How to use C OBI T implementation resources Brian Selby Director of C OBI T Initiatives ISACA.

Slides:



Advertisements
Similar presentations
PQF Induction: Small group delivery or 1-1 session.
Advertisements

Business Improvement Review Knowledge Understanding Action.
Migrant Education Comprehensive Needs Assessment
Develop an Information Strategy Plan
Alignment of COBIT to Botswana IT Audit Methodology
Instant Business Improvement “Managing Operational Performance”
Using training packages to meet client needs Facilitator: Gerard Kell.
<<Date>><<SDLC Phase>>
Strategy 2022: A Holistic View Tony Hayes International President ISACA © 2012, ISACA. All rights reserved.
Jim Johnson Amy Harper. congress.nsc.org Shared Challenge: Moving the Curve No. Companies Safety Performance Voluntary ParticipationEnforcement Motivate.
SC2 meeting 24 November 2014 Security Measures and Resources Toolbox
Roger Southgate Past President of ISACA London Chapter Member of the BSI Committees for Service Management and IT Governance Leader.
By Collin Smith COBIT Introduction By Collin Smith
Rational Unified Process
Quality evaluation and improvement for Internal Audit
Certified Business Process Professional (CBPP®)
Orientation to the Physical Education K to 7 Integrated Resource Package 2006.
Your High-Level Overview of the Components Provided by ESP Solutions Group Disaster Prevention and Recovery.
Software Engineer Report What should contains the report?!
1-2 Training of Process FacilitatorsTraining of Coordinators 3-1.
Coaching for School Improvement: A Guide for Coaches and Their Supervisors An Overview and Brief Tour Karen Laba Indistar® Summit September 2, 2010.
Chapter 2: Business Intelligence Capabilities
1 Introducing BSI Health & Safety Self-assessment Online.
1 Data Strategy Overview Keith Wilson Session 15.
Conducting the IT Audit
COBIT 5: Framework, BMIS, Implementation and future Information Security Guidance Presented by.
COBIT® 5 for Risk Introduction
Project Human Resource Management
What is Business Analysis Planning & Monitoring?
Wilma Ann Jancuk Executive Director AT&T Environment, Health and Safety 05/25/00 e-EH&S EHS COMPLIANCE ASSESSMENT PROGRAM ON THE WEB.
COBIT®. COBIT - Control Objectives for Information and related Technology C OBI T was initially created by the Information Systems Audit & Control Foundation.
A Forum on Comprehensive Community Initiatives How Federal Agencies Can Foster Systems Change to Improve the Lives of Youth and Families Welcome to.
Change Measurement Workbench Introduction January 2012.
©2009 OCS, Inc Hospice and Palliative Care Association of Iowa QAPI Snapshot Program Presented by Becky Anthony Roger Herr.
1 Session Number Presentation_ID © 2001, Cisco Systems, Inc. All rights reserved. Using the Cisco TAC Website for IP Routing Issues Cisco TAC Web Seminar.
1 Our Expertise and Commitment – Driving your Success An Introduction to Transformation Offering November 18, 2013 Offices in Boston, New York and Northern.
‘One Sky for Europe’ EUROCONTROL © 2002 European Organisation for the Safety of Air Navigation (EUROCONTROL) Page 1 VALIDATION DATA REPOSITORY Overview.
POSITIVE BEHAVIOUR FOR LEARNING - website and toolkit 27 April 2012.
Aug 8, a|EA-DC Forumaeaassociation.org 1 Serve Actionable Knowledge Empower Agile Architects Tyson Brooks, BAE Systems Haiping Luo, Government Printing.
Demystifying the Business Analysis Body of Knowledge Central Iowa IIBA Chapter December 7, 2005.
The Challenge of IT-Business Alignment
CSI - Introduction General Understanding. What is ITSM and what is its Value? ITSM is a set of specialized organizational capabilities for providing value.
December 14, 2011/Office of the NIH CIO Operational Analysis – What Does It Mean To The Project Manager? NIH Project Management Community of Excellence.
1.  Describe an overall framework for project integration management ◦ RelatIion to the other project management knowledge areas and the project life.
What is a Business Analyst? A Business Analyst is someone who works as a liaison among stakeholders in order to elicit, analyze, communicate and validate.
ISM 5316 Week 3 Learning Objectives You should be able to: u Define and list issues and steps in Project Integration u List and describe the components.
GEO Work Plan Symposium 2012 ID-03: Science and Technology in GEOSS ID-03-C1: Engaging the Science and Technology (S&T) Community in GEOSS Implementation.
FLAGSHIP STRATEGY 1 STUDENT LEARNING. Student Learning: A New Approach Victorian Essential Learning Standards Curriculum Planning Guidelines Principles.
Introduction to the Continual Service Improvement Toolkit Welcome.
United Nations Economic Commission for Europe Statistical Division Data Initiatives: The UNECE Gender Database and Website Victoria Velkoff On behalf of.
COBIT®. COBIT® - Control Objectives for Information and related Technology. C OBI T was initially created by the Information Systems Audit & Control Foundation.
Business Analysis. Business Analysis Concepts Enterprise Analysis ► Identify business opportunities ► Understand the business strategy ► Identify Business.
1  [company] Inc. [year] Girl Scouts of the USA Secure Site Project Kickoff [date]
Proposed Preliminary Statewide Full Service Partnership Classification System BASED ON STAKEHOLDER FEEDBACK THIS REPORT IS THE MENTAL HEALTH SERVICES OVERSIGHT.
Audience Profiles RoleKey CharacteristicsValues & NeedsRecommendations C-Level Execs Challenge and opportunity is to capitalize on executives’ critical.
Leadership Guide for Strategic Information Management Leadership Guide for Strategic Information Management for State DOTs NCHRP Project Information.
+ Welcome to PAHO/WHO Sustainable Development and Health Toolkit for the UN Global Conference RIO + 20 Welcome to PAHO/WHO Sustainable Development and.
Enterprise Architectures Course Code : CPIS-352 King Abdul Aziz University, Jeddah Saudi Arabia.
Info-Tech Research Group1 1 Info-Tech Research Group, Inc. is a global leader in providing IT research and advice. Info-Tech’s products and services combine.
Planning Engagement Kickoff
Michael J. Novak ASQ Section 0511 Meeting, February 8, 2017
Projects, Events and Training
Alignment of COBIT to Botswana IT Audit Methodology
Employee engagement Delivery guide
COBIT 5: Framework, BMIS, Implementation and future Information Security Guidance Presented by.
TECHNOLOGY ASSESSMENT
Project Management Body of Knowledge
Improving academic performance Building language skills Developing critical thinking Expressing ideas and opinions Ask the audience: What are the core.
WORKSHOP Establish a Communication and Training Plan
Bridging the ITSM Information Gap
Presentation transcript:

How to use C OBI T implementation resources Brian Selby Director of C OBI T Initiatives ISACA

2 Introduction This session will introduce the ITGI resources created to help an enterprise with the C OBI T implementation process: –C OBI T Quickstart; –IT Governance Implementation Guide; and –C OBI T Online. There will be time for an open discussion to cover C OBI T implementation questions, approaches and experiences at the end of the session

3 C OBI T Components A reminder:

4 C OBI T Quickstart In examining the contents of this publication, we will review: –Quickstart purpose and audience and –Quickstart suitability tests; –Quickstart controls baseline; –Quickstart diagnostic tables

5 Quickstart purpose C OBI T QuickStart is designed to assist in rapid and easy adoption of the important elements of C OBI T. It is a summarized version of C OBI T resources. It focuses on key IT processes, control objectives, and metrics and helps users gain the benefits of C OBI T quickly.

6 Quickstart audience COBIT QuickStart is aimed at small and medium sized enterprises (SMEs), and other entities where: – IT is not strategic or absolutely critical for survival – Breadth and depth of COBIT is too detailed or too time consuming to analyze and focus on initially

7 Quickstart suitability tests Quickstart provides two tests to assess an enterprise’s suitability for implementing control over IT based on the Quickstart set of controls: –Test 1: ‘Stay in the blue zone’, helps assess enterprise suitability to use Quickstart –Test 2: ‘Watch the heat’, looks for any need to go beyond Quickstart for specific business reasons

8 Quickstart controls baseline COBIT QuickStart provides a baseline of control objectives. In large organizations, the baseline is a useful tool to accelerate adoption of governance best practices. The summarized baseline (as compared to COBIT): Domains Processes Control Obj’s QuickstartC OBI T

9 Quickstart diagnostic tables Appendix I of the publication provides two diagnostic tables to help quickly identify the controls that need to be addressed –The first table links risk factors to IT governance aspects and Technology issues; –The second table links Quickstart control objectives to the same IT governance aspects and Technology issues

10 IT Governance Implementation Guide In examining the contents of this publication, we will: –Understand the overall approach; –Look at the links to the IT governance picture; –Walk through the implementation road-map; –Look at the steps involved; –Review the supporting toolkit

11 Guide Overview An educational resource for boards of directors, executive management and information technology control professionals. The guide presents a generic methodology that addresses: –Why IT governance is important; –How COBIT ids linked to IT governance; –Implementing IT governance using COBIT

12 IT Governance value propositions

13 Overall approach The approach is to create strategies for business value and risk analysis. It involves gap analysis by looking at As-is and To-be positions leading to project identification and initiation.

14 Link to the ITGI IT governance domains

15 Link to the ITGI IT governance domains

16 Implementation Guide roadmap assists different stakeholders with a detailed roadmap that helps the organization in implementing its IT governance needs. ensures that the focus is on business needs when improving control and governance of IT processes. represents a project that can be fairly large and that requires strict project management practices and thorough management involvement and oversight. a “bootstrap” for IT governance, after which the enterprise should move into a continuous IT governance cycle, reusing the elements of this road map as required.

17 Implementation Guide roadmap The roadmap provides the identification of COBIT components to be leveraged during an implementation action plan, from initial needs identification phase all the way through to the implementation of the solution, passing through envisioning and planning phases.

18 Implementation Guide steps Each of the four phases of the implementation action plan are introduced with the steps to be taken, the suggested roles of the major enterprise stakeholders and the COBIT support available. All 12 steps are presented in detail, with: –Process step name and reference; –Process objective; –Process (description); –Tasks; –Input; –Using COBIT components; –Output; –Tool kit support

19 Implementation Guide steps Phase 1 – Identify Needs –Step 1: Raise Awareness and make Decision on Approach –Step 2: Analyse values –Step 3: Analyse risks –Step 4: Select Target IT Processes Phase 2 – Envision Solution –Step 5: Define where you are –Step 6: Define where you want to be –Step 7: Analyse Gaps

20 Implementation Guide steps Phase 3 – Plan solution –Step 8: Define Projects –Step 9: Develop Improvement Plan Phase 4 – Implement Solution –Step 10: Integrate into Day-to-day practices –Step 11: Integrate measures into IT Balanced Scorecard –Step 12: Post-implementation Review

21 Implementation Tool Kit Implementation Guide identifies COBIT components and provides tool kit items to support the completion of each Roadmap action plan phase and step.

22 The tool kit material comes on a ‘Supplemental tools and materials’ CD: Implementation Tool Kit

23 A tool I found particularly useful.. I facilitated use of a management awareness spreadsheet tool with an IT management team and got good buy in to the collective results obtained..

24 C OBI T Online In looking at C OBI T Online we will learn: –How to access, filter and download the C OBI T content needed; –How to benchmark your organization against others; –How to participate in the C OBI T Online user community

25 C OBI T Online Overview C OBI T Online presents C OBI T knowledge in a uniform and user-friendly fashion. It is a web-based multi-user browsing, searching, sharing and assessment tool. It supports downloads (text, forms, database), benchmark comparisons and gap analysis. It serves as an interface to maintain C OBI T content & implement future versions by recording filtered feedback information, capturing expert knowledge, providing frequent online updates and automatic print production.

26 C OBI T Online access Access to C OBI T Online section is by subscription Subscription options available: –Baseline (also, Basic subscriber – an ISACA member benefit) ; –Full Subscriber –Full Subscriber + Benchmarking For full details, follow the links from the ISACA or ITGI home pages

27 Welcome to C OBI T Online

28 5 C OBI T Online components Browsing - provides online search and extract access to C OBI T content over the Internet; Benchmarking - enables users to input values for their enterprise and compare them against other user data; Feedback & surveys - user feedback can bee provided from any screen. A survey feature is included to allow ISACA/ITGI to obtain feedback on specific topics from users; Community - available for users to meet, post questions, reply to questions and exchange experiences; Help - FAQ, glossary, search and support are available on each page and are easy to navigate and search

29 COBIT Online demonstration Lets take a look at the real thing … access, filter and download COBIT content; benchmark your organization against others; participate in the COBIT Online user community

30 The ‘bad’ news … Implementing COBIT is done to address different issues in different enterprises –Different enterprises have different control cultures, risk tolerance profiles and legal and regulatory compliance requirements –Each enterprise has unique priorities and resource constraints to manage So, implementing C OBI T has to be an initiative that is specifically tailored to address these issues in each enterprise.

31 The good news … There are quality resources available to support the tailored implementation of C OBI T The summarized COBIT information in Quickstart, the roadmap action plan in the IT Governance Implementation Guide and the accessibility and flexibility of C OBI T Online are a powerful combination

32 Q&A roundtable What questions do you have on the implementation resources we have looked at? Do you have any feedback to share on your C OBI T implementation approaches or experiences? ????????

33 For More Information: Brian Selby Director of C OBI T initiatives ISACA

Thank you!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.