SlideShare a Scribd company logo

MAKING SENSE OF IT GOVERNANCE

Download as PPT, PDF
R
Rudy Shoushany

The document discusses IT governance, defining it as the processes that ensure effective and efficient use of IT to help an organization achieve its goals. IT governance is a responsibility of executives and the board of directors and consists of leadership, structures, and processes to ensure IT supports business strategies and objectives. Frameworks like COBIT provide structures to align IT strategy with business strategy through formal processes. The benefits of IT governance include transparency, accountability, improved ROI, risk management, and compliance. Governance focuses on strategic decisions while management handles tactical implementation.

Technology
1 of 35
Making Sense of IT GOVERNANCE Rudy Chouchany Tuesday June 25, 2019 Gefinor Rotana
Understanding IT Governance
What is Governance Governance is "the process of decision- making and the process by which decisions are implemented Dictionary : the action or manner of governing a state, organization, etc First we need to understand
What is IT Governance? IT Governance provides a structure for aligning IT strategy with business strategy. By following a formal framework, organizations can produce measurable results toward achieving their strategies and goals IT GOVERNANCE, RISK & COMPLIANCE
IT Governance (ITG) is defined as the processes that ensure the effective and efficient use of IT in enabling an organization to achieve its goals. ITG is a business investment decision-making and oversight process, and it is a business management responsibility. 5 What is IT Governance?
IT GOVERNANCE, RISK & COMPLIANCE IT Governance The responsibility of executives and the board of directors; consists of the leadership, organizational structures and processes that ensure that the enterprise’s IT sustains and extends the enterprise's strategies and objectives. What is IT Governance?
IT Governance is also known as: • Information technology governance ITG • Information and communications technology governance (ICT Governance) • Corporate governance of information technology • Corporate governance of information and communications technology IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE
Why do we need IT Governance? • Reliance of Technology, • Fast Pace of Change in Technology, • Failure of IT Projects, • IT is the driver of competitive advantage, • Making sure investments put in IT are Giving value and not wasted, • Ensure the effective and efficient use of IT to achieve Company/Enterprise goals, • For achieving alignment between IT and business, • Ensuring that IT delivers value, • Effective management of IT resources, • Management and mitigation of IT risk, • Measurement of performance. IT GOVERNANCE, RISK & COMPLIANCE
Why do we need IT Governance? • Widening gap between what IT think the business requires and what the business thinks the IT is able to deliver. • General lack of accountability and not enough shared ownership and clarity of responsibilities for IT services and projects. • A lot of spending on infrastructure that is not necessarily needed for business IT GOVERNANCE, RISK & COMPLIANCE
What IT Governance IS NOT Information Technology Governance should not be confused with IT management, which is primarily concerned with making tactical decisions. Think of governance as determining who is authorised and responsible for making these related decisions. It is not the implementation of the policy, but the oversight and creation of the programme. It is not the enforcing of the policy (IT management’s charter), but the enactment/Performance of the policy. In short, IT Governance focuses on the strategic, not the tactical. IT GOVERNANCE, RISK & COMPLIANCE
The Differences Between IT Governance and Management The two have different audiences, different realities, yet share a common goals. IT GOVERNANCE, RISK & COMPLIANCE Governance -Strategies for organizational success -Provides guidance and steering -Usually driven by a steering or governance committee consisting of various business stakeholders and IT representatives -Focuses on priorities and policies -They’re typically a mix of technical and non-technical individuals -Their job is to assess and mitigate risk and compliance with controls and regulation Management -Involves daily actions, decisions, implementations and processes -Works on upholding departmental and organizational objectives -Usually driven by technologists tasked with implementation and support of IT systems and applications. -Their priorities and mission are consistent and optimal IT service delivery -Their backgrounds are typically in technology and management
Benefits IT Governance? Transparency and Accountability • Improved transparency of IT costs, IT process, IT portfolio (projects and services). • Clarified decision-making accountabilities and definition of user and provider relationships. Return on Investment/Stakeholder Value • Improved understanding of overall IT costs and their input to ROI cases. • Combining focused cost-cutting with an ability to reason for investment. • Stakeholders allowed to see IT risk/returns. Improved contribution to stakeholder return IT GOVERNANCE, RISK & COMPLIANCE
Benefits IT Governance? contd.. Opportunities and Partnerships • Provide route to realise opportunities that might not receive attention or sponsorship. • Positioning of IT as a business partner (and clarifying what sort of business partner IT is). • Facilitate joint ventures with other companies. Facilitate more businesslike relationships with key IT partners (vendors and suppliers). • Achieve a consistent approach to taking risks. • Enables IT participation in business strategy (which is then reflected in IT strategy) and vice versa. • Improve responsiveness to market challenges and opportunities IT GOVERNANCE, RISK & COMPLIANCE
Benefits IT Governance? contd.. Performance Improvement • Achieve clear identification of whether an IT service or project supports “business as usual” or is intended to provide future added value. • Increased transparency will raise the bar for performance, and advertise that the bar should be continuously raised. • A focus on performance improvement will lead to attainment of best practices. • Avoid unnecessary expenditures – expenditures are demonstrably matched to business goals. • Increase ability to benchmark External Compliance • Enables an integrated approach to meeting external legal and regulatory requirements. IT GOVERNANCE, RISK & COMPLIANCE
Framework of IT governance There are many IT governance frameworks that are used by organizations worldwide and the most widely used framework is COBIT or the Control Objectives for Information and Related Technology). This framework prescribes a set of 37 different IT processes now 40 and the means of managing these processes through identifying the inputs and outputs along with key process activities, performance measures, and process objectives to ensure that the IT systems are indeed delivering business value. The key reasons why organizations use the IT frameworks are to ensure that they use the IT systems in an efficient and effective manner. Further, risk mitigation and performance management are key business imperatives, which the organization must follow so that there are no surprises for its operations and that the business objectives are being met. IT GOVERNANCE, RISK & COMPLIANCE
TITLE OF TEXT TEXT BOX SHOULD NOT HAVE ANY BACKGROUND COLOR OR BORDER IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE COBIT brings together the five principles that allow the enterprise to build an effective governance and management framework based on a holistic set of seven enablers that optimises information and technology investment and use for the benefit of stakeholders.
IT GOVERNANCE, RISK & COMPLIANCE Separating Governance from Management
IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE The goals cascade is an important concept in COBIT as it supports the translation of stakeholder needs into actionable strategy.
IT GOVERNANCE, RISK & COMPLIANCE
TITLE OF TEXT TEXT BOX SHOULD NOT HAVE ANY BACKGROUND COLOR OR BORDER IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE Separating Governance from Management
IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE Design Guide factors that should be considered by enterprises to build a best fit, tailored governance system.
Where is this framework Adopted in Middle east: • Jordan • UAE • Oman • Kuwait • Bahrain • Iraq IT GOVERNANCE, RISK & COMPLIANCE
IT GOVERNANCE, RISK & COMPLIANCE ONE FINAL QUESTION How do you see the role of Head of IT/CIO within your organization?
THANK YOU! RUDY CHOUCHANY
MAKING SENSE OF IT GOVERNANCE

Recommended

It Governance in time of Covid-19
It Governance in time of Covid-19It Governance in time of Covid-19
It Governance in time of Covid-19
Rudy Shoushany
 
IT Governances
IT GovernancesIT Governances
IT Governances
Jerald Burget
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
PECB
 
Governance Of Enterprise Information Technology V3
Governance Of Enterprise Information Technology V3Governance Of Enterprise Information Technology V3
Governance Of Enterprise Information Technology V3
pjmartinez
 
Corporate governance of INFORMATION TECHNOLOGY (IT)
Corporate governance of INFORMATION TECHNOLOGY (IT)Corporate governance of INFORMATION TECHNOLOGY (IT)
Corporate governance of INFORMATION TECHNOLOGY (IT)
Osman Hasan
 
What is IT Governance?
What is IT Governance?What is IT Governance?
What is IT Governance?
Mansoor Adenwala
 
Security Culture
Security CultureSecurity Culture
Security CulturePLN9 Security Services Pvt. Ltd.
 
Understanding IT Governance and Risk Management
Understanding IT Governance and Risk ManagementUnderstanding IT Governance and Risk Management
Understanding IT Governance and Risk Management
jiricejka
 

Recommended

It Governance in time of Covid-19
It Governance in time of Covid-19It Governance in time of Covid-19
It Governance in time of Covid-19
Rudy Shoushany
 
IT Governances
IT GovernancesIT Governances
IT Governances
Jerald Burget
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
PECB
 
Governance Of Enterprise Information Technology V3
Governance Of Enterprise Information Technology V3Governance Of Enterprise Information Technology V3
Governance Of Enterprise Information Technology V3
pjmartinez
 
Corporate governance of INFORMATION TECHNOLOGY (IT)
Corporate governance of INFORMATION TECHNOLOGY (IT)Corporate governance of INFORMATION TECHNOLOGY (IT)
Corporate governance of INFORMATION TECHNOLOGY (IT)
Osman Hasan
 
What is IT Governance?
What is IT Governance?What is IT Governance?
What is IT Governance?
Mansoor Adenwala
 
Security Culture
Security CultureSecurity Culture
Security CulturePLN9 Security Services Pvt. Ltd.
 
Understanding IT Governance and Risk Management
Understanding IT Governance and Risk ManagementUnderstanding IT Governance and Risk Management
Understanding IT Governance and Risk Management
jiricejka
 
IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1
Richard Willis
 
It governance
It governanceIt governance
It governance
Mahetab Khan
 
IT Governance Made Easy
IT Governance Made EasyIT Governance Made Easy
IT Governance Made Easy
Jerry Bishop
 
Comprehending Information Technology Governance
Comprehending Information Technology GovernanceComprehending Information Technology Governance
Comprehending Information Technology Governance
Goutama Bachtiar
 
IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?
Eryk Budi Pratama
 
JS Favs - COBIT5
JS Favs - COBIT5JS Favs - COBIT5
JS Favs - COBIT5Jack Suurland
 
rethinking marketing
rethinking marketingrethinking marketing
rethinking marketing
Navneet Singh
 
Cobit 5 for Information Security
Cobit 5 for Information SecurityCobit 5 for Information Security
Cobit 5 for Information SecuritySeto Joseles
 
Cobit5
Cobit5Cobit5
Cobit5Iyad Mourtada, CMA, CIA, CFE, CCSA, CRMA, CPLP
 
Information Systems Governance
Information Systems GovernanceInformation Systems Governance
Information Systems Governance
Mark Roman
 
IT Risk assessment and Audit Planning
IT Risk assessment and Audit PlanningIT Risk assessment and Audit Planning
IT Risk assessment and Audit Planning
goreankush1
 
IT governance and Information System Security
IT governance and Information System SecurityIT governance and Information System Security
IT governance and Information System Security
CSSRL PUNE
 
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB
 
Cobit 5 (Control and Audit Information System)
Cobit 5 (Control and Audit Information System)Cobit 5 (Control and Audit Information System)
Cobit 5 (Control and Audit Information System)
Rudi Kurniawan
 
Cyber Security Organizational Operating Model and Governance
Cyber Security Organizational Operating Model and GovernanceCyber Security Organizational Operating Model and Governance
Cyber Security Organizational Operating Model and Governance
Srinidhi Aithal
 
Information Security Governance and Strategy - 3
Information Security Governance and Strategy - 3Information Security Governance and Strategy - 3
Information Security Governance and Strategy - 3
Dam Frank
 
Transformed IT function through managed services for a leading private equity...
Transformed IT function through managed services for a leading private equity...Transformed IT function through managed services for a leading private equity...
Transformed IT function through managed services for a leading private equity...
Mindtree Ltd.
 
Aligning IT and Business for Better Results
Aligning IT and Business for Better ResultsAligning IT and Business for Better Results
Aligning IT and Business for Better Results
Global Knowledge Training
 
01 intro-cobit
01 intro-cobit01 intro-cobit
01 intro-cobityusrizalmukhtar
 
TRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
TRU Snacks Webinar Series - How to Automate Finance Using Accounting RobotsTRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
TRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
Citrin Cooperman
 
Cobit Training course
Cobit Training courseCobit Training course
Cobit Training course
Iman Baradari
 
Sharpening the Lens
Sharpening the LensSharpening the Lens
Sharpening the LensRobert Koehler, MsPM, PgMP, PMP, CGEIT
 

More Related Content

What's hot

IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1
Richard Willis
 
It governance
It governanceIt governance
It governance
Mahetab Khan
 
IT Governance Made Easy
IT Governance Made EasyIT Governance Made Easy
IT Governance Made Easy
Jerry Bishop
 
Comprehending Information Technology Governance
Comprehending Information Technology GovernanceComprehending Information Technology Governance
Comprehending Information Technology Governance
Goutama Bachtiar
 
IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?
Eryk Budi Pratama
 
rethinking marketing
rethinking marketingrethinking marketing
rethinking marketing
Navneet Singh
 
Cobit 5 for Information Security
Cobit 5 for Information SecurityCobit 5 for Information Security
Cobit 5 for Information SecuritySeto Joseles
 
Information Systems Governance
Information Systems GovernanceInformation Systems Governance
Information Systems Governance
Mark Roman
 
IT Risk assessment and Audit Planning
IT Risk assessment and Audit PlanningIT Risk assessment and Audit Planning
IT Risk assessment and Audit Planning
goreankush1
 
IT governance and Information System Security
IT governance and Information System SecurityIT governance and Information System Security
IT governance and Information System Security
CSSRL PUNE
 
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB
 
Cobit 5 (Control and Audit Information System)
Cobit 5 (Control and Audit Information System)Cobit 5 (Control and Audit Information System)
Cobit 5 (Control and Audit Information System)
Rudi Kurniawan
 
Cyber Security Organizational Operating Model and Governance
Cyber Security Organizational Operating Model and GovernanceCyber Security Organizational Operating Model and Governance
Cyber Security Organizational Operating Model and Governance
Srinidhi Aithal
 
Information Security Governance and Strategy - 3
Information Security Governance and Strategy - 3Information Security Governance and Strategy - 3
Information Security Governance and Strategy - 3
Dam Frank
 
Transformed IT function through managed services for a leading private equity...
Transformed IT function through managed services for a leading private equity...Transformed IT function through managed services for a leading private equity...
Transformed IT function through managed services for a leading private equity...
Mindtree Ltd.
 
Aligning IT and Business for Better Results
Aligning IT and Business for Better ResultsAligning IT and Business for Better Results
Aligning IT and Business for Better Results
Global Knowledge Training
 
TRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
TRU Snacks Webinar Series - How to Automate Finance Using Accounting RobotsTRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
TRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
Citrin Cooperman
 

What's hot (20)

IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1
 
It governance
It governanceIt governance
It governance
 
IT Governance Made Easy
IT Governance Made EasyIT Governance Made Easy
IT Governance Made Easy
 
Comprehending Information Technology Governance
Comprehending Information Technology GovernanceComprehending Information Technology Governance
Comprehending Information Technology Governance
 
IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?
 
JS Favs - COBIT5
JS Favs - COBIT5JS Favs - COBIT5
JS Favs - COBIT5
 
rethinking marketing
rethinking marketingrethinking marketing
rethinking marketing
 
Cobit 5 for Information Security
Cobit 5 for Information SecurityCobit 5 for Information Security
Cobit 5 for Information Security
 
Cobit5
Cobit5Cobit5
Cobit5
 
Information Systems Governance
Information Systems GovernanceInformation Systems Governance
Information Systems Governance
 
IT Risk assessment and Audit Planning
IT Risk assessment and Audit PlanningIT Risk assessment and Audit Planning
IT Risk assessment and Audit Planning
 
IT governance and Information System Security
IT governance and Information System SecurityIT governance and Information System Security
IT governance and Information System Security
 
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
 
Cobit 5 (Control and Audit Information System)
Cobit 5 (Control and Audit Information System)Cobit 5 (Control and Audit Information System)
Cobit 5 (Control and Audit Information System)
 
Cyber Security Organizational Operating Model and Governance
Cyber Security Organizational Operating Model and GovernanceCyber Security Organizational Operating Model and Governance
Cyber Security Organizational Operating Model and Governance
 
Information Security Governance and Strategy - 3
Information Security Governance and Strategy - 3Information Security Governance and Strategy - 3
Information Security Governance and Strategy - 3
 
Transformed IT function through managed services for a leading private equity...
Transformed IT function through managed services for a leading private equity...Transformed IT function through managed services for a leading private equity...
Transformed IT function through managed services for a leading private equity...
 
Aligning IT and Business for Better Results
Aligning IT and Business for Better ResultsAligning IT and Business for Better Results
Aligning IT and Business for Better Results
 
01 intro-cobit
01 intro-cobit01 intro-cobit
01 intro-cobit
 
TRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
TRU Snacks Webinar Series - How to Automate Finance Using Accounting RobotsTRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
TRU Snacks Webinar Series - How to Automate Finance Using Accounting Robots
 

Similar to MAKING SENSE OF IT GOVERNANCE

Cobit Training course
Cobit Training courseCobit Training course
Cobit Training course
Iman Baradari
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 Framework
Goutama Bachtiar
 
Whitepaper Practical Information Technology Governance
Whitepaper Practical Information Technology GovernanceWhitepaper Practical Information Technology Governance
Whitepaper Practical Information Technology GovernanceAlan McSweeney
 
IT Governance.ppt
IT Governance.pptIT Governance.ppt
IT Governance.ppt
Insta13
 
Strategic Business IT alignment
Strategic Business IT alignmentStrategic Business IT alignment
Strategic Business IT alignment
Julen Mohanty
 
IT Governance - Core Concepts for Business Managers
IT Governance - Core Concepts for Business ManagersIT Governance - Core Concepts for Business Managers
IT Governance - Core Concepts for Business Managers
Walter Adamson
 
Critical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance ImplementationsCritical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance Implementations
Rachid Meziani, PhD, CGEIT, PMP
 
2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke
2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke
2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke
Mayk Campelo
 
Research Paper on "Project Management and IT Governance"
Research Paper on "Project Management and IT Governance"Research Paper on "Project Management and IT Governance"
Research Paper on "Project Management and IT Governance"
guest1c7740
 
Research Paper on Project Management and IT Governance
Research Paper on Project Management and IT GovernanceResearch Paper on Project Management and IT Governance
Research Paper on Project Management and IT Governance
guest7db01d
 
IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014
ArmeniaFED
 
Pm And It Governance
Pm And It GovernancePm And It Governance
Pm And It Governancesundong
 
Business-IT Alignment
Business-IT AlignmentBusiness-IT Alignment
Business-IT Alignment
Walter Adamson
 
Executive's Handbook on IT Strategy and Governance
Executive's Handbook on IT Strategy and GovernanceExecutive's Handbook on IT Strategy and Governance
Executive's Handbook on IT Strategy and Governance
Kuda Musundire CA (Z), RPA
 
Understanding co bit 4.1
Understanding co bit 4.1Understanding co bit 4.1
Understanding co bit 4.1
n|u - The Open Security Community
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
Sayyed Zakir Ali Rizwe
 

Similar to MAKING SENSE OF IT GOVERNANCE (20)

Cobit Training course
Cobit Training courseCobit Training course
Cobit Training course
 
Sharpening the Lens
Sharpening the LensSharpening the Lens
Sharpening the Lens
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 Framework
 
Whitepaper Practical Information Technology Governance
Whitepaper Practical Information Technology GovernanceWhitepaper Practical Information Technology Governance
Whitepaper Practical Information Technology Governance
 
IT Governance.ppt
IT Governance.pptIT Governance.ppt
IT Governance.ppt
 
Strategic Business IT alignment
Strategic Business IT alignmentStrategic Business IT alignment
Strategic Business IT alignment
 
IT Governance - Core Concepts for Business Managers
IT Governance - Core Concepts for Business ManagersIT Governance - Core Concepts for Business Managers
IT Governance - Core Concepts for Business Managers
 
Critical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance ImplementationsCritical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance Implementations
 
It governance
It governanceIt governance
It governance
 
2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke
2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke
2 -governanca_de_tic_-_uma_visao_do_mercado_gartner_-_claudio_chauke
 
Accountability Corbit Overview 06262007
Accountability Corbit Overview 06262007Accountability Corbit Overview 06262007
Accountability Corbit Overview 06262007
 
Research Paper on "Project Management and IT Governance"
Research Paper on "Project Management and IT Governance"Research Paper on "Project Management and IT Governance"
Research Paper on "Project Management and IT Governance"
 
Research Paper on Project Management and IT Governance
Research Paper on Project Management and IT GovernanceResearch Paper on Project Management and IT Governance
Research Paper on Project Management and IT Governance
 
IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014
 
Pm And It Governance
Pm And It GovernancePm And It Governance
Pm And It Governance
 
Business-IT Alignment
Business-IT AlignmentBusiness-IT Alignment
Business-IT Alignment
 
Executive's Handbook on IT Strategy and Governance
Executive's Handbook on IT Strategy and GovernanceExecutive's Handbook on IT Strategy and Governance
Executive's Handbook on IT Strategy and Governance
 
Understanding co bit 4.1
Understanding co bit 4.1Understanding co bit 4.1
Understanding co bit 4.1
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
 
20100529 johnthorp
20100529 johnthorp20100529 johnthorp
20100529 johnthorp
 

Recently uploaded

Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Nexer Digital
 
Elevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object CalisthenicsElevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object Calisthenics
Dorra BARTAGUIZ
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptxSecstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
nkrafacyberclub
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfSAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
Peter Spielvogel
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
Elena Simperl
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
Kari Kakkonen
 
Assure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyesAssure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...
sonjaschweigert1
 
Quantum Computing: Current Landscape and the Future Role of APIs
Quantum Computing: Current Landscape and the Future Role of APIsQuantum Computing: Current Landscape and the Future Role of APIs
Quantum Computing: Current Landscape and the Future Role of APIs
Vlad Stirbu
 
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Thierry Lestable
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
91mobiles
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
Pierluigi Pugliese
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
BookNet Canada
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
Product School
 
Essentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with ParametersEssentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with Parameters
Safe Software
 

Recently uploaded (20)

Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
 
Elevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object CalisthenicsElevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object Calisthenics
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptxSecstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfSAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
 
Assure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyesAssure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyes
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...
 
Quantum Computing: Current Landscape and the Future Role of APIs
Quantum Computing: Current Landscape and the Future Role of APIsQuantum Computing: Current Landscape and the Future Role of APIs
Quantum Computing: Current Landscape and the Future Role of APIs
 
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
 
Essentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with ParametersEssentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with Parameters
 

MAKING SENSE OF IT GOVERNANCE

  • 1. Making Sense of IT GOVERNANCE Rudy Chouchany Tuesday June 25, 2019 Gefinor Rotana
  • 3. What is Governance Governance is "the process of decision- making and the process by which decisions are implemented Dictionary : the action or manner of governing a state, organization, etc First we need to understand
  • 4. What is IT Governance? IT Governance provides a structure for aligning IT strategy with business strategy. By following a formal framework, organizations can produce measurable results toward achieving their strategies and goals IT GOVERNANCE, RISK & COMPLIANCE
  • 5. IT Governance (ITG) is defined as the processes that ensure the effective and efficient use of IT in enabling an organization to achieve its goals. ITG is a business investment decision-making and oversight process, and it is a business management responsibility. 5 What is IT Governance?
  • 6. IT GOVERNANCE, RISK & COMPLIANCE IT Governance The responsibility of executives and the board of directors; consists of the leadership, organizational structures and processes that ensure that the enterprise’s IT sustains and extends the enterprise's strategies and objectives. What is IT Governance?
  • 7. IT Governance is also known as: • Information technology governance ITG • Information and communications technology governance (ICT Governance) • Corporate governance of information technology • Corporate governance of information and communications technology IT GOVERNANCE, RISK & COMPLIANCE
  • 8. IT GOVERNANCE, RISK & COMPLIANCE
  • 9. Why do we need IT Governance? • Reliance of Technology, • Fast Pace of Change in Technology, • Failure of IT Projects, • IT is the driver of competitive advantage, • Making sure investments put in IT are Giving value and not wasted, • Ensure the effective and efficient use of IT to achieve Company/Enterprise goals, • For achieving alignment between IT and business, • Ensuring that IT delivers value, • Effective management of IT resources, • Management and mitigation of IT risk, • Measurement of performance. IT GOVERNANCE, RISK & COMPLIANCE
  • 10. Why do we need IT Governance? • Widening gap between what IT think the business requires and what the business thinks the IT is able to deliver. • General lack of accountability and not enough shared ownership and clarity of responsibilities for IT services and projects. • A lot of spending on infrastructure that is not necessarily needed for business IT GOVERNANCE, RISK & COMPLIANCE
  • 11. What IT Governance IS NOT Information Technology Governance should not be confused with IT management, which is primarily concerned with making tactical decisions. Think of governance as determining who is authorised and responsible for making these related decisions. It is not the implementation of the policy, but the oversight and creation of the programme. It is not the enforcing of the policy (IT management’s charter), but the enactment/Performance of the policy. In short, IT Governance focuses on the strategic, not the tactical. IT GOVERNANCE, RISK & COMPLIANCE
  • 12. The Differences Between IT Governance and Management The two have different audiences, different realities, yet share a common goals. IT GOVERNANCE, RISK & COMPLIANCE Governance -Strategies for organizational success -Provides guidance and steering -Usually driven by a steering or governance committee consisting of various business stakeholders and IT representatives -Focuses on priorities and policies -They’re typically a mix of technical and non-technical individuals -Their job is to assess and mitigate risk and compliance with controls and regulation Management -Involves daily actions, decisions, implementations and processes -Works on upholding departmental and organizational objectives -Usually driven by technologists tasked with implementation and support of IT systems and applications. -Their priorities and mission are consistent and optimal IT service delivery -Their backgrounds are typically in technology and management
  • 13. Benefits IT Governance? Transparency and Accountability • Improved transparency of IT costs, IT process, IT portfolio (projects and services). • Clarified decision-making accountabilities and definition of user and provider relationships. Return on Investment/Stakeholder Value • Improved understanding of overall IT costs and their input to ROI cases. • Combining focused cost-cutting with an ability to reason for investment. • Stakeholders allowed to see IT risk/returns. Improved contribution to stakeholder return IT GOVERNANCE, RISK & COMPLIANCE
  • 14. Benefits IT Governance? contd.. Opportunities and Partnerships • Provide route to realise opportunities that might not receive attention or sponsorship. • Positioning of IT as a business partner (and clarifying what sort of business partner IT is). • Facilitate joint ventures with other companies. Facilitate more businesslike relationships with key IT partners (vendors and suppliers). • Achieve a consistent approach to taking risks. • Enables IT participation in business strategy (which is then reflected in IT strategy) and vice versa. • Improve responsiveness to market challenges and opportunities IT GOVERNANCE, RISK & COMPLIANCE
  • 15. Benefits IT Governance? contd.. Performance Improvement • Achieve clear identification of whether an IT service or project supports “business as usual” or is intended to provide future added value. • Increased transparency will raise the bar for performance, and advertise that the bar should be continuously raised. • A focus on performance improvement will lead to attainment of best practices. • Avoid unnecessary expenditures – expenditures are demonstrably matched to business goals. • Increase ability to benchmark External Compliance • Enables an integrated approach to meeting external legal and regulatory requirements. IT GOVERNANCE, RISK & COMPLIANCE
  • 16. Framework of IT governance There are many IT governance frameworks that are used by organizations worldwide and the most widely used framework is COBIT or the Control Objectives for Information and Related Technology). This framework prescribes a set of 37 different IT processes now 40 and the means of managing these processes through identifying the inputs and outputs along with key process activities, performance measures, and process objectives to ensure that the IT systems are indeed delivering business value. The key reasons why organizations use the IT frameworks are to ensure that they use the IT systems in an efficient and effective manner. Further, risk mitigation and performance management are key business imperatives, which the organization must follow so that there are no surprises for its operations and that the business objectives are being met. IT GOVERNANCE, RISK & COMPLIANCE
  • 17. TITLE OF TEXT TEXT BOX SHOULD NOT HAVE ANY BACKGROUND COLOR OR BORDER IT GOVERNANCE, RISK & COMPLIANCE
  • 18. IT GOVERNANCE, RISK & COMPLIANCE
  • 19. IT GOVERNANCE, RISK & COMPLIANCE COBIT brings together the five principles that allow the enterprise to build an effective governance and management framework based on a holistic set of seven enablers that optimises information and technology investment and use for the benefit of stakeholders.
  • 20. IT GOVERNANCE, RISK & COMPLIANCE Separating Governance from Management
  • 21. IT GOVERNANCE, RISK & COMPLIANCE
  • 22. IT GOVERNANCE, RISK & COMPLIANCE The goals cascade is an important concept in COBIT as it supports the translation of stakeholder needs into actionable strategy.
  • 23. IT GOVERNANCE, RISK & COMPLIANCE
  • 24. TITLE OF TEXT TEXT BOX SHOULD NOT HAVE ANY BACKGROUND COLOR OR BORDER IT GOVERNANCE, RISK & COMPLIANCE
  • 25. IT GOVERNANCE, RISK & COMPLIANCE Separating Governance from Management
  • 26. IT GOVERNANCE, RISK & COMPLIANCE
  • 27. IT GOVERNANCE, RISK & COMPLIANCE
  • 28. IT GOVERNANCE, RISK & COMPLIANCE
  • 29. IT GOVERNANCE, RISK & COMPLIANCE
  • 30. IT GOVERNANCE, RISK & COMPLIANCE Design Guide factors that should be considered by enterprises to build a best fit, tailored governance system.
  • 31. Where is this framework Adopted in Middle east: • Jordan • UAE • Oman • Kuwait • Bahrain • Iraq IT GOVERNANCE, RISK & COMPLIANCE
  • 32.
  • 33. IT GOVERNANCE, RISK & COMPLIANCE ONE FINAL QUESTION How do you see the role of Head of IT/CIO within your organization?