12-CRS-0106 REVISED 8 FEB 2013 EDM (Evaluate, Direct, and Monitor) CDG4I3 / Audit Sistem Informasi Angelina Prima K | Gede Ary W. KK SIDE - 2014.

Slides:

Advertisements

Similar presentations

COBIT 5 and GRC Date.

Advertisements

Presented by. © 2012 ISACA. All rights reserved. No part of this publication may be used, copied, reproduced, modified, distributed, displayed, stored.

Risk The chance of something happening that will have an impact on objectives. A risk is often specified in terms of an event or circumstance and the consequences.

Microsoft Operations Framework (MOF) 4.0

What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.

Chapter 10 Accounting Information Systems and Internal Controls

Primary Benefit Types Value Discipline Benefits – Operating Excellence Reduce Cost Reduce Risk – Product Leadership Increase Revenue – Customer Intimacy.

Own Risk & Solvency Assessment (ORSA): The heart of Risk & Capital Management John Spencer Director, Ultimate Risk Solutions.

Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.

COBIT 5 and COSO 2013: Comparing the Frameworks

Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.

AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.

By Collin Smith COBIT Introduction By Collin Smith

Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.

COBIT Framework Introduction. Problems with IT? – Increasing pressure to leverage technology in business strategies – Growing complexity of IT environments.

Purpose of the Standards

The decision of whether to establish and maintain an internal audit function or outsource the function should be made by the company’s.

Information Systems Controls for System Reliability -Information Security-

PAINTING THE FULL PICTURE

COBIT 5: Framework, BMIS, Implementation and future Information Security Guidance Presented by.

Release & Deployment ITIL Version 3

DPE Shareholder Oversight & Risk Management

Continual Service Improvement Process

“ Heightened Expectations” for Corporate Governance AIBA 2 nd Annual Compliance Seminar June 14, 2012 Lester Miller, Senior International Advisor International.

COBIT Information Security An Introduction Tanvir Orakzai,PhD

IAEA International Atomic Energy Agency Reviewing Management System and the Interface with Nuclear Security (IRRS Modules 4 and 12) BASIC IRRS TRAINING.

CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.

Internal Control in a Financial Statement Audit

Overview of COBIT5 and Impact on Local Content for IT By Mrs Tokunbo Martins Director Banking Supervision (Central Bank of Nigeria)

Service Transition & Planning Service Validation & Testing

An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.

Committee of Sponsoring Organizations of The Treadway Commission Formed in 1985 to sponsor the National Commission on Fraudulent Financial Reporting “Internal.

Building Capability.  In order to successfully operate an architecture function within an enterprise, it is necessary to put in place appropriate organization.

TI Tata Kelola Sistem dan Teknologi Informasi BISNIS &

Building our Future: Programme Board TOR PURPOSE To be the governing forum for the design & effective delivery of the Building our Future Programme To.

The Connection between Risk Management and Internal Control in Organizations Mag. Norbert Wagner Budapest,

International Legal Regulation of the Securities Market Regulation of the securities market is an ordering activity of all its participants and transactions.

© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |

IT GOVERNANCE  Objective : The objective of this area is to ensure that the Certified Information Systems Auditor ( CISA ) candidate understands and can.

IT Risks and Controls Revised on Content Internal Control  What is internal control?  Objectives of internal controls  Types of internal controls.

Chapter 3 Governance.

Proventures reconnect session on Project Portfolio Management (PPM)

WMO Role of NMHSs in the WIGOS Implementation Mr F. Uirab Permanent Representative of Namibia with WMO.

12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)

12-CRS-0106 REVISED 8 FEB 2013 BAI (Build, Acquire, and Implement) CDG4I3 / Audit Sistem Informasi Angelina Prima K | Gede Ary W. KK SIDE

12-CRS-0106 REVISED 8 FEB 2013 MEA (Monitor, Evaluate, and Assess) CDG4I3 / Audit Sistem Informasi Angelina Prima K | Gede Ary W. KK SIDE

Driving Value from IT Services using ITIL and COBIT 5 July 24, 2013 Gary Hardy ITWinners.

Presented by. Information! Information is a key resource for all enterprises. Information is created, used, retained, disclosed and destroyed. Technology.

COBIT 5 Executive Summary © 2012 ISACA. All rights reserved.1.

Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.

COBIT. The Control Objectives for Information and related Technology (COBIT) A set of best practices (framework) for information technology (IT) management.

The International Professional Practices Framework

Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.

COBIT 5 Executive Summary

Understanding the Principles and Their Effect on the Audit

COBIT 5 Executive Summary

COBIT 5 and GRC Date.

Asset Governance – Integrated Strategic Asset Management

COBIT 5 Executive Summary

UNDERSTANDING….. THE GRC FRAMEWORK.

Outline What is governance and what does it comprise?

COBIT 5 Executive Summary

Portfolio, Programme and Project

COBIT 5: Framework, BMIS, Implementation and future Information Security Guidance Presented by.

December 5, 2018.

COBIT 5 and GRC Date.

COBIT 5 and GRC Date.

An overview of Internal Controls Structure & Mechanism

COBIT 5 and GRC Date.

Presentation transcript:

12-CRS-0106 REVISED 8 FEB 2013 EDM (Evaluate, Direct, and Monitor) CDG4I3 / Audit Sistem Informasi Angelina Prima K | Gede Ary W. KK SIDE

12-CRS-0106 REVISED 8 FEB 2013 EDM (Evaluate, Direct and Monitor) 01 Ensure governance framework setting and maintenance 02 Ensure beneﬁts delivery 03 Ensure risk optimization 04 Ensure resource optimization 05 Ensure stakeholder transparency

12-CRS-0106 REVISED 8 FEB 2013 EDM01 Ensure Governance Framework Setting and Maintenance Process Description Analyse and articulate the requirements for the governance of enterprise IT, and put in place and maintain effective enabling structures, principles, processes and practices, with clarity of responsibilities and authority to achieve the enterprise’s mission, goals and objectives. Process Purpose Statement Provide a consistent approach integrated and aligned with the enterprise governance approach. To ensure that IT-related decisions are made in line with the enterprise’s strategies and objectives, ensure that IT-related processes are overseen effectively and transparently, compliance with legal and regulatory requirements is confirmed, and the governance requirements for board members are met.

12-CRS-0106 REVISED 8 FEB 2013

EDM02 Ensure Benefits Delivery Process Description Optimise the value contribution to the business from the business processes, IT services and IT assets resulting from investments made by IT at acceptable costs. Process Purpose Statement Secure optimal value from IT-enabled initiatives, services and assets; cost-efficient delivery of solutions and services; and a reliable and accurate picture of costs and likely benefits so that business needs are supported effectively and efficiently.

12-CRS-0106 REVISED 8 FEB 2013

EDM03 Ensure Risk Optimisation Process Description Ensure that the enterprise’s risk appetite and tolerance are understood, articulated and communicated, and that risk to enterprise value related to the use of IT is identified and managed. Process Purpose Statement Ensure that IT-related enterprise risk does not exceed risk appetite and risk tolerance, the impact of IT risk to enterprise value is identified and managed, and the potential for compliance failures is minimised.

12-CRS-0106 REVISED 8 FEB 2013

EDM04 Ensure Resource Optimisation Process Description Ensure that adequate and sufficient IT-related capabilities (people, process and technology) are available to support enterprise objectives effectively at optimal cost. Process Purpose Statement Ensure that the resource needs of the enterprise are met in the optimal manner, IT costs are optimised, and there is an increased likelihood of benefit realisation and readiness for future change.

12-CRS-0106 REVISED 8 FEB 2013

EDM05 Ensure Stakeholder Transparency Process Description Ensure that enterprise IT performance and conformance measurement and reporting are transparent, with stakeholders approving the goals and metrics and the necessary remedial actions. Process Purpose Statement Make sure that the communication to stakeholder is effective and timely and the basis for reporting is established to increase performance, identify areas for improvement, and confirm that IT-related objectives and strategies are in line with the enterprise’s strategy.

12-CRS-0106 REVISED 8 FEB 2013

THANK YOU