SlideShare a Scribd company logo

Cobit as IT Management Best Practice Framework

J
jg20001234

Cobit as IT Management Best Practice Framework. What are the IT management issues that COBIT can help to solve? How COBIT is one of the most comprehensive IT management best practice frameworks - from IT Strategy, Architecture, Portfolio Management to Programme and Project Management to SDLC Management to Service Support and Delivery and Measure/Evaluate. Also, mapping of COBIT to various IT Management best practices as well as a look at the future COBIT v5 from an IT Managmenet Framework perspective.

Technology
1 of 24
Download to read offline
COBIT as IT Management Best Practice Framework Adapted from Jan 2011 Management Update Seminar: “Beyond IT Project Management: Advanced IT Management Best Practices” Goh BoonNam Institute of Systems Science ISACA®, IT Governance Institute® and CobiT® are registered trademarks of ISACA, Use of these trademarks in this document does NOT imply any association, sponsorship, affiliation, or endorsement by ISACA. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 1 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
What is COBIT?  Control OBjectives for Information and related Technology  International framework from ISACA (Information Systems Control & Audit Association) and IT Governance Institute  Helps maximise value of IT to business and minimise issues such as those listed earlier  Originally, more for monitoring/audit /risk assessment of IT management processes  Increasingly recognised as comprehensive framework of IT Management best practices ■ Advises on WHAT to do ■ Some high-level of how to do  Currently Version 4.1 COBIT References: http://www.isaca.org/Knowledge-Center/COBIT/Pages/Overview.aspx http://www.isaca.org/Knowledge-Center/cobit/Pages/Downloads.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 2 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Why COBIT?  Why COBIT as IT Management Best Practice Framework? ■ Comprehensive coverage of IT Management ■ Helps avoids issues such as: • Strategic oversights • Architecture oversights • Implementation oversights • Service Delivery oversights • Governance oversights ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 3 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Avoid Issue #1 – Strategic Oversight  Past report from Director of Audit of a large organisation: ■ no formal IT strategy exists which leads to piecemeal development and absence of monitoring and evaluation (of projects). ■ hence, additional expenditure had to be incurred …. ■ systems cannot satisfy objectives Reference: http://www.gov.mu/portal/site/auditsite/menuitem.afcc311f8d4ff832b4c3bb4e52a521ca/?content_id=a4ac207a78d48010VgnVCM100000ca6a12acRCRD ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 4 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Avoid Issue #2 - Architecture oversights  A leading European bank ■ struggled with a tangle of applications that hampered its retail-banking operations ■ the lack of unifying standards created difficulties in satisfying bank-wide business requirements, such as speeding time to market for a new banking services Reference : https://www.mckinseyquarterly.com/Overhauling_banks_IT_systems_2554 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 5 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
IT Issue #3 - Implementation oversights  Passport system in a European country: ■ half a million new passports couldn't be issued on time ■ Passport Agency had brought in a new system that was (not properly designed/developed and) without sufficient testing and staff training ■ hundreds of people missed their holidays with money in the millions spent in compensation for staff overtime and umbrellas for the poor people queuing in the rain for passports Reference : http://www.zdnet.com/news/the-top-10-it-disasters-of-all-time/177729 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 6 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
IT Issue #4 - Service Delivery oversights  Bank in a European country: ■ Online banking services, that had been in operation for some time, suddenly went down for nearly a week Reference : http://www.computerweekly.com/blogs/management-matters/2010/07/has-the-private-sector-caught-the-public-sector-it-disease.html ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 7 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
IT Issue #5 - Governance oversights  The Office of Inspector General (OIG) of the U.S. House of Representatives (House) sought to improve IT activities within the House. ■ A large number of the first audit reports issued by the OIG addressed weaknesses in various IT operations of the House - including the lack of policies and procedures (e.g., systems development life cycle), poor systems design and development, the lack of planning and performance measures, poor management of the mainframe and the lack of adequate information security. ■ Management needed to take control of the situation and establish clear roles and responsibilities…and adopt an IT governance framework. Reference : http://www.isaca.org/Knowledge-Center/cobit/Pages/US-House-of-Representatives.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 8 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
• Define a Strategic IT Plan • Define the Information COBIT - Overview Architecture • Determine Technological • Monitor and Evaluate IT Direction Processes • Define the IT Processes, • Monitor and Evaluate Internal Organization and Relationships Control • Manage the IT Investment • Ensure Regulatory Compliance • Communicate Management Aims • Provide IT Governance and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Define and Manage Service • Manage Projects Levels • Manage Third-party Services • Manage Performance and Capacity Deliver & Support Acquire & Implement • Identify Automated Solutions • Ensure Continuous Service • Acquire and Maintain Application • Ensure Systems Security Software • Identify and Allocate Costs • Acquire and Maintain Technology • Educate and Train Users Infrastructure • Manage Service Desk and • Enable Operation and Use Incidents • Procure IT Resources • Manage the Configuration • Manage Changes • Manage Problems • Install and Accredit Solutions and • Manage Data Changes • Manage the Physical Environment • Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 9 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Components • Define a Strategic IT Plan • Define the Information Architecture PROCESSES • Determine Technological Direction • Define the IT Processes, Organization and Relationships • Manage the IT Investment • Communicate Management Aims and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Manage Projects • Programme Management Framework • Project Management Framework • Project Management Approach • Stakeholder Commitment Deliver & Support Acquire & Implement • Project Scope Statement • Project Phase Initiation • Integrated Project Plan • Project Resources • Project Risk Management • Project Quality Plan DOMAINS • Project Change Control • Project Planning of Assurance Methods • Project Performance Measurement, Reporting and CONTROL Monitoring • Project Closure OBJECTIVES ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 10 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Plan & Organise (PO) Plan &  Strategy / Architecture / Portfolio ■ Define a Strategic IT Plan Monitor & Evaluate Organise ■ Define the Information Architecture ■ Determine Technological Direction Deliver & Acquire & Support Implement  Programme & Project Management ■ Manage Projects  IT Organisation Management ■ Define the IT Processes, Organization and Relationships ■ Manage the IT Investment ■ Communicate Management Aims and Direction Nb: Bold headings are author’s own categorisation ■ Manage IT Human Resources & are not part of COBIT ■ Manage Quality ■ Assess and Manage IT Risks ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 11 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Plan & Organise (PO) Strategic Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Level of Work IT Programme Organisation Management Management Project Management Tactical Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within PO. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 12 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Acquire & Implement (AI) Monitor &  Requirements & Feasibility ■ Identify Automated Solutions Plan & Organise Evaluate Deliver & Acquire &  Design & Build Support Implement ■ Acquire and Maintain Application Software ■ Acquire and Maintain Technology Infrastructure  Test & Implement ■ Install and Accredit Solutions and Changes ■ Enable Operation and Use  Changes ■ Manage Changes Nb: Bold headings are author’s own categorisation & are NOT part of COBIT  Procurement Management  Procure IT Resources ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 13 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
AI Relationship with PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Requirements & Design & Test & Acquire & Feasibility Build Implement Implement Manage (System-Related) Changes (AI) Procurement Management Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 14 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Deliver & Support  Service Delivery ■ Define and Manage Service Levels Monitor & Evaluate Plan & Organise ■ Manage Third-party Services ■ Manage Performance and Capacity Deliver & Acquire & Implement ■ Ensure Continuous Service Support ■ Ensure Systems Security ■ Identify and Allocate Costs  Service Support ■ Educate and Train Users ■ Manage Service Desk and Incidents ■ Manage the Configuration Nb: Bold headings are author’s own categorisation ■ Manage Problems & are not part of COBIT ■ Manage Data ■ Manage the Physical Environment ■ Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 15 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
DS Relationship with AI & PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Acquire & Requirements & Feasibility Design & Build Test & Implement Implement Manage (System-Related) Changes (AI) Procurement Management Deliver & Service Delivery Support Service Support (DS) Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 16 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Domains – Monitor & Evaluate  Monitor & Evaluate Monitor & Evaluate ■ Monitor and Evaluate IT Processes Plan & Organise ■ Monitor and Evaluate Internal Control Deliver & Support Acquire & Implement ■ Ensure Regulatory Compliance  Direct ■ Provide IT Governance Nb: Bold headings are author’s own categorisation & are not part of COBIT ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 17 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Overview ME Relationship with PO / AI / DS Measure & Pre-Project Development Production Evaluate (ME) IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management Measure & Evaluate IT IT Systems Devt Life Cycle Mgt Organisation Acquire & / Management Requirements Design & Test & Implement & Feasibility Build Implement Direct (AI) Manage (System-Related) Changes Procurement Management Deliver & Service Delivery Support (DS) Service Support Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 18 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Other Elements of COBIT  Besides ■ Domains ■ Processes ■ Control Objectives  Some Key Elements ■ Management Guidelines • roles and responsibilities • goals and metrics ■ Maturity Model ■ Associated Toolkits (for ISACA members) • Implementation Guide • Assurance Guide ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 19 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
COBIT Mapping to Other Frameworks P3O TOGAF PRINCE2 PMP CITPM CMMI SCRUM CBAP COMIT ISO20000 CISSP ITIL Monitor & Plan & Organise CGEIT Evaluate COBIT Acquire & Deliver & Support Implement Nb: Some of the other frameworks can map to more than one COBIT domain (eg. ITIL/COBIT) but for simplicity, only one domain is mapped here ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 20 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Future of COBIT as IT Management Framework – Draft COBIT v5 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 21 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
Future of COBIT as IT Management Framework – Draft COBIT v5  Some Key New Features ■ Explicit recognition of COBIT as covering IT Management processes in addition to IT Governance processes ■ Identification of degree of involvement of IT and Business in the various processes ■ Enterprise Architecture (instead of Information Architecture of prior versions) ■ Consolidation into one new “Manage the IT Organisation” process those v4.1 processes that were for internal IT organisation support - eg. • Define IT Processes, Organization and Relationships • Communicate Management Aims and Direction • Manage IT Human Resources etc ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 22 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
For Further Information Please refer to: http://www.iss.nus.edu.sg/ Or email BoonNam Goh at: issgbn@nus.edu.sg ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 23 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
The End ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 24 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/

Recommended

Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT management
Christian F. Nissen
 
Define an IT Strategy and Roadmap
Define an IT Strategy and RoadmapDefine an IT Strategy and Roadmap
Define an IT Strategy and Roadmap
Andrew Byers
 
Digital Operating Model & IT4IT
Digital Operating Model & IT4ITDigital Operating Model & IT4IT
Digital Operating Model & IT4IT
David Favelle
 
IT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITIT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of IT
The Open Group SA
 
Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...
Prashanth Panduranga
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Alan McSweeney
 
Implementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureImplementing Effective Enterprise Architecture
Implementing Effective Enterprise Architecture
Leo Shuster
 
Review of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsReview of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability Models
Alan McSweeney
 

Recommended

Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT management
Christian F. Nissen
 
Define an IT Strategy and Roadmap
Define an IT Strategy and RoadmapDefine an IT Strategy and Roadmap
Define an IT Strategy and Roadmap
Andrew Byers
 
Digital Operating Model & IT4IT
Digital Operating Model & IT4ITDigital Operating Model & IT4IT
Digital Operating Model & IT4IT
David Favelle
 
IT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITIT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of IT
The Open Group SA
 
Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...Introduction to Enterprise architecture and the steps to perform an Enterpris...
Introduction to Enterprise architecture and the steps to perform an Enterpris...
Prashanth Panduranga
 
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Integrating It Frameworks, Methodologies And Best Practices Into It Delivery ...
Alan McSweeney
 
Implementing Effective Enterprise Architecture
Implementing Effective Enterprise ArchitectureImplementing Effective Enterprise Architecture
Implementing Effective Enterprise Architecture
Leo Shuster
 
Review of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability ModelsReview of Information Technology Function Critical Capability Models
Review of Information Technology Function Critical Capability Models
Alan McSweeney
 
What is the Value of Mature Enterprise Architecture TOGAF
What is the Value of Mature Enterprise Architecture TOGAFWhat is the Value of Mature Enterprise Architecture TOGAF
What is the Value of Mature Enterprise Architecture TOGAF
xavblai
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
PECB
 
A tailored enterprise architecture maturity model
A tailored enterprise architecture maturity modelA tailored enterprise architecture maturity model
A tailored enterprise architecture maturity model
Paul Sullivan
 
IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1
Richard Willis
 
IT4IT - The Full Story for Digital Transformation - Part 1
IT4IT - The Full Story for Digital Transformation - Part 1IT4IT - The Full Story for Digital Transformation - Part 1
IT4IT - The Full Story for Digital Transformation - Part 1
Mohamed Zakarya Abdelgawad
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
Sayyed Zakir Ali Rizwe
 
Enterprise Architecture Governance: A Framework for Successful Business
Enterprise Architecture Governance: A Framework for Successful BusinessEnterprise Architecture Governance: A Framework for Successful Business
Enterprise Architecture Governance: A Framework for Successful Business
Nathaniel Palmer
 
How to Articulate the Value of Enterprise Architecture
How to Articulate the Value of Enterprise ArchitectureHow to Articulate the Value of Enterprise Architecture
How to Articulate the Value of Enterprise Architecture
cccamericas
 
IT4IT Framework Overview
IT4IT Framework OverviewIT4IT Framework Overview
IT4IT Framework Overview
Architecture Center Ltd
 
IT4IT / DevOps Tooling Landscape 2022
IT4IT / DevOps Tooling Landscape 2022 IT4IT / DevOps Tooling Landscape 2022
IT4IT / DevOps Tooling Landscape 2022
Rob Akershoek
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdf
mohammed539963
 
An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019
Gregor Polančič
 
Using ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherUsing ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT together
Rob Akershoek
 
Enterprise Architecture - TOGAF Overview
Enterprise Architecture - TOGAF OverviewEnterprise Architecture - TOGAF Overview
Enterprise Architecture - TOGAF Overview
Mohamed Sami El-Tahawy
 
EA maturity models
EA maturity modelsEA maturity models
EA maturity models
Paul Sullivan
 
IT Strategy & Planning
IT Strategy & PlanningIT Strategy & Planning
IT Strategy & Planning
chakraj
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdf
itSMF Belgium
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelled
Tony Price
 
Successful Data Governance Models and Frameworks
Successful Data Governance Models and FrameworksSuccessful Data Governance Models and Frameworks
Successful Data Governance Models and Frameworks
DATAVERSITY
 
IT4IT - The Full Story for Digital Transformation - Part 2
IT4IT - The Full Story for Digital Transformation - Part 2IT4IT - The Full Story for Digital Transformation - Part 2
IT4IT - The Full Story for Digital Transformation - Part 2
Mohamed Zakarya Abdelgawad
 
Vettery Pitch Deck
Vettery Pitch DeckVettery Pitch Deck
Vettery Pitch Deck
Tech in Asia ID
 
MapMe Pitch Deck
MapMe Pitch DeckMapMe Pitch Deck
MapMe Pitch Deck
Tech in Asia ID
 

More Related Content

What's hot

Enterprise Architecture Governance: A Framework for Successful Business
Enterprise Architecture Governance: A Framework for Successful BusinessEnterprise Architecture Governance: A Framework for Successful Business
Enterprise Architecture Governance: A Framework for Successful Business
Nathaniel Palmer
 
How to Articulate the Value of Enterprise Architecture
How to Articulate the Value of Enterprise ArchitectureHow to Articulate the Value of Enterprise Architecture
How to Articulate the Value of Enterprise Architecture
cccamericas
 
IT4IT / DevOps Tooling Landscape 2022
IT4IT / DevOps Tooling Landscape 2022 IT4IT / DevOps Tooling Landscape 2022
IT4IT / DevOps Tooling Landscape 2022
Rob Akershoek
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelled
Tony Price
 
Successful Data Governance Models and Frameworks
Successful Data Governance Models and FrameworksSuccessful Data Governance Models and Frameworks
Successful Data Governance Models and Frameworks
DATAVERSITY
 

What's hot (20)

What is the Value of Mature Enterprise Architecture TOGAF
What is the Value of Mature Enterprise Architecture TOGAFWhat is the Value of Mature Enterprise Architecture TOGAF
What is the Value of Mature Enterprise Architecture TOGAF
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
 
A tailored enterprise architecture maturity model
A tailored enterprise architecture maturity modelA tailored enterprise architecture maturity model
A tailored enterprise architecture maturity model
 
IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1IT Governance Vs IT Management Presentation V0.1
IT Governance Vs IT Management Presentation V0.1
 
IT4IT - The Full Story for Digital Transformation - Part 1
IT4IT - The Full Story for Digital Transformation - Part 1IT4IT - The Full Story for Digital Transformation - Part 1
IT4IT - The Full Story for Digital Transformation - Part 1
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT Perspective
 
Enterprise Architecture Governance: A Framework for Successful Business
Enterprise Architecture Governance: A Framework for Successful BusinessEnterprise Architecture Governance: A Framework for Successful Business
Enterprise Architecture Governance: A Framework for Successful Business
 
How to Articulate the Value of Enterprise Architecture
How to Articulate the Value of Enterprise ArchitectureHow to Articulate the Value of Enterprise Architecture
How to Articulate the Value of Enterprise Architecture
 
IT4IT Framework Overview
IT4IT Framework OverviewIT4IT Framework Overview
IT4IT Framework Overview
 
IT4IT / DevOps Tooling Landscape 2022
IT4IT / DevOps Tooling Landscape 2022 IT4IT / DevOps Tooling Landscape 2022
IT4IT / DevOps Tooling Landscape 2022
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdf
 
An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019
 
Using ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherUsing ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT together
 
Enterprise Architecture - TOGAF Overview
Enterprise Architecture - TOGAF OverviewEnterprise Architecture - TOGAF Overview
Enterprise Architecture - TOGAF Overview
 
EA maturity models
EA maturity modelsEA maturity models
EA maturity models
 
IT Strategy & Planning
IT Strategy & PlanningIT Strategy & Planning
IT Strategy & Planning
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdf
 
IT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelledIT4IT real life examples & myths and rumors dispelled
IT4IT real life examples & myths and rumors dispelled
 
Successful Data Governance Models and Frameworks
Successful Data Governance Models and FrameworksSuccessful Data Governance Models and Frameworks
Successful Data Governance Models and Frameworks
 
IT4IT - The Full Story for Digital Transformation - Part 2
IT4IT - The Full Story for Digital Transformation - Part 2IT4IT - The Full Story for Digital Transformation - Part 2
IT4IT - The Full Story for Digital Transformation - Part 2
 

Viewers also liked

Viewers also liked (13)

Vettery Pitch Deck
Vettery Pitch DeckVettery Pitch Deck
Vettery Pitch Deck
 
MapMe Pitch Deck
MapMe Pitch DeckMapMe Pitch Deck
MapMe Pitch Deck
 
Tealet Pitch Deck
Tealet Pitch DeckTealet Pitch Deck
Tealet Pitch Deck
 
BrandBoards Pitch Deck
BrandBoards Pitch DeckBrandBoards Pitch Deck
BrandBoards Pitch Deck
 
Tinder Pitch Deck
Tinder Pitch DeckTinder Pitch Deck
Tinder Pitch Deck
 
Castle Pitch Deck
Castle Pitch DeckCastle Pitch Deck
Castle Pitch Deck
 
Ooomf (Crew) Pitch Deck
Ooomf (Crew) Pitch DeckOoomf (Crew) Pitch Deck
Ooomf (Crew) Pitch Deck
 
Foursquare Pitch Deck
Foursquare Pitch DeckFoursquare Pitch Deck
Foursquare Pitch Deck
 
Airbnb Pitch Deck
Airbnb Pitch DeckAirbnb Pitch Deck
Airbnb Pitch Deck
 
Podozi Pitch Deck
Podozi Pitch DeckPodozi Pitch Deck
Podozi Pitch Deck
 
The Facebook Pitch Deck
The Facebook Pitch DeckThe Facebook Pitch Deck
The Facebook Pitch Deck
 
PinMyPet Pitch Deck
PinMyPet Pitch DeckPinMyPet Pitch Deck
PinMyPet Pitch Deck
 
BuzzFeed Pitch Deck
BuzzFeed Pitch DeckBuzzFeed Pitch Deck
BuzzFeed Pitch Deck
 

Similar to Cobit as IT Management Best Practice Framework

It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013
James Sutter
 
It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013
Jim Sutter
 
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon NamCOBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
NUS-ISS
 
IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008
ssusera19f45
 
Bobby.german
Bobby.germanBobby.german
Bobby.german
NASAPMC
 
Change Management
Change ManagementChange Management
Change Management
ramikanso
 

Similar to Cobit as IT Management Best Practice Framework (20)

It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013
 
It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013It Governance OC CIO Nov,2013
It Governance OC CIO Nov,2013
 
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon NamCOBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
COBIT 5 as an IT Management Best Practices Framework - by Goh Boon Nam
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACA
 
Frameworks For Predictability
Frameworks For PredictabilityFrameworks For Predictability
Frameworks For Predictability
 
Dit yvol2iss43
Dit yvol2iss43Dit yvol2iss43
Dit yvol2iss43
 
Diskusi buku: Securing an IT Organization through Governance, Risk Management...
Diskusi buku: Securing an IT Organization through Governance, Risk Management...Diskusi buku: Securing an IT Organization through Governance, Risk Management...
Diskusi buku: Securing an IT Organization through Governance, Risk Management...
 
Congressional it reform-roadmap_2011
Congressional it reform-roadmap_2011Congressional it reform-roadmap_2011
Congressional it reform-roadmap_2011
 
Modern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaModern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL Indonesia
 
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
Business and ITSM on the same page at last! ITIL, TOGAF and COBIT working to...
 
IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008
 
Business Intelligence Module 3
Business Intelligence Module 3Business Intelligence Module 3
Business Intelligence Module 3
 
Frameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyFrameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information Technology
 
Bobby.german
Bobby.germanBobby.german
Bobby.german
 
CObIT
CObITCObIT
CObIT
 
Change Management
Change ManagementChange Management
Change Management
 
ThinkFaculty ITIL Training Course IBM
ThinkFaculty ITIL Training Course IBMThinkFaculty ITIL Training Course IBM
ThinkFaculty ITIL Training Course IBM
 
PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019
PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019 PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019
PPT Latvia, SIGMA Workshop on Digital Auditing for SAIs, Skopje, November 2019
 
Cobi T Top Down Bottom Up
Cobi T Top Down Bottom UpCobi T Top Down Bottom Up
Cobi T Top Down Bottom Up
 
IT Governance
IT GovernanceIT Governance
IT Governance
 

Recently uploaded

Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Roshan Dwivedi
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 

Recently uploaded (20)

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 

Cobit as IT Management Best Practice Framework

  • 1. COBIT as IT Management Best Practice Framework Adapted from Jan 2011 Management Update Seminar: “Beyond IT Project Management: Advanced IT Management Best Practices” Goh BoonNam Institute of Systems Science ISACA®, IT Governance Institute® and CobiT® are registered trademarks of ISACA, Use of these trademarks in this document does NOT imply any association, sponsorship, affiliation, or endorsement by ISACA. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 1 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 2. What is COBIT?  Control OBjectives for Information and related Technology  International framework from ISACA (Information Systems Control & Audit Association) and IT Governance Institute  Helps maximise value of IT to business and minimise issues such as those listed earlier  Originally, more for monitoring/audit /risk assessment of IT management processes  Increasingly recognised as comprehensive framework of IT Management best practices ■ Advises on WHAT to do ■ Some high-level of how to do  Currently Version 4.1 COBIT References: http://www.isaca.org/Knowledge-Center/COBIT/Pages/Overview.aspx http://www.isaca.org/Knowledge-Center/cobit/Pages/Downloads.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 2 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 3. Why COBIT?  Why COBIT as IT Management Best Practice Framework? ■ Comprehensive coverage of IT Management ■ Helps avoids issues such as: • Strategic oversights • Architecture oversights • Implementation oversights • Service Delivery oversights • Governance oversights ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 3 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 4. Avoid Issue #1 – Strategic Oversight  Past report from Director of Audit of a large organisation: ■ no formal IT strategy exists which leads to piecemeal development and absence of monitoring and evaluation (of projects). ■ hence, additional expenditure had to be incurred …. ■ systems cannot satisfy objectives Reference: http://www.gov.mu/portal/site/auditsite/menuitem.afcc311f8d4ff832b4c3bb4e52a521ca/?content_id=a4ac207a78d48010VgnVCM100000ca6a12acRCRD ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 4 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 5. Avoid Issue #2 - Architecture oversights  A leading European bank ■ struggled with a tangle of applications that hampered its retail-banking operations ■ the lack of unifying standards created difficulties in satisfying bank-wide business requirements, such as speeding time to market for a new banking services Reference : https://www.mckinseyquarterly.com/Overhauling_banks_IT_systems_2554 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 5 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 6. IT Issue #3 - Implementation oversights  Passport system in a European country: ■ half a million new passports couldn't be issued on time ■ Passport Agency had brought in a new system that was (not properly designed/developed and) without sufficient testing and staff training ■ hundreds of people missed their holidays with money in the millions spent in compensation for staff overtime and umbrellas for the poor people queuing in the rain for passports Reference : http://www.zdnet.com/news/the-top-10-it-disasters-of-all-time/177729 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 6 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 7. IT Issue #4 - Service Delivery oversights  Bank in a European country: ■ Online banking services, that had been in operation for some time, suddenly went down for nearly a week Reference : http://www.computerweekly.com/blogs/management-matters/2010/07/has-the-private-sector-caught-the-public-sector-it-disease.html ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 7 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 8. IT Issue #5 - Governance oversights  The Office of Inspector General (OIG) of the U.S. House of Representatives (House) sought to improve IT activities within the House. ■ A large number of the first audit reports issued by the OIG addressed weaknesses in various IT operations of the House - including the lack of policies and procedures (e.g., systems development life cycle), poor systems design and development, the lack of planning and performance measures, poor management of the mainframe and the lack of adequate information security. ■ Management needed to take control of the situation and establish clear roles and responsibilities…and adopt an IT governance framework. Reference : http://www.isaca.org/Knowledge-Center/cobit/Pages/US-House-of-Representatives.aspx ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 8 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 9. • Define a Strategic IT Plan • Define the Information COBIT - Overview Architecture • Determine Technological • Monitor and Evaluate IT Direction Processes • Define the IT Processes, • Monitor and Evaluate Internal Organization and Relationships Control • Manage the IT Investment • Ensure Regulatory Compliance • Communicate Management Aims • Provide IT Governance and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Define and Manage Service • Manage Projects Levels • Manage Third-party Services • Manage Performance and Capacity Deliver & Support Acquire & Implement • Identify Automated Solutions • Ensure Continuous Service • Acquire and Maintain Application • Ensure Systems Security Software • Identify and Allocate Costs • Acquire and Maintain Technology • Educate and Train Users Infrastructure • Manage Service Desk and • Enable Operation and Use Incidents • Procure IT Resources • Manage the Configuration • Manage Changes • Manage Problems • Install and Accredit Solutions and • Manage Data Changes • Manage the Physical Environment • Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 9 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 10. COBIT Components • Define a Strategic IT Plan • Define the Information Architecture PROCESSES • Determine Technological Direction • Define the IT Processes, Organization and Relationships • Manage the IT Investment • Communicate Management Aims and Direction • Manage IT Human Resources Monitor & Evaluate Plan & Organise • Manage Quality • Assess and Manage IT Risks • Manage Projects • Programme Management Framework • Project Management Framework • Project Management Approach • Stakeholder Commitment Deliver & Support Acquire & Implement • Project Scope Statement • Project Phase Initiation • Integrated Project Plan • Project Resources • Project Risk Management • Project Quality Plan DOMAINS • Project Change Control • Project Planning of Assurance Methods • Project Performance Measurement, Reporting and CONTROL Monitoring • Project Closure OBJECTIVES ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 10 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 11. COBIT Domains – Plan & Organise (PO) Plan &  Strategy / Architecture / Portfolio ■ Define a Strategic IT Plan Monitor & Evaluate Organise ■ Define the Information Architecture ■ Determine Technological Direction Deliver & Acquire & Support Implement  Programme & Project Management ■ Manage Projects  IT Organisation Management ■ Define the IT Processes, Organization and Relationships ■ Manage the IT Investment ■ Communicate Management Aims and Direction Nb: Bold headings are author’s own categorisation ■ Manage IT Human Resources & are not part of COBIT ■ Manage Quality ■ Assess and Manage IT Risks ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 11 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 12. Plan & Organise (PO) Strategic Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Level of Work IT Programme Organisation Management Management Project Management Tactical Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within PO. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 12 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 13. COBIT Domains – Acquire & Implement (AI) Monitor &  Requirements & Feasibility ■ Identify Automated Solutions Plan & Organise Evaluate Deliver & Acquire &  Design & Build Support Implement ■ Acquire and Maintain Application Software ■ Acquire and Maintain Technology Infrastructure  Test & Implement ■ Install and Accredit Solutions and Changes ■ Enable Operation and Use  Changes ■ Manage Changes Nb: Bold headings are author’s own categorisation & are NOT part of COBIT  Procurement Management  Procure IT Resources ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 13 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 14. AI Relationship with PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Requirements & Design & Test & Acquire & Feasibility Build Implement Implement Manage (System-Related) Changes (AI) Procurement Management Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 14 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 15. COBIT Domains – Deliver & Support  Service Delivery ■ Define and Manage Service Levels Monitor & Evaluate Plan & Organise ■ Manage Third-party Services ■ Manage Performance and Capacity Deliver & Acquire & Implement ■ Ensure Continuous Service Support ■ Ensure Systems Security ■ Identify and Allocate Costs  Service Support ■ Educate and Train Users ■ Manage Service Desk and Incidents ■ Manage the Configuration Nb: Bold headings are author’s own categorisation ■ Manage Problems & are not part of COBIT ■ Manage Data ■ Manage the Physical Environment ■ Manage Operations ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 15 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 16. DS Relationship with AI & PO Pre-Project Development Production IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management IT Systems Devt Life Cycle Mgt Acquire & Requirements & Feasibility Design & Build Test & Implement Implement Manage (System-Related) Changes (AI) Procurement Management Deliver & Service Delivery Support Service Support (DS) Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 16 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 17. COBIT Domains – Monitor & Evaluate  Monitor & Evaluate Monitor & Evaluate ■ Monitor and Evaluate IT Processes Plan & Organise ■ Monitor and Evaluate Internal Control Deliver & Support Acquire & Implement ■ Ensure Regulatory Compliance  Direct ■ Provide IT Governance Nb: Bold headings are author’s own categorisation & are not part of COBIT ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 17 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 18. COBIT Overview ME Relationship with PO / AI / DS Measure & Pre-Project Development Production Evaluate (ME) IT Strategy / Architecture / Portfolio Management Plan & Programme Management Organise (PO) (Generic) Project Management Measure & Evaluate IT IT Systems Devt Life Cycle Mgt Organisation Acquire & / Management Requirements Design & Test & Implement & Feasibility Build Implement Direct (AI) Manage (System-Related) Changes Procurement Management Deliver & Service Delivery Support (DS) Service Support Nb: Above is NOT part of COBIT. Used only to help in explaining the relationships within COBIT. ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 18 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 19. Other Elements of COBIT  Besides ■ Domains ■ Processes ■ Control Objectives  Some Key Elements ■ Management Guidelines • roles and responsibilities • goals and metrics ■ Maturity Model ■ Associated Toolkits (for ISACA members) • Implementation Guide • Assurance Guide ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 19 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 20. COBIT Mapping to Other Frameworks P3O TOGAF PRINCE2 PMP CITPM CMMI SCRUM CBAP COMIT ISO20000 CISSP ITIL Monitor & Plan & Organise CGEIT Evaluate COBIT Acquire & Deliver & Support Implement Nb: Some of the other frameworks can map to more than one COBIT domain (eg. ITIL/COBIT) but for simplicity, only one domain is mapped here ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 20 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 21. Future of COBIT as IT Management Framework – Draft COBIT v5 ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 21 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 22. Future of COBIT as IT Management Framework – Draft COBIT v5  Some Key New Features ■ Explicit recognition of COBIT as covering IT Management processes in addition to IT Governance processes ■ Identification of degree of involvement of IT and Business in the various processes ■ Enterprise Architecture (instead of Information Architecture of prior versions) ■ Consolidation into one new “Manage the IT Organisation” process those v4.1 processes that were for internal IT organisation support - eg. • Define IT Processes, Organization and Relationships • Communicate Management Aims and Direction • Manage IT Human Resources etc ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 22 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 23. For Further Information Please refer to: http://www.iss.nus.edu.sg/ Or email BoonNam Goh at: issgbn@nus.edu.sg ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 23 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/
  • 24. The End ATA/Lucid/2010-01-25 MUS/ © NUS. All Rights Reserved. 24 COBIT as IT Mgt Bst-Prctce Frmwrk.ppt/v1.0 http://www.iss.nus.edu.sg/