COBIT Framework Introduction. Problems with IT? – Increasing pressure to leverage technology in business strategies – Growing complexity of IT environments.

Slides:



Advertisements
Similar presentations
COBIT 5 and GRC Date.
Advertisements

COBIT 5 for Information Security Introduction
Presented by. © 2012 ISACA. All rights reserved. No part of this publication may be used, copied, reproduced, modified, distributed, displayed, stored.
Analisa Proses. Terjemahan model analisis menjadi desain software.
Chapter 10 Accounting Information Systems and Internal Controls
Transforming Enterprise IT
It’s Time to Talk About Risk and Control
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
TI BISNIS ITG using COBIT &
COBIT - II.
IT Governance Capability Maturity within Government
Roger Southgate Past President of ISACA London Chapter Member of the BSI Committees for Service Management and IT Governance Leader.
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.
By Collin Smith COBIT Introduction By Collin Smith
Overview of IT Governance and
Information Security at KFUPM
Information Security Governance and Risk Chapter 2 Part 1 Pages 21 to 69.
COBIT 5: Framework, BMIS, Implementation and future Information Security Guidance Presented by.
COBIT® 5 for Risk Introduction
Information Technology Audit
Introduction to IT Auditing
COBIT®. COBIT - Control Objectives for Information and related Technology C OBI T was initially created by the Information Systems Audit & Control Foundation.
COBIT Information Security An Introduction Tanvir Orakzai,PhD
INFORMATION ASSURANCE USING C OBI T MEYCOR C OBI T CSA & MEYCOR C OBI T AG TOOLS.
Chapter Three IT Risks and Controls.
Overview:  Different controls in an organization  Relationship between IT controls & financial controls  The Mega Process Leads  Application of COBIT.
COBIT - IT Governance.
Auditing services for assurance in evaluation of companies’ information systems (technologies) efficiency Kherson State University Samchynska Yaroslava.
1. IT AUDITS  IT audits: provide audit services where processes or data, or both, are embedded in technologies.  Subject to ethics, guidelines, and.
Presented By Tay Un Soo Senior VP, Bank of Commerce President of ISACA - Malaysia Chapter 1999 National Accountants Conference THRIVING IN THE DIGITAL.
Overview of COBIT5 and Impact on Local Content for IT By Mrs Tokunbo Martins Director Banking Supervision (Central Bank of Nigeria)
An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.
Committee of Sponsoring Organizations of The Treadway Commission Formed in 1985 to sponsor the National Commission on Fraudulent Financial Reporting “Internal.
ITIL Framework. What is ITIL ? ITIL stands for the Information Technology Infrastructure Library. ITIL is the international de facto management framework.
IT Governance: COBIT, ISO17799 & ITIL. Introduction COBIT ITIL ISO17799Others.
COBIT 5 Introduction 28 February 2012.
IT Risks and Controls Revised on Content Internal Control  What is internal control?  Objectives of internal controls  Types of internal controls.
IT Controls Global Technology Auditing Guide 1.
Samantha Schreiner University of Illinois at Urbana- Champaign BA 559 – Professor Michael Shaw December 15 th, 2008 A Survey of IT Governance Through COBIT,
Presented by Peter Tessin, CISA, CRISC, MSA, PMP Technical Research Manager.
Institute of Internal Auditors COBIT Presentation October 9, 2001.
COBIT®. COBIT® - Control Objectives for Information and related Technology. C OBI T was initially created by the Information Systems Audit & Control Foundation.
C OBI T and slides © 2007 IT Governance Institute. Used with permission. An Overview of C OBI T ®
12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)
CobiT Executive Summary MBA512 - Information Systems and Technology reference "CobiT, 3rd Edition Executive Summary", July 2000CobiT, 3rd Edition Executive.
Control and Security Frameworks Chapter Three Prepared by: Raval, Fichadia Raval Fichadia John Wiley & Sons, Inc
Accounting and Information Systems: a powerful combination.
© | Hansan Global | All Rights Reserved 1 INTRODUCTION TO IT SERVICE MANAGEMENT Hansan Global Pte Ltd.
Deck 5 Accounting Information Systems Romney and Steinbart Linda Batch February 2012.
BA 559: IT Governance Ben Tsao. What is COBIT?  Control Objectives for Information and Related Technology  Control framework for IT  A set of best.
#325 - CobiT and Service Delivery Debra Mallette, CISA, CSSBB Kaiser Permanente IT.
Driving Value from IT Services using ITIL and COBIT 5 July 24, 2013 Gary Hardy ITWinners.
Presented by. Information! Information is a key resource for all enterprises. Information is created, used, retained, disclosed and destroyed. Technology.
COBIT 5 Executive Summary © 2012 ISACA. All rights reserved.1.
COBIT. The Control Objectives for Information and related Technology (COBIT) A set of best practices (framework) for information technology (IT) management.
1 Using CobiT to Enhance IT Security Governance LHS © John Mitchell John Mitchell PhD, MBA, CEng, CITP, FBCS, MBCS, FIIA, CIA, CISA, QiCA, CFE LHS Business.
12-CRS-0106 REVISED 8 FEB 2013 EDM (Evaluate, Direct, and Monitor) CDG4I3 / Audit Sistem Informasi Angelina Prima K | Gede Ary W. KK SIDE
ISACA Willamette Valley Chapter Luncheon Thursday, March 20, 2008 Practical Auditors Guide for CobiT Steve Balough, CISA.
COBIT 5 Executive Summary
BIL 424 NETWORK ARCHITECTURE AND SERVICE PROVIDING.
COBIT 5 Executive Summary
COBIT 5 and GRC Date.
COBIT 5 Executive Summary
COBIT 5 Executive Summary
December 5, 2018.
COBIT 5 and GRC Date.
COBIT 5 and GRC Date.
COBIT 5 and GRC Date.
Presentation transcript:

COBIT Framework Introduction

Problems with IT? – Increasing pressure to leverage technology in business strategies – Growing complexity of IT environments – Fragmented IT infrastructures – Communication gap between business and IT managers – IT service levels that are disappointing from internal IT functions and from increasingly outsourced IT providers – IT costs perceived to be out of control – Marginal ROI/productivity gains on technology investments – Impaired organisational flexibility and nimbleness to change – User frustration leading to ad hoc solutions

IT Governance The purpose of IT governance is to direct IT endeavors, to ensure that IT’s performance meets the following objectives: Alignment of IT with the enterprise and realisation of the promised benefits Use of IT to enable the enterprise by exploiting opportunities and maximising benefits Responsible use of IT resources Appropriate management of IT-related risks

Focus Areas of IT Governance

Why do we need a Framework? Increasing dependence on information and the systems that deliver this information Increasing vulnerabilities and a wide spectrum of threats, such as cyberthreats and information warfare Scale and cost of the current and future investments in information and information systems The need to comply with regulations The potential for technologies to dramatically change organisations and business practices, create new opportunities and reduce costs Recognition by many organisations of the potential benefits that technology can yield

Successful organisations understand and manage the risks associated with implementing new technologies. Firms need to ensure that - 1.IT provides value - Cost, time and functionality are as expected 2. IT does not provide surprises - Risks are mitigated 3. IT pushes the envelope - New opportunities and innovations for process, product and services

Who Needs a Framework? Board and Executive – To ensure management follows and implements the strategic direction for IT Management – To make IT investment decisions – To balance risk and control investment – To benchmark existing and future IT environment Users – To obtain assurance on security and control of products and services they acquire internally or externally Auditors – To substantiate opinions to management on internal controls – To advise on what minimum controls are necessary

COBIT Control Objectives for Information and related Technology (COBIT) is a set of best practices (framework) for IT management created by the Information systems audit and control association (ISACA), 1. Incorporates major international standards 2. Has become the de facto standard for overall control over IT 3. Starts from business requirements 4. Is process-oriented

 Starts from the premise that IT needs to deliver the information that the enterprise needs to achieve its objectives  Promotes process focus and process ownership  Divides IT into 34 processes belonging to four domains and provides a high-level control objective for each  Considers fiduciary, quality and security needs of enterprises, providing seven information criteria that can be used to generically define what the business requires from IT  Is supported by a set of over 300 detailed control objectives l Effectiveness l Efficiency l Availability l Integrity l Confidentiality l Reliability l Compliance l Plan and Organise l Acquire and Implement l Deliver and Support l Monitor and Evaluate C OBI T: Basics?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.