIT is not a technical framework to manage all technology. • COBIT does not make or prescribe any IT-related decisions. COBIT is not: • COBIT is a framework for the governance and management of enterprise information and technology. • COBIT is aimed at the whole enterprise. • COBIT makes a clear distinction between governance and management. • COBIT defines the components to build and sustain a governance system. • COBIT defines the design factors that should be considered by the enterprise to build a best-fit governance system. • COBIT addresses governance issues by grouping relevant governance components into governance and management objectives that can be managed to the required capability levels. COBIT is:
10 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Major differences with COBIT5 Reference: COBIT 2019 Framework: Introduction and Methodology • Modified COBIT principles • Governance components • New focus areas • The addition of design factors • 40 governance and management objectives • Updated goals cascade • Updated performance management • Update COBIT business case • New and updated publications
11 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Intended Audience Internal Stakeholders Boards Executive Management Business Managers IT Managers Assurance Providers Risk Management External Stakeholders Regulators Business Partners IT Vendors Reference: COBIT 2019 Framework: Introduction and Methodology
12 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Reference: COBIT 2019 Framework: Introduction and Methodology Overview and Product Architecture
13 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT 2019 Publications “Framework Guide” Explains the overall structure and parts of the framework Refreshes key governance terms, concepts and principles Introduces the governance system, components, and governance/management objectives Describes the updated performance management (maturity/capability) “Objectives Guide” Includes 40 governance and management objectives organized into five domains (Gov/Mgt) Each objective is related to one process For each objective, provides guidance related to each of the governance components “Design Guide” Introduces focus areas and design factors Includes a design workflow that facilitates the creation of a tailored governance system Used in conjunction with the Implementation Guide Comes with a downloadable tool to assist in creating a tailored governance system “Implementation Guide” Updated from the COBIT5 Implementation Guide Used in conjunction with the Design Guide Provides a continual improvement lifecycle approach Includes seven phases with three perspectives
14 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT 2019 Key points Principles Governance components Focus areas Design factors Governance system principles: • Provide stakeholder value • Holistic approach • Dynamic governance system • Governance distinct from governance • Tailored to enterprise needs • End-to-end governance system Governance framework principles: • Based on conceptual model • Open and flexible • Aligned to major standards • Processes • Organizational structures • Information flows and items • People, skills and competencies • Principles, policies and frameworks • Culture, ethics and behavior • Services, infrastructure and applications • Small and medium enterprises • Cybersecurity • Risk • Cloud computing • Privacy • DevOps • Enterprise strategy • Enterprise goals • Risk profile • I&T related issues • Threat landscape • Compliance requirements • Role of IT • Sourcing model for IT • IT implementation methods • Technology adoption strategy • Enterprise size Reference: COBIT 2019 Framework: Introduction and Methodology We also have the addition of governance and management objectives – covered on the next slides.
15 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Governance and Management Objectives Reference: COBIT 2019 Framework: Introduction and Methodology Governance and management objectives are organized into five domains. One governance domain and four management domains.
16 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Governance and Management Objectives Reference: COBIT 2019 Framework: Introduction and Methodology Governance and management objectives……..
17 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Goals Cascade Reference: COBIT 2019 Framework: Introduction and Methodology The goals cascade supports prioritization of management objectives based on prioritization of enterprise goals. Governance and Management Objectives Alignment Goals Enterprise Goals Stakeholder Drivers and Needs • The goals cascade starts with stakeholder needs and drivers. These cascade to Enterprise goals. • Enterprise goals cascade into alignment goals, and further supports translation of enterprise goals into priorities for alignment goals. • Finally, alignment goals cascade to governance and management objectives.
18 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
19 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Tailored governance system journey
20 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Design and Implementation The Design guide has the following workflow steps.
21 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Design and Implementation The implementation guide has the following workflow phases and perspectives. Reference: COBIT 2019 Framework: Implementation Guide
22 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Intersecting design and implementation
23 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Design Guide Tool Canvas Download this tool at www.isaca.org
24 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
25 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Common Questions “My enterprise uses multiple frameworks, how does COBIT fit?” “I am a launching a new IT Governance group at our company, where does COBIT say I should start?” “Our company uses previous versions of COBIT how do we move to COBIT 2019?” “With the increase in security compromises we are seeing in this industry, I’d like to leverage COBIT to help me. How do I do this?”
26 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Use Cases • The following use cases are a result of questions from industry asking how to use the new COBIT. • These use cases are not explicitly found in the COBIT 2019 guidance, and are based on the presenter’s expert opinion. • There are 8 use cases derived from four recurring questions: ‒ Not all use cases are addressed in this webinar ‒ They are available as a download that accompanies this webinar Use cases describe how an actor interacts with a solution to accomplish one or more of that actor’s goals, or respond to an event.
27 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com 1. My enterprise uses multiple frameworks, how does COBIT fit? 2. I am a launching a new IT Governance group at our company, where does COBIT say I should start? 3. Our company uses previous versions of COBIT how do we move to COBIT 2019? 3. With the increase in security compromises we are seeing in this industry, I’d like to leverage COBIT to help me. How do I do this? Use Cases Use COBIT as a “Framework to Manage Frameworks” UC 1.1 Use COBIT to identify an organizational structure for EGIT UC 2.1 Understand the key differences between COBIT5 and COBIT 2019 UC 3.1 Select the appropriate COBIT measures to ensure proper information protection UC 4.1 Use COBIT to determine which industry standards are applicable to a particular process UC 1.2 Use COBIT to create a tailored governance system UC 2.2 Update an existing capability assessment to the COBIT 2019 performance management guidance UC 3.2 Use COBIT to determine appropriate information protection policies UC 4.2
28 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Use Case 2.2: Use COBIT to create a tailored governance system Pre conditions • No (or weak) overarching framework for the governance and management of I&T • Management supports the integration of a single integrated framework COBIT 2019 ReferencesSuccess Scenario Post conditions • End to end governance system • Provides stakeholder value • Holistic approach • Dynamic governance system • Governance distinct from management • Tailored to meet enterprise needs Understand principles • Determine your governance system principles • Determine your governance framework principles 1 •COBIT 2019 Framework guide, Ch. 3 Conduct a goals cascade • Understand stakeholder drivers and needs • Map enterprise goals, alignment goals and governance and management objectives 2 •COBIT 2019 Framework guide, Ch. 4 •COBIT 2019 Design guide, Mapping Appendix •COBIT 2019 Objectives guide, Ch. 4 Determine design factors and focus areas • Select design factors and focus areas • Understand your relationship with each design factor 3 •COBIT 2019 Framework guide, Ch. 4 •COBIT 2019 Design guide, Ch 2, 3 Analyze design factors and focus areas • Conduct a tool analysis using the design tool kit to select governance and management objectives • Determine target capability levels 4 •COBIT 2019 Toolkit (Excel tool) •COBIT 2019 Design guide, Ch. 4 •COBIT 2019 Framework guide, Ch. 6 Document governance components • Understand the governance components for each governance or management objective selected • Modify the tailored governance system as required 5 •COBIT 2019 Framework guide, Ch. 4 •COBIT 2019 Objectives guide, Ch. 4 •Refer to the related guidance section for each governance or management objective
29 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
30 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Download the COBIT 2019 publications (and design guide tool) Use more than one framework. COBIT was designed using multiple standards and frameworks Use COBIT 2019 as a framework to govern and manage frameworks and the governance system Get certified training for your team by accredited training providers. If you don’t have influence over creating an enterprise governance system, focus on your area! Consider an iterative approach– you will never be “done” with implementing governance over I&T.
31 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
32 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Closing • Understand the key elements of the COBIT 2019 framework and where to find them in the publications. • Explore how to adopt a tailored enterprise governance framework for the governance and management of information and technology. • Examine typical use cases that enterprises encounter when using the framework and walk through how to use COBIT 2019 to solve these.
33 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Get in touch…. TRAINING & CERTIFICATION https://apmg-international.com/product/cobit-2019 www.isaca.org @ISACANews www.escoute.com @ESCOUTE1 Mark Thomas: https://www.linkedin.com/in/markthomas8/ www.apmg-international.com @APMG_Inter
34 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com If you have any questions or feedback, please do not hesitate to contact me: Mark.Constable@apmg-international.com / +44 (0)1494 836131

Recommended

An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019
Gregor Polančič
 
COBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdfCOBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdf
MartinPatrici
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdf
mohammed539963
 
COBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an IntroductionCOBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an Introduction
aqel aqel
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT management
Christian F. Nissen
 
Cobit 2019 foundation study material
Cobit 2019 foundation study materialCobit 2019 foundation study material
Cobit 2019 foundation study material
Anees Shaikh
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACA
MDFazlaRabbiAbir
 
It governance & cobit 5
It governance & cobit 5It governance & cobit 5
It governance & cobit 5
Laddawan Rattanaruang
 

Recommended

An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019
Gregor Polančič
 
COBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdfCOBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdf
MartinPatrici
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdf
mohammed539963
 
COBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an IntroductionCOBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an Introduction
aqel aqel
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT management
Christian F. Nissen
 
Cobit 2019 foundation study material
Cobit 2019 foundation study materialCobit 2019 foundation study material
Cobit 2019 foundation study material
Anees Shaikh
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACA
MDFazlaRabbiAbir
 
It governance & cobit 5
It governance & cobit 5It governance & cobit 5
It governance & cobit 5
Laddawan Rattanaruang
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
Sayyed Zakir Ali Rizwe
 
Introduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingIntroduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and Training
Mark Edmead
 
COBIT® Presentation Package.ppt
COBIT® Presentation Package.pptCOBIT® Presentation Package.ppt
COBIT® Presentation Package.ppt
Emmacuet
 
Itil,cobit and ıso27001
Itil,cobit and ıso27001Itil,cobit and ıso27001
Itil,cobit and ıso27001
Burcu Pelin TELLİ
 
Qap cobit2019-20181111
Qap cobit2019-20181111Qap cobit2019-20181111
Qap cobit2019-20181111
Patrick Soenen
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
PECB
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance Framework
Sherri Booher
 
It governance
It governanceIt governance
It governance
Lusungu Mkandawire CISA,CISM,CGEIT,CPF,PRINCE2
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Alan McSweeney
 
COBIT 2019 Executive Summary_v1.1 .pdf
COBIT 2019 Executive Summary_v1.1 .pdfCOBIT 2019 Executive Summary_v1.1 .pdf
COBIT 2019 Executive Summary_v1.1 .pdf
DiegoIvanAlvaradoVel
 
ITIL vs. COBIT
ITIL vs. COBITITIL vs. COBIT
ITIL vs. COBIT
Mohsen Yousefi
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelled
Tony Price
 
COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)
COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)
COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)
ISACA Riyadh
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdf
itSMF Belgium
 
Cobit 5 - An Overview
Cobit 5 - An OverviewCobit 5 - An Overview
Cobit 5 - An Overview
Anurag Purohit
 
IT Governance
IT GovernanceIT Governance
IT Governance
Carlos Chalico
 
COBIT5 Introduction
COBIT5 IntroductionCOBIT5 Introduction
COBIT5 Introduction
Mohammad Reda Katby
 
Chap2 2007 Cisa Review Course
Chap2 2007 Cisa Review CourseChap2 2007 Cisa Review Course
Chap2 2007 Cisa Review Course
Desmond Devendran
 
Design Architecture Review Board (ARB) to Enable Digital Strategy
Design Architecture Review Board (ARB) to Enable Digital Strategy Design Architecture Review Board (ARB) to Enable Digital Strategy
Design Architecture Review Board (ARB) to Enable Digital Strategy
Mohan K.
 
Introduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementIntroduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT management
Christian F. Nissen
 
COBIT 5.0 vs COBIT 2019
COBIT 5.0 vs COBIT 2019COBIT 5.0 vs COBIT 2019
COBIT 5.0 vs COBIT 2019
Sreechith Radhakrishnan
 
COBIT 5 FAQ
COBIT 5 FAQCOBIT 5 FAQ
COBIT 5 FAQ
Mas'ud Adhi Saputra
 

More Related Content

What's hot

COBIT® Presentation Package.ppt
COBIT® Presentation Package.pptCOBIT® Presentation Package.ppt
COBIT® Presentation Package.ppt
Emmacuet
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelled
Tony Price
 
Chap2 2007 Cisa Review Course
Chap2 2007 Cisa Review CourseChap2 2007 Cisa Review Course
Chap2 2007 Cisa Review Course
Desmond Devendran
 

What's hot (20)

IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
 
Introduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingIntroduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and Training
 
COBIT® Presentation Package.ppt
COBIT® Presentation Package.pptCOBIT® Presentation Package.ppt
COBIT® Presentation Package.ppt
 
Itil,cobit and ıso27001
Itil,cobit and ıso27001Itil,cobit and ıso27001
Itil,cobit and ıso27001
 
Qap cobit2019-20181111
Qap cobit2019-20181111Qap cobit2019-20181111
Qap cobit2019-20181111
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance Framework
 
It governance
It governanceIt governance
It governance
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
 
COBIT 2019 Executive Summary_v1.1 .pdf
COBIT 2019 Executive Summary_v1.1 .pdfCOBIT 2019 Executive Summary_v1.1 .pdf
COBIT 2019 Executive Summary_v1.1 .pdf
 
ITIL vs. COBIT
ITIL vs. COBITITIL vs. COBIT
ITIL vs. COBIT
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelled
 
COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)
COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)
COBIT 5.0 Vs ISO / IEC 38500 (IT Governance)
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdf
 
Cobit 5 - An Overview
Cobit 5 - An OverviewCobit 5 - An Overview
Cobit 5 - An Overview
 
IT Governance
IT GovernanceIT Governance
IT Governance
 
COBIT5 Introduction
COBIT5 IntroductionCOBIT5 Introduction
COBIT5 Introduction
 
Chap2 2007 Cisa Review Course
Chap2 2007 Cisa Review CourseChap2 2007 Cisa Review Course
Chap2 2007 Cisa Review Course
 
Design Architecture Review Board (ARB) to Enable Digital Strategy
Design Architecture Review Board (ARB) to Enable Digital Strategy Design Architecture Review Board (ARB) to Enable Digital Strategy
Design Architecture Review Board (ARB) to Enable Digital Strategy
 
Introduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementIntroduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT management
 

Similar to COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT

COBIT 5 as a standard in the Jordanian banking system
COBIT 5 as a standard in the Jordanian banking systemCOBIT 5 as a standard in the Jordanian banking system
COBIT 5 as a standard in the Jordanian banking system
Mark Constable
 
Implementation of a Decision System for a Suitable IT Governance Framework
Implementation of a Decision System for a Suitable IT Governance FrameworkImplementation of a Decision System for a Suitable IT Governance Framework
Implementation of a Decision System for a Suitable IT Governance Framework
IJCSIS Research Publications
 

Similar to COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT (20)

COBIT 5.0 vs COBIT 2019
COBIT 5.0 vs COBIT 2019COBIT 5.0 vs COBIT 2019
COBIT 5.0 vs COBIT 2019
 
COBIT 5 FAQ
COBIT 5 FAQCOBIT 5 FAQ
COBIT 5 FAQ
 
COBIT 5 as a standard in the Jordanian banking system
COBIT 5 as a standard in the Jordanian banking systemCOBIT 5 as a standard in the Jordanian banking system
COBIT 5 as a standard in the Jordanian banking system
 
COBIT 2019 - DIGITAL TRUST FRAMEWORK
COBIT 2019 - DIGITAL TRUST FRAMEWORKCOBIT 2019 - DIGITAL TRUST FRAMEWORK
COBIT 2019 - DIGITAL TRUST FRAMEWORK
 
cobit 2019 -current-user - ISACA Publication
cobit 2019 -current-user - ISACA Publicationcobit 2019 -current-user - ISACA Publication
cobit 2019 -current-user - ISACA Publication
 
Implementation of a Decision System for a Suitable IT Governance Framework
Implementation of a Decision System for a Suitable IT Governance FrameworkImplementation of a Decision System for a Suitable IT Governance Framework
Implementation of a Decision System for a Suitable IT Governance Framework
 
Cobit5 introduction
Cobit5 introductionCobit5 introduction
Cobit5 introduction
 
COBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptxCOBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptx
 
Lecture 06 - CoBit - Control Objectives for Information and Related Technolog...
Lecture 06 - CoBit - Control Objectives for Information and Related Technolog...Lecture 06 - CoBit - Control Objectives for Information and Related Technolog...
Lecture 06 - CoBit - Control Objectives for Information and Related Technolog...
 
COBIT5-IntroductionS
COBIT5-IntroductionSCOBIT5-IntroductionS
COBIT5-IntroductionS
 
CobiT Foundation Free Training
CobiT Foundation Free TrainingCobiT Foundation Free Training
CobiT Foundation Free Training
 
Automotive IT Strategy 2022
Automotive IT Strategy 2022Automotive IT Strategy 2022
Automotive IT Strategy 2022
 
Approaches to business architecture
Approaches to business architectureApproaches to business architecture
Approaches to business architecture
 
Approaches to business architecture
Approaches to business architectureApproaches to business architecture
Approaches to business architecture
 
Cobit 5 introduction plgr
Cobit 5 introduction plgrCobit 5 introduction plgr
Cobit 5 introduction plgr
 
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
 
COBIT
COBITCOBIT
COBIT
 
02-cobit5-introduction.ppt
02-cobit5-introduction.ppt02-cobit5-introduction.ppt
02-cobit5-introduction.ppt
 
Cobit5 introduction
Cobit5 introductionCobit5 introduction
Cobit5 introduction
 
how-to-implement-ecm.ppt
how-to-implement-ecm.ppthow-to-implement-ecm.ppt
how-to-implement-ecm.ppt
 

More from Mark Constable

Is project management dead in the digital age
Is project management dead in the digital ageIs project management dead in the digital age
Is project management dead in the digital age
Mark Constable
 
Advanced Project Data Analytics for Improved Project Delivery
Advanced Project Data Analytics for Improved Project DeliveryAdvanced Project Data Analytics for Improved Project Delivery
Advanced Project Data Analytics for Improved Project Delivery
Mark Constable
 
Agile Demystified - the sequel!
Agile Demystified - the sequel! Agile Demystified - the sequel!
Agile Demystified - the sequel!
Mark Constable
 
No-Nonsense Service Management with FitSM
No-Nonsense Service Management with FitSMNo-Nonsense Service Management with FitSM
No-Nonsense Service Management with FitSM
Mark Constable
 
Demystifying Agile!
Demystifying Agile!Demystifying Agile!
Demystifying Agile!
Mark Constable
 
Evolving from Service Management to Driving and Ensuring Value
Evolving from Service Management to Driving and Ensuring ValueEvolving from Service Management to Driving and Ensuring Value
Evolving from Service Management to Driving and Ensuring Value
Mark Constable
 
Managing Change Overload!
Managing Change Overload!Managing Change Overload!
Managing Change Overload!
Mark Constable
 
Big Data Framework - How to get started!
Big Data Framework - How to get started!Big Data Framework - How to get started!
Big Data Framework - How to get started!
Mark Constable
 
What makes Praxis the complete PPM solution?
What makes Praxis the complete PPM solution? What makes Praxis the complete PPM solution?
What makes Praxis the complete PPM solution?
Mark Constable
 
Developing successful, bankable pp ps through a common language
Developing successful, bankable pp ps through a common languageDeveloping successful, bankable pp ps through a common language
Developing successful, bankable pp ps through a common language
Mark Constable
 
Quick guide to the basics of Change Management
Quick guide to the basics of Change ManagementQuick guide to the basics of Change Management
Quick guide to the basics of Change Management
Mark Constable
 
Why Agile is changing how we manage change?
Why Agile is changing how we manage change?Why Agile is changing how we manage change?
Why Agile is changing how we manage change?
Mark Constable
 
8 reasons to adopt AgilePM
8 reasons to adopt AgilePM8 reasons to adopt AgilePM
8 reasons to adopt AgilePM
Mark Constable
 

More from Mark Constable (13)

Is project management dead in the digital age
Is project management dead in the digital ageIs project management dead in the digital age
Is project management dead in the digital age
 
Advanced Project Data Analytics for Improved Project Delivery
Advanced Project Data Analytics for Improved Project DeliveryAdvanced Project Data Analytics for Improved Project Delivery
Advanced Project Data Analytics for Improved Project Delivery
 
Agile Demystified - the sequel!
Agile Demystified - the sequel! Agile Demystified - the sequel!
Agile Demystified - the sequel!
 
No-Nonsense Service Management with FitSM
No-Nonsense Service Management with FitSMNo-Nonsense Service Management with FitSM
No-Nonsense Service Management with FitSM
 
Demystifying Agile!
Demystifying Agile!Demystifying Agile!
Demystifying Agile!
 
Evolving from Service Management to Driving and Ensuring Value
Evolving from Service Management to Driving and Ensuring ValueEvolving from Service Management to Driving and Ensuring Value
Evolving from Service Management to Driving and Ensuring Value
 
Managing Change Overload!
Managing Change Overload!Managing Change Overload!
Managing Change Overload!
 
Big Data Framework - How to get started!
Big Data Framework - How to get started!Big Data Framework - How to get started!
Big Data Framework - How to get started!
 
What makes Praxis the complete PPM solution?
What makes Praxis the complete PPM solution? What makes Praxis the complete PPM solution?
What makes Praxis the complete PPM solution?
 
Developing successful, bankable pp ps through a common language
Developing successful, bankable pp ps through a common languageDeveloping successful, bankable pp ps through a common language
Developing successful, bankable pp ps through a common language
 
Quick guide to the basics of Change Management
Quick guide to the basics of Change ManagementQuick guide to the basics of Change Management
Quick guide to the basics of Change Management
 
Why Agile is changing how we manage change?
Why Agile is changing how we manage change?Why Agile is changing how we manage change?
Why Agile is changing how we manage change?
 
8 reasons to adopt AgilePM
8 reasons to adopt AgilePM8 reasons to adopt AgilePM
8 reasons to adopt AgilePM
 

Recently uploaded

An Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdfAn Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdf
SanaAli374401
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
heathfieldcps1
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
negromaestrong
 

Recently uploaded (20)

Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
 
Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
psychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxpsychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docx
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
An Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdfAn Overview of Mutual Funds Bcom Project.pdf
An Overview of Mutual Funds Bcom Project.pdf
 
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
The basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptxThe basics of sentences session 2pptx copy.pptx
The basics of sentences session 2pptx copy.pptx
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SD
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
 
Unit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptxUnit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptx
 
Advance Mobile Application Development class 07
Advance Mobile Application Development class 07Advance Mobile Application Development class 07
Advance Mobile Application Development class 07
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 

COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT

  • 1. 1 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com [Webinar] COBIT 2019 Use Cases Tailoring Governance of Your Enterprise IT Presenter: Mark Thomas, Escoute
  • 2. 2 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Before We Get Started… This session is being recorded. The recording and slides will be sent to you after the webinar. Your feedback will help us to improve future webinars. Please send any comments and suggestions to: mark.constable@apmg- international.com.
  • 3. 3 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Your Presenter Mark Thomas (CRISC, CGEIT) President, Escoute Consulting Mark is an internationally known Governance, Risk and Compliance expert specializing in information assurance, IT risk, IT strategy, service management and digital transformation. With over 28 years of professional experience, Mark has a wide array of industry experience including government, health care, finance/banking, manufacturing, and technology services. He has held roles spanning from CIO to IT consulting and is considered a thought leader in frameworks such as COBIT, NIST, ITIL and multiple ISO standards. Mark routinely speaks at US and international conferences and earned the ISACA John Kuyers award twice for Best Speaker/Conference contributor of the year. Mark also holds the CGEIT (Certified in the Governance of Enterprise IT) and CRISC (Certified in Risk and Information Systems Control) certifications.
  • 4. 4 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Background • Frameworks assist enterprises in creating repeatable processes that can help in value creation, but sometimes it is difficult to thumb through a framework publication and completely understand how to use it. • In this webinar we will explore ISACAs updated COBIT 2019 Framework and walk through examples on how to leverage its value. • By using typical use cases, we will explore how to create a tailored governance framework for the governance and management of enterprise information and technology using COBIT 2019.
  • 5. 5 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Learning Objectives • Understand the key elements of the COBIT 2019 framework and where to find them in the publications. • Explore how to adopt a tailored enterprise governance framework for the governance and management of information and technology. • Examine typical use cases that enterprises encounter when using the framework and walk through how to use COBIT 2019 to solve these.
  • 6. 6 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
  • 7. 7 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Enterprise Governance of Information and Technology In the light of digital transformation, information and technology (I&T) have become crucial in the support, sustainability and growth of enterprises. EGIT is concerned with value delivery with three main outcomes: Benefits realization Risk optimization Resource optimization
  • 8. 8 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
  • 9. 9 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com What COBIT 2019 is and is not Reference: COBIT 2019 Framework: Introduction and Methodology • COBIT is not a full description of the whole IT environment of an enterprise. • COBIT is not a framework to organize business processes. • COBIT is not a technical framework to manage all technology. • COBIT does not make or prescribe any IT-related decisions. COBIT is not: • COBIT is a framework for the governance and management of enterprise information and technology. • COBIT is aimed at the whole enterprise. • COBIT makes a clear distinction between governance and management. • COBIT defines the components to build and sustain a governance system. • COBIT defines the design factors that should be considered by the enterprise to build a best-fit governance system. • COBIT addresses governance issues by grouping relevant governance components into governance and management objectives that can be managed to the required capability levels. COBIT is:
  • 10. 10 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Major differences with COBIT5 Reference: COBIT 2019 Framework: Introduction and Methodology • Modified COBIT principles • Governance components • New focus areas • The addition of design factors • 40 governance and management objectives • Updated goals cascade • Updated performance management • Update COBIT business case • New and updated publications
  • 11. 11 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Intended Audience Internal Stakeholders Boards Executive Management Business Managers IT Managers Assurance Providers Risk Management External Stakeholders Regulators Business Partners IT Vendors Reference: COBIT 2019 Framework: Introduction and Methodology
  • 12. 12 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Reference: COBIT 2019 Framework: Introduction and Methodology Overview and Product Architecture
  • 13. 13 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT 2019 Publications “Framework Guide” Explains the overall structure and parts of the framework Refreshes key governance terms, concepts and principles Introduces the governance system, components, and governance/management objectives Describes the updated performance management (maturity/capability) “Objectives Guide” Includes 40 governance and management objectives organized into five domains (Gov/Mgt) Each objective is related to one process For each objective, provides guidance related to each of the governance components “Design Guide” Introduces focus areas and design factors Includes a design workflow that facilitates the creation of a tailored governance system Used in conjunction with the Implementation Guide Comes with a downloadable tool to assist in creating a tailored governance system “Implementation Guide” Updated from the COBIT5 Implementation Guide Used in conjunction with the Design Guide Provides a continual improvement lifecycle approach Includes seven phases with three perspectives
  • 14. 14 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT 2019 Key points Principles Governance components Focus areas Design factors Governance system principles: • Provide stakeholder value • Holistic approach • Dynamic governance system • Governance distinct from governance • Tailored to enterprise needs • End-to-end governance system Governance framework principles: • Based on conceptual model • Open and flexible • Aligned to major standards • Processes • Organizational structures • Information flows and items • People, skills and competencies • Principles, policies and frameworks • Culture, ethics and behavior • Services, infrastructure and applications • Small and medium enterprises • Cybersecurity • Risk • Cloud computing • Privacy • DevOps • Enterprise strategy • Enterprise goals • Risk profile • I&T related issues • Threat landscape • Compliance requirements • Role of IT • Sourcing model for IT • IT implementation methods • Technology adoption strategy • Enterprise size Reference: COBIT 2019 Framework: Introduction and Methodology We also have the addition of governance and management objectives – covered on the next slides.
  • 15. 15 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Governance and Management Objectives Reference: COBIT 2019 Framework: Introduction and Methodology Governance and management objectives are organized into five domains. One governance domain and four management domains.
  • 16. 16 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Governance and Management Objectives Reference: COBIT 2019 Framework: Introduction and Methodology Governance and management objectives……..
  • 17. 17 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Goals Cascade Reference: COBIT 2019 Framework: Introduction and Methodology The goals cascade supports prioritization of management objectives based on prioritization of enterprise goals. Governance and Management Objectives Alignment Goals Enterprise Goals Stakeholder Drivers and Needs • The goals cascade starts with stakeholder needs and drivers. These cascade to Enterprise goals. • Enterprise goals cascade into alignment goals, and further supports translation of enterprise goals into priorities for alignment goals. • Finally, alignment goals cascade to governance and management objectives.
  • 18. 18 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
  • 19. 19 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Tailored governance system journey
  • 20. 20 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Design and Implementation The Design guide has the following workflow steps.
  • 21. 21 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Design and Implementation The implementation guide has the following workflow phases and perspectives. Reference: COBIT 2019 Framework: Implementation Guide
  • 22. 22 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Intersecting design and implementation
  • 23. 23 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Design Guide Tool Canvas Download this tool at www.isaca.org
  • 24. 24 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
  • 25. 25 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Common Questions “My enterprise uses multiple frameworks, how does COBIT fit?” “I am a launching a new IT Governance group at our company, where does COBIT say I should start?” “Our company uses previous versions of COBIT how do we move to COBIT 2019?” “With the increase in security compromises we are seeing in this industry, I’d like to leverage COBIT to help me. How do I do this?”
  • 26. 26 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com COBIT Use Cases • The following use cases are a result of questions from industry asking how to use the new COBIT. • These use cases are not explicitly found in the COBIT 2019 guidance, and are based on the presenter’s expert opinion. • There are 8 use cases derived from four recurring questions: ‒ Not all use cases are addressed in this webinar ‒ They are available as a download that accompanies this webinar Use cases describe how an actor interacts with a solution to accomplish one or more of that actor’s goals, or respond to an event.
  • 27. 27 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com 1. My enterprise uses multiple frameworks, how does COBIT fit? 2. I am a launching a new IT Governance group at our company, where does COBIT say I should start? 3. Our company uses previous versions of COBIT how do we move to COBIT 2019? 3. With the increase in security compromises we are seeing in this industry, I’d like to leverage COBIT to help me. How do I do this? Use Cases Use COBIT as a “Framework to Manage Frameworks” UC 1.1 Use COBIT to identify an organizational structure for EGIT UC 2.1 Understand the key differences between COBIT5 and COBIT 2019 UC 3.1 Select the appropriate COBIT measures to ensure proper information protection UC 4.1 Use COBIT to determine which industry standards are applicable to a particular process UC 1.2 Use COBIT to create a tailored governance system UC 2.2 Update an existing capability assessment to the COBIT 2019 performance management guidance UC 3.2 Use COBIT to determine appropriate information protection policies UC 4.2
  • 28. 28 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Use Case 2.2: Use COBIT to create a tailored governance system Pre conditions • No (or weak) overarching framework for the governance and management of I&T • Management supports the integration of a single integrated framework COBIT 2019 ReferencesSuccess Scenario Post conditions • End to end governance system • Provides stakeholder value • Holistic approach • Dynamic governance system • Governance distinct from management • Tailored to meet enterprise needs Understand principles • Determine your governance system principles • Determine your governance framework principles 1 •COBIT 2019 Framework guide, Ch. 3 Conduct a goals cascade • Understand stakeholder drivers and needs • Map enterprise goals, alignment goals and governance and management objectives 2 •COBIT 2019 Framework guide, Ch. 4 •COBIT 2019 Design guide, Mapping Appendix •COBIT 2019 Objectives guide, Ch. 4 Determine design factors and focus areas • Select design factors and focus areas • Understand your relationship with each design factor 3 •COBIT 2019 Framework guide, Ch. 4 •COBIT 2019 Design guide, Ch 2, 3 Analyze design factors and focus areas • Conduct a tool analysis using the design tool kit to select governance and management objectives • Determine target capability levels 4 •COBIT 2019 Toolkit (Excel tool) •COBIT 2019 Design guide, Ch. 4 •COBIT 2019 Framework guide, Ch. 6 Document governance components • Understand the governance components for each governance or management objective selected • Modify the tailored governance system as required 5 •COBIT 2019 Framework guide, Ch. 4 •COBIT 2019 Objectives guide, Ch. 4 •Refer to the related guidance section for each governance or management objective
  • 29. 29 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
  • 30. 30 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Download the COBIT 2019 publications (and design guide tool) Use more than one framework. COBIT was designed using multiple standards and frameworks Use COBIT 2019 as a framework to govern and manage frameworks and the governance system Get certified training for your team by accredited training providers. If you don’t have influence over creating an enterprise governance system, focus on your area! Consider an iterative approach– you will never be “done” with implementing governance over I&T.
  • 31. 31 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Agenda Enterprise Governance of Information and Technology COBIT 2019 Overview Creating a Tailored Governance System COBIT Use Cases Tips to Adoption Closing and Questions
  • 32. 32 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Closing • Understand the key elements of the COBIT 2019 framework and where to find them in the publications. • Explore how to adopt a tailored enterprise governance framework for the governance and management of information and technology. • Examine typical use cases that enterprises encounter when using the framework and walk through how to use COBIT 2019 to solve these.
  • 33. 33 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com Get in touch…. TRAINING & CERTIFICATION https://apmg-international.com/product/cobit-2019 www.isaca.org @ISACANews www.escoute.com @ESCOUTE1 Mark Thomas: https://www.linkedin.com/in/markthomas8/ www.apmg-international.com @APMG_Inter
  • 34. 34 © The APMG Group Ltd. 2018. All rights reserved. apmg-international.com If you have any questions or feedback, please do not hesitate to contact me: Mark.Constable@apmg-international.com / +44 (0)1494 836131