Plug and Socket Preparing IT Management for Governance Rob England v6v6.

Slides:



Advertisements
Similar presentations
Presented by. © 2012 ISACA. All rights reserved. No part of this publication may be used, copied, reproduced, modified, distributed, displayed, stored.
Advertisements

Auditing, Assurance and Governance in Local Government
Business Architecture
ITIL v3 Overview Rob Goodwin-Davey.
Roger Southgate Past President of ISACA London Chapter Member of the BSI Committees for Service Management and IT Governance Leader.
Using COBIT and ITIL Robert E Stroud CGEIT
AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.
Program Management Overview (An Introduction)
Information Security Governance and Risk Chapter 2 Part 1 Pages 21 to 69.
Aust. AM Collaborative Group (AAMCOG) An introduction to ISO “What to do” guide 20th October 2014.
How can projects be controlled?
Privileged and Confidential Strategic Approach to Asset Management Presented to October Urban Water Council Regional Seminar.
Project Risk Management
Project Human Resource Management
© 2010 Plexent – All rights reserved. 1 Change –The addition, modification or removal of approved, supported or baselined CIs Request for Change –Record.
Information Security Governance 25 th June 2007 Gordon Micallef Vice President – ISACA MALTA CHAPTER.
Continual Service Improvement Process
Organize to improve Data Quality Data Quality?. © 2012 GS1 To fully exploit and utilize the data available, a strategic approach to data governance at.
GRC - Governance, Risk MANAGEMENT, and Compliance
Internal controls. Session objectives Define Internal Controls To understand components of Internal Controls, control environment and types of controls.
Roles and Responsibilities
Challenges in Infosecurity Practices at IT Organizations
Good corporate governance makes good business sense
CSI - Introduction General Understanding. What is ITSM and what is its Value? ITSM is a set of specialized organizational capabilities for providing value.
WHAT IS IT? Balanced Scorecard A framework that sets visual strategies for the co-workers to translate them into actions to improve the main perspectives.
ITIL Framework. What is ITIL ? ITIL stands for the Information Technology Infrastructure Library. ITIL is the international de facto management framework.
The Connection between Risk Management and Internal Control in Organizations Mag. Norbert Wagner Budapest,
ITIL Drivers for Government Scott Spencer Vice President, Program Management, GTSI.
Copyright © Houghton Mifflin Company. All rights reserved.
IT GOVERNANCE  Objective : The objective of this area is to ensure that the Certified Information Systems Auditor ( CISA ) candidate understands and can.
Risk Management - “Local Government Pitfalls.” IMFO – Sustainability Workshop Risk Management 30 March
COBIT®. COBIT® - Control Objectives for Information and related Technology. C OBI T was initially created by the Information Systems Audit & Control Foundation.
QUALITY SYSTEMS ISO 9000 STANDARDS ISO 9000 ISO 9001 ISO 9002 ISO 9003.
S5: Internal controls. What is Internal Control Internal control is a process Internal control is a process Internal control is effected by people Internal.
TMS - Cooperation partner of TÜV SÜD EFFECTIVE SERVICE MANAGEMENT based on ISO/IEC & ISO/IEC
Thinking about Governance A workshop for Executive Council of Multicultural New Zealand 9 August 2015 Nicola Sutton.
12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)
Swedish Risk Management System Internal management and control Aiming to Transport Administration with reasonable certainty to.
2/20/2016 Leveraging IT Governance and COBIT Chip Council, PhD, CGEIT, CISM, CISA Matt Schmidt, MS, CISSP, CISA Adjunct Professors, University of Minnesota.
What is Governance? Policies, Business Rules, Org Structures & Control Process Standards Work Values & Code of Code (behaviour rules) Legislative Rules.
© | Hansan Global | All Rights Reserved 1 INTRODUCTION TO IT SERVICE MANAGEMENT Hansan Global Pte Ltd.
Getting to Grips with CobiT – Enterprise Architecture, a conseptual approach to IT Covernance or how to understand the difference between IT Governance.
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Technology for better business outcomes.
Driving Value from IT Services using ITIL and COBIT 5 July 24, 2013 Gary Hardy ITWinners.
Trinity Industries, Inc. FEI Presentation May 31, 2012.
Business Ethics 1 كلية العلوم والدراسات الانسانية بالغاط Chapter 3: Stakeholder Relationships, Social Responsibility, and Corporate Governance.
Presented by. Information! Information is a key resource for all enterprises. Information is created, used, retained, disclosed and destroyed. Technology.
COBIT 5 Executive Summary © 2012 ISACA. All rights reserved.1.
1 Using CobiT to Enhance IT Security Governance LHS © John Mitchell John Mitchell PhD, MBA, CEng, CITP, FBCS, MBCS, FIIA, CIA, CISA, QiCA, CFE LHS Business.
Integrated permitting and inspections
Dr. Yeffry Handoko Putra, M.T
COBIT 5 Executive Summary
A Governance and Management System for POPI, ISO 27001, CGICT, King IV
IIASA Governance Review
How can an Enterprise Risk Management (ERM), programme enable organizations achieve strategic objectives more effectively? Dr P S Sahota  
Steering Policy and Steering Systems
COBIT 5 Executive Summary
COBIT 5 and GRC Date.
همسویی چارچوب‏هاو به‏روشهای حاکمیت و مدیریت فناوری اطلاعات
COBIT 5 Executive Summary
Copyright © 2009 PMI RiskSIG
IS Risk Management Framework Overview
COBIT 5 Executive Summary
December 5, 2018.
REGIONAL LOCAL GOVERNMENT BUDGET CONFERENCES
COBIT 5 and GRC Date.
COBIT 5 and GRC Date.
COBIT 5 and GRC Date.
Strategic Management and
Strategic Management and
Presentation transcript:

Plug and Socket Preparing IT Management for Governance Rob England v6v6

"The main reasons for negative outcomes are the emphasis on the technical, financial and scheduling aspects of IT activities rather than on the whole business context of IT use... "Effective governance of IT assist[s] those at the highest level of organisations to understand and fulfil their legal, regulatory and ethical obligations in respect of their organisation's use of IT" ISO/IEC 38500

Terminology Governance Governance fulfilment Executive Management IT Governance Corporate Governance of IT Enterprise Governance of IT

Governance Governors Managers Governance Governance fulfillment Management delegationescalationaccountability Owners

Governance Governors Managers Governance Governance fulfillment Management Execution IT Governors IT Managers IT Governance IT Governance fulfillment IT Management IT Execution Governors Managers Governance Governance fulfillment Management Execution

Governance Governors Managers Governance Governance fulfillment Management Execution Governors Managers Governance Governance fulfillment Management Execution Governance of IT IT Management IT Execution IT Governance fulfillment Line-of-business owners and CIO

Governors Managers Governance Governance fulfillment Management Execution ISO evaluate monitor direct

plan do check act evaluate monitor direct vision strategies policies performance conformance plans proposals

Governors Managers Strategy Policy Plans Processes Direct Evaluat e Monitor

Governors Managers Strategy Policy Plans Processes Strategy Policy Plans Strategy Policy

Plug and Socket When the governors come governing

Plug and socket Governors Managers Governance Governance fulfillment Management Execution plug and socket Governors Managers Governance Governance fulfillment Management Execution

Plug and socket Governance fulfillment Management Direct MonitorEvaluate

Direct Delegations, steering committee(s) Vision, strategies and policies Decisions

Plug (Governance)Socket (Management) StrategicVision, goals Broad strategy Fulfilment policy Strategy(s) TacticalPolicy framework Policy system Broad policy (bounds, rules, decisions) Plans Practices OperationalProcedures Tools Direct

Monitor Responsibility Risk Conformance Performance, objectives Capability, capacity to implement Investments

Monitor Balanced scorecard, KPIs Risk analysis Compliance audit Capability analysis

Socket (Governance)Plug (Management) StrategicAchievement Risk Intelligence TacticalPerformance Compliance Capability Balanced scorecard Audit OperationalRegisters Reports Monitor

Balanced scorecard My favourite: effectiveness efficiency quality/reliability customer value From Waltzing With The Elephant processes followed decisions correct risks controlled problems fixed or see ISACA's Unlocking Value, p19 for an example of the classic financial customer internal learning and growth

Evaluate Environment Service and project portfolios Proposals: strategy, projects, plans, opportunities, contracts Ongoing operations: performance, conformance, escalations

Socket (Governance)Plug (Management) StrategicPlans (for review)Planning Portfolios TacticalProposals (for review) Escalations (for decision) Programmes Change OperationalDecision processes (structures, roles, escalations) Evaluate

Governance cycles Decisions Proposals, reports Strategy, reviews, audit

References ISACA COBIT 5 ISO/IEC Corporate Governance of IT NCC IT Governance ITIL Service Strategy 2011 Waltzing with the Elephant, Mark Toomey

© Copyright 2012 Two Hills Ltd All rights reserved Governance fulfillment Management Direct MonitorEvaluate Governance Execution

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.