Tatakelola Teknologi Informasi

3,052 views

Published on

Slide ini disajikan saat kajian teta kelola dan manajemen resiko TI di surabaya.

Published in: Education

Tatakelola Teknologi Informasi

  1. 1. http://cahyod.dosen.narotama.ac.id/Indri Sudanawati Rozas , S.Kom, M.KomCahyo Darujati, ST., MT. Kajian Tata Kelola Layanan TI –Ditjen DIKTI | Hotel Majapahit Surabaya | Selasa, 20 Nopember 2012
  2. 2.  Kajian Tata Kelola Layanan TI  Kajian Tata Kelola TI
  3. 3. Managing IT Resources to Deliver IT Goals
  4. 4. Pembahasan Definisi IT Governance Mengapa diperlukan IT Governance Komponen IT Governance Why IT Governance implementation is so difficult? IT Governance Frameworks COBIT  Mengapa COBIT?  Generasi COBIT  Gambaran COBIT  COBIT framework : process oriented  Implementasi COBIT : comprehensive approach
  5. 5. Definisi (1)
  6. 6. Definisi (2)
  7. 7. Definisi (3)• Specifying the decision rights and accountability framework to encourage desirable behavior in using IT (Peter Weill & Jeanne W Ross – MIT, 2004).• The system by which the current and future use of ICT is directed and controlled. It involves evaluating and directing the plans for the use of ICT to support the organization and monitoring this use to achieve plans. It includes the strategy and policies for using ICT within an organization (Australian Standard on Corporate Governance of ICT, 2005).
  8. 8. Mengapa IT Governance diperlukan?
  9. 9. Mengapa IT Governance diperlukan?
  10. 10. Managementof the GovernanceProcess
  11. 11. Governance and Management Processes
  12. 12. Causes of outsourcing failuressource Outsourcing Center 2004
  13. 13. IT Governance Frameworks • ITIL • BS 15000 • COSO • SysTrust • ISO 17799 • PRINCE2 • ISO/IEC 17799:2000 • SOX • ISO/IEC TR 13335 • Six Sigma • ISO/IEC 15408 • CMM/CMMI • TickIT • SASs • NIST 800-14 • COBIT • ASL • TOGAF • SAC • FISMA • SAS70
  14. 14. Mengapa dibutuhkan framework?  Sisi Konseptual.  Agar pemahaman menyeluruh.  Menentukan arah.  Menjamin keteraturan.
  15. 15. IT Governance Frameworks IT Governance: Reviewing 17 IT Governance Tools and Analysing, Michael Holm Larsen, Proceedings of the 39th Hawaii International Conference on System Sciences - 2006
  16. 16. IT Governance Frameworks
  17. 17. IT Governance Frameworks
  18. 18. COBIT
  19. 19. Mengapa COBIT?
  20. 20. Siapa yang menyusun COBIT?
  21. 21. Inter-relationship among COBIT Components(Business Focused)
  22. 22. Governance Lifecycle
  23. 23. COBIT 4.1 & IT Governance IT GOVERNANCE Planning & Organisation Acquire & Implement Deliver & Support Monitor & Evaluate  PO1 Define a Strategic IT Plan  AI1 Identify Automated  DS1 Define and Manage  ME1 Monitor and Evaluate  PO2 Define the Information Solutions Service Levels IT Performance Architecture  AI2 Acquire and Maintain  DS2 Manage Third-party  ME2 Monitor and Evaluate  PO3 Determine Technological Application Software Services Internal Control Direction  AI3 Acquire and Maintain  DS3 Manage Performance  ME3 Ensure Compliance  PO4 Define the IT Processes, Technology Infrastructure and Capacity With External Requirements Organisation and Relationships  AI4 Enable Operation and Use  DS4 Ensure Continuous Service  ME4 Provide IT Governance  PO5 Manage the IT Investment  AI5 Procure IT Resources  DS5 Ensure Systems Security  PO6 Communicate  AI6 Manage Changes  DS6 Identify and Allocate Costs Management Aims and  AI7 Install and Accredit  DS7 Educate and Train Users Direction Solutions and Changes  DS8 Manage Service Desk and  PO7 Manage IT Human Incidents Resources  DS9 Manage the Configuration  PO8 Manage Quality  DS10 Manage Problems  PO9 Assess and Manage  DS11 Manage Data IT Risks  DS12 Manage the Physical  PO10 Manage Projects Environment  DS13 Manage Operations
  24. 24. Boundaries of Business, General andApplication Controls
  25. 25. Governance and Management Defined COBIT 5
  26. 26. Seri COBIT
  27. 27. COBIT 4.1
  28. 28. COBIT 5
  29. 29. Process Capability Models and Assessments COBIT 4.1/5 © 2012 ISACA® All rights reserved.
  30. 30. RACI Charts Source: COBIT® 4.1, page 39. © 2007 IT Governance Institute® All rights reserved. Source: COBIT® 5: Enabling Processes, page 31. © 2012 ISACA® All rights reserved.
  31. 31. Pendekatan COBIT: Top Down
  32. 32. IT Process diturunkan dari Business Goals
  33. 33. Process Oriented
  34. 34. Process Oriented
  35. 35. Model Waterfall
  36. 36. Process Driven
  37. 37. Comprehensive Approach
  38. 38. Maturity Models Non- existent Initial Repeatable Defined Managed Optimised 0 1 2 3 4 5 Legend for symbols used Legend for rankings used Enterprise current status 0 - Management processes are not applied at all 1 - Processes are ad hoc and disorganised International standard guidelines 2 - Processes follow a regular pattern 3 - Processes are documented and communicated Industry best practice 4 - Processes are monitored and measured 5 - Best practices are followed and automated Enterprise strategy
  39. 39. Fokus: 5 Area
  40. 40. Fokus: 5 Area
  41. 41. Measuring investment performance
  42. 42. The outsourcing governance lifecycle
  43. 43. Diskusi,Pertanyaan...?

×