BIL 424 NETWORK ARCHITECTURE AND SERVICE PROVIDING.

Slides:



Advertisements
Similar presentations
1 NameMatrix Number Francis YeeHT036029M George Goh Alex LimHT052467E Hoe Swee SimHT052560I Vijay.
Advertisements

IT Web Application Audit Principles Presented by: James Ritchie, CISA, CISSP….
Alignment of Enterprise Governance and IT Governance
Analisa Proses. Terjemahan model analisis menjadi desain software.
Auditing Corporate Information Security John R. Robles Tuesday, November 1, Tel:
ACG 6415 SPRING 2012 KRISTIN DONOVAN & BETH WILDMAN IT Security Frameworks.
ITIL: Service Transition
Copyright 2005 CMMI and ITIL Alison Adams & Kieran Doyle.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
TI BISNIS ITG using COBIT &
COBIT Framework Source:
Centro de Convenciones, August 22-23, 2006
COBIT - II.
IT Governance Capability Maturity within Government
Roger Southgate Past President of ISACA London Chapter Member of the BSI Committees for Service Management and IT Governance Leader.
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
Dr. Julian Lo Consulting Director ITIL v3 Expert
IT Infrastructure Library ITIL vs COBIT. ANDRIAN EDUARD BANGGA IKHSAN BASKARA JOOVANNY PASUHUK RANGGA FAJARULLAH TEAM.
By Collin Smith COBIT Introduction By Collin Smith
Software life cycle processes Purpose n A new international standard (ISO/IEC 12207:1995(E) that –establishes a common framework for software life cycle.
Information Technology Service Management
The ISO/IEC family Lynda Cooper Co-author ISO20000 Project editor ISO20000 part 1 Principal UK Expert to ISO group ITIL Expert.
Viktorija Donceva Trajkovski & Partners Management Consulting Ohrid, May 2009.
ITIL as a Standard for Service Process Management Tavipark Sreesurichan.
Introduction to IT Auditing
COBIT®. COBIT - Control Objectives for Information and related Technology C OBI T was initially created by the Information Systems Audit & Control Foundation.
Information Security Framework & Standards
Continual Service Improvement Process
Engineering, Operations & Technology | Information TechnologyAPEX | 1 Copyright © 2009 Boeing. All rights reserved. Architecture Concept UG D- DOC UG D-
Information ITIL Technology Infrastructure Library ITIL.
The Challenge of IT-Business Alignment
Roles and Responsibilities
1. IT AUDITS  IT audits: provide audit services where processes or data, or both, are embedded in technologies.  Subject to ethics, guidelines, and.
CSI - Introduction General Understanding. What is ITSM and what is its Value? ITSM is a set of specialized organizational capabilities for providing value.
Roadmap to Maturity FISMA and ISO 2700x. Technical Controls Data IntegritySDLC & Change Management Operations Management Authentication, Authorization.
An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.
Committee of Sponsoring Organizations of The Treadway Commission Formed in 1985 to sponsor the National Commission on Fraudulent Financial Reporting “Internal.
IT Governance: COBIT, ISO17799 & ITIL. Introduction COBIT ITIL ISO17799Others.
ITIL Drivers for Government Scott Spencer Vice President, Program Management, GTSI.
Version 3.3 ITIL – IT Service Management An overview program for IT Service Management good practices.
COBIT®. COBIT® - Control Objectives for Information and related Technology. C OBI T was initially created by the Information Systems Audit & Control Foundation.
C OBI T and slides © 2007 IT Governance Institute. Used with permission. An Overview of C OBI T ®
ITIL VS COBIT 06 PLM - Group 9
Control and Security Frameworks Chapter Three Prepared by: Raval, Fichadia Raval Fichadia John Wiley & Sons, Inc
Introduction to ITIL and ITIS. CONFIDENTIAL Agenda ITIL Introduction  What is ITIL?  ITIL History  ITIL Phases  ITIL Certification Introduction to.
© | Hansan Global | All Rights Reserved 1 INTRODUCTION TO IT SERVICE MANAGEMENT Hansan Global Pte Ltd.
#325 - CobiT and Service Delivery Debra Mallette, CISA, CSSBB Kaiser Permanente IT.
Driving Value from IT Services using ITIL and COBIT 5 July 24, 2013 Gary Hardy ITWinners.
ITIL V3 Foundation Certification Exam Questions & Answers Sets Exin Certifications Presents.
COBIT. The Control Objectives for Information and related Technology (COBIT) A set of best practices (framework) for information technology (IT) management.
1 Using CobiT to Enhance IT Security Governance LHS © John Mitchell John Mitchell PhD, MBA, CEng, CITP, FBCS, MBCS, FIIA, CIA, CISA, QiCA, CFE LHS Business.
Service Design.
#245 - CobiT and Software Development Debra Mallette, CISA, CSSBB Kaiser Permanente IT & Monica Jain, CSQA Convansys.
ISACA Willamette Valley Chapter Luncheon Thursday, March 20, 2008 Practical Auditors Guide for CobiT Steve Balough, CISA.
Training Objectives Obtain knowledge of the ITIL terminology, structure and basic concepts and to comprehend the core principles of ITIL practices To.
Information ITIL Technology Infrastructure Library ITIL.
Introduction for the Implementation of Software Configuration Management I thought I knew it all !
ITIL: Service Transition
Thoughts on IT Enterprise Architecture Maturity Models for the
ITIL SERVICE LIFECYCLE
COMP532 IT INFRASTRUCTURE
Integrated Management System and Certification
Information Technology Service Management
Asset Governance – Integrated Strategic Asset Management
IT Governance Using COBIT® and Val IT™: Presentation, 2nd Edition
Alignment of COBIT to Botswana IT Audit Methodology
Assessment Workshop Title of the Project (date)
Portfolio, Programme and Project
EOSC Service management system
Presentation transcript:

BIL 424 NETWORK ARCHITECTURE AND SERVICE PROVIDING

IT SERVICE MANAGEMENT ( ITSM ) IT service management (ITSM) refers to the entirety of activities that are performed by an organization or part of an organization to plan, deliver, operate and control IT services offered to customers. ITSM is directed by policies, organized and structured in processes and supporting procedures. It is thus concerned with the implementation of quality IT services that meet the needs of customers, and is performed by the IT service provider through an appropriate mix of people, process and information technology.

IT SERVICE MANAGEMENT ( ITSM ) As a discipline, ITSM has ties and common interests with other IT and general management approaches, e.g., quality management, information security management and software engineering. Consequently, IT service management frameworks have been influenced by other standards and adopted concepts from them, e.g. CMMI, ISO 9000 or ISO/IEC 27000. CMMI(Capability Maturity Model Integration) models provide guidance for developing or improving processes that meet the business goals of an organization. A CMMI model may also be used as a framework for appraising the process maturity of the organization. CMMI originated in software engineering but has been highly generalized over the years to embrace other areas of interest, such as the development of hardware products, the delivery of all kinds of services, and the acquisition of products and services.

ISO/IEC 20000 ISO/IEC 20000 is the first international standard for IT service management. It was developed in 2005, by ISO/IEC JTC1/SC7 and revised in 2011.

ISO 20000 Processes Overall management system Planning and implementing service management Planning and implementing new/changed services Service delivery processes Capacity management Service continuity and availability management Service level management Service reporting Information security management Budgeting and accounting for IT services Release processes Release management Resolution processes Incident management Problem management Relationship processes Business relationship management Supplier management Control processes Configuration management Change management 09.05.2018

ITIL ITIL, formerly an acronym for Information Technology Infrastructure Library, is a set of practices for IT Service Management (ITSM) that focuses on aligning IT services with the needs of business. ITIL is constantly evolving and in its current form is known as ITIL 2011 edition, which is an updated expansion of ITIL 2007 edition (previously known as V3). V3 replaced V2 (phased out in June 2011) and provided a more holistic perspective on the full life cycle of services and supporting components needed to deliver services to the customer. In its current form (known as ITIL 2011 edition), ITIL is published as a series of five core volumes, each of which covers a different ITSM lifecycle stage.

ITIL ITIL describes procedures, tasks and checklists that are not organization-specific, used by an organization ….” (Wikipedia) ITIL provides a systematic approach to the provision and management of IT services, from inception through design, implementation, operation, and continual improvement. ITIL defines Service Management as “a set of specialized organizational capabilities for providing value to customers in the form of services. The capabilities take the form of functions and processes that are used to manage services over their lifecycle.”

ITIL The processes, procedures, functions and roles that facilitate effective IT service are defined in the five core ITSM Lifecycle stages: IT Service Strategy IT Service Design IT Service Transition IT Service Operation IT Continual Service Improvement

ITIL SERVICE LIFECYCLE The five core books cover each stage of the service lifecycle, from the initial definition and analysis of business requirements in Service Strategy and Service Design, through migration into the live environment within Service Transition, to live operation and improvement in Service Operation and Continual Service Improvement.

ITIL Lifecycle/Processes High Level Overview 5 stages Multiple processes per stage Natural life cycle of a service from pre-birth (planning) to retirement and replacement Many processes are familiar: Change Management Asset Management Incident and Problem Management

COBIT Control Objectives for Information and Related Technology (COBIT) is a framework created by ISACA (Information Systems Audit and Control Association) for information technology (IT) management and IT governance. It is a supporting toolset that allows managers to bridge the gap between control requirements, technical issues and business risks.

Key Driving Forces for COBIT How IT is organised to respond to the requirements What the stakeholders expect from IT The resources made available to—and built up by—IT Business Requirements IT Resources IT Processes Plan and Organise Aquire and Implement Deliver and Support Monitor and Evaluate Data Application systems Technology Facilities People Effectiveness Efficiency Confidentiality Integrity Availability Compliance Information reliability

Process Orientation Domains Natural grouping of processes, often matching an organisational domain of responsibility Processes A series of joined activities with natural control breaks Activities or Tasks Actions needed to achieve a measurable result—activities have a life cycle, whereas tasks are discrete

Process Orientation IT Domains IT Processes Activities Plan and Organise Acquire and Implement Deliver and Support Monitor and Evaluate IT Processes IT strategy Computer operations Incident handling Acceptance testing Change management Contingency planning Problem management Activities Record new problem. Analyse. Propose solution. Monitor solution. Record known problem. Etc. … Natural grouping of processes, often matching an organisational domain of responsibility A series of joined activities with natural (control) breaks Actions needed to achieve a measurable result—activities have a life cycle, whereas tasks are discrete

Cobit Framework IT Processes Defined Within Four Domains Monitoring Planning and Organization Delivery and Support Acquisition and Implementation

Planning and Organization P01 define a strategic IT plan P02 define the information architecture P03 determine the technological direction P04 define IT organization and relationships P05 manage the IT investment P06 communicate management aims and direction P07 manage human resources P08 ensure compliance with external requirements P09 assess risks P10 manage projects P11 manage quality

Acquisition and Implementation AI1 identify solutions AI2 acquire and maintain application software AI3 acquire and maintain technology architecture AI4 develop and maintain IT procedures AI5 install and accredit system AI6 manage changes acquire and maintain

Delivery and Support DS1 define service levels DS2 manage third party services DS3 manage performance and capacity DS4 ensure continuous service DS5 ensure system security DS6 identify and attribute cost DS7 educate and train users DS8 assist and advise IT customers DS9 manage the configuration DS10 manage problems and incidents DS11 manage data DS12 manage facilities DS13 manage operations

Monitoring M1 monitor the processes M2 asses internal control adequacy M3 obtain independent assurance M4 provide for independent audit