Samantha Schreiner University of Illinois at Urbana- Champaign BA 559 – Professor Michael Shaw December 15 th, 2008 A Survey of IT Governance Through COBIT,

Slides:



Advertisements
Similar presentations
IT Governance & Quality Management
Advertisements

Lisanne Sison Director ERM Bickmore
Chapter 10 Accounting Information Systems and Internal Controls
IT Governance Infocom India Presentation December 6, 2006.
DOD Counterfeit Parts: The ISO Asset Management System Opportunity June 16, 2014 Asset Leadership Network Presenter: Jim Dieter, Executive Director.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Improving IT Governance Through Formal Change Management
By Collin Smith COBIT Introduction By Collin Smith
Environmental Management Systems Refresher
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
ISO 9001:2015 “Risk Based Thinking”
COBIT Framework Introduction. Problems with IT? – Increasing pressure to leverage technology in business strategies – Growing complexity of IT environments.
ISO 9001:2015 “Risk Based Thinking”
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
How can projects be controlled?
Session 4: Good Governance: How SAIs influence Good Governance in Public Administration Zahira Ravat 27 & 28 May 2014.
Control environment and control activities. Day II Session III and IV.
Chicagoland IASA Spring Conference
Information Technology Audit
COBIT®. COBIT - Control Objectives for Information and related Technology C OBI T was initially created by the Information Systems Audit & Control Foundation.
Information Security Framework & Standards
© 2011 Cengage Learning. All Rights Reserved. May not be scanned, copied or duplicated, or posted to a publicly accessible website, in whole or in part.
An Overview of Environmental Management Systems (EMS)
Continual Service Improvement Process
Fraud & Internal Control Frank M. Klaus, CPA. Fraud Definition  Fraud is the misappropriation of assets for the benefit of an individual.  “Willful.
Safety Driven Performance Conference 2013 The future of managing asset-intensive businesses John Keefe APM/RBMI Technical Manager Asset Integrity Services.
NIST Special Publication Revision 1
Demystifying the Business Analysis Body of Knowledge Central Iowa IIBA Chapter December 7, 2005.
IT Governance
The Challenge of IT-Business Alignment
Chapter Three IT Risks and Controls.
Monitoring Internal Control Systems Johann Rieser Senior Auditor, Ministry of Finance, Vienna.
Roles and Responsibilities
Overview of COBIT5 and Impact on Local Content for IT By Mrs Tokunbo Martins Director Banking Supervision (Central Bank of Nigeria)
An Integrated Control Framework & Control Objectives for Information Technology – An IT Governance Framework COSO and COBIT 4.0.
1 Information Technology (IT) Auditing & Control Instructor: Dr. Princely Ifinedo Cape Breton University (CBU)
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
Disaster Recover Planning & Federal Information Systems Management Act Requirements December 2007 Central Maryland ISACA Chapter.
Copyright © 2007 Pearson Education Canada 1 Chapter 1: The Demand for Auditing and Assurance Services.
© 2007 Pearson Education Managing Quality Integrating the Supply Chain S. Thomas Foster Chapter 16 Implementing and Validating the Quality System.
Sustain your business with IT Governance Grow your business with IT Service Management Parry McGill Competitive in our pricing through comparable industry.
IT GOVERNANCE  Objective : The objective of this area is to ensure that the Certified Information Systems Auditor ( CISA ) candidate understands and can.
Institute of Internal Auditors COBIT Presentation October 9, 2001.
COBIT®. COBIT® - Control Objectives for Information and related Technology. C OBI T was initially created by the Information Systems Audit & Control Foundation.
ISO 9001:2015 Risk-based thinking
ITIL VS COBIT 06 PLM - Group 9
2/20/2016 Leveraging IT Governance and COBIT Chip Council, PhD, CGEIT, CISM, CISA Matt Schmidt, MS, CISSP, CISA Adjunct Professors, University of Minnesota.
Control and Security Frameworks Chapter Three Prepared by: Raval, Fichadia Raval Fichadia John Wiley & Sons, Inc
2014 NPMA Spring Seminar Value Through Professional Asset Management Implementing ISO Contracts Jim Dieter.
Employee Orientation to ISO Sygnetics, Inc. is committed to quality. ‘Quality’ is the ability to consistently produce a product or service that.
© | Hansan Global | All Rights Reserved 1 INTRODUCTION TO IT SERVICE MANAGEMENT Hansan Global Pte Ltd.
BA 559: IT Governance Ben Tsao. What is COBIT?  Control Objectives for Information and Related Technology  Control framework for IT  A set of best.
Driving Value from IT Services using ITIL and COBIT 5 July 24, 2013 Gary Hardy ITWinners.
Internal Control Process at Geneseo. Objectives Understand the objectives of effective internal controls Describe Geneseo’s internal control program Accurately.
COBIT. The Control Objectives for Information and related Technology (COBIT) A set of best practices (framework) for information technology (IT) management.
Safety Management Systems Session Four Safety Promotion APTA Webinar June 9, 2016.
What is ISO Certification? Information is a valuable asset that can make or break your business. When properly managed it allows you to operate.
Auditors’ Dilemma – reporting requirements on Internal Financial Controls under the Companies Act 2013 and Clause 49 of the Listing agreement V. Venkataramanan.
Copyright © 2011 Pearson Canada Inc. Auditing: The Art and Science of Assurance Engagements Chapter 2: The Public Accounting Profession.
BIL 424 NETWORK ARCHITECTURE AND SERVICE PROVIDING.
Training Course on Integrated Management System for Regulatory Body
Data Architecture World Class Operations - Impact Workshop.
IT Professional Perspective IT Strategy, Policy and Governance
INTRODUCTION TO ISO 9001:2015 FOR IMPLEMENTATION Varinder Kumar CISA, ISO27001 LA, ISO 9001 LA, ITIL, CEH, MEPGP IT, Certificate course in PII & Privacy.
Following Up on Internal Audit Reports Workshop on IIA Standard 2500
COSO Internal Control s Framework
همسویی چارچوب‏هاو به‏روشهای حاکمیت و مدیریت فناوری اطلاعات
Alignment of COBIT to Botswana IT Audit Methodology
Seminar Series on Total Quality Management
What is IT audit? An examination of how IT systems where implemented to ensure that they meet the organization’s business needs without compromising.
Presentation transcript:

Samantha Schreiner University of Illinois at Urbana- Champaign BA 559 – Professor Michael Shaw December 15 th, 2008 A Survey of IT Governance Through COBIT, ITIL, and ISO 17799

IT Governance Institute on IT Governance defines as “integral part of enterprise governance that consists of the leadership and organizational structures and processes that ensure an organization’s IT sustains and extends the organization’s strategies and objects” Direct IT applications and make sure that IT performance meets: Alignment of IT with enterprise Use of IT enables the enterprise to take advantage of all opportunities and maximize benefits IT resources are used responsibly IT related risks appropriately managed

Frameworks Top management’s strategy and goals must be effectively stated and brought down throughout the enterprise Framework is a key element in ensuring proper control and governance of IT 72% of all North American enterprise-class organizations use one or more formal IT control and process model COBIT * ITIL * ISO Most popular frameworks

COBIT Mission to “research, develop, publicize and promote an authoritative, up-to-date, internationally accepted IT governance control framework for adoption by enterprises and day-to-day business managers, IT professionals, and assurance professionals” Business focused Process-oriented Control based Measurement driven

COBIT domains Plan and Organize Acquire and Implement Deliver and Support Monitor and Evaluate

ITIL Defines organizational structure and requirements for an entity’s IT Gives a standard set of operational management tasks Latest version: v3

ITIL volumes Service Strategy Service Design Service Transition Service Operation Continual Service Improvement

ISO Standard to assist companies is establishing risk assessment methods, policies, and controls Establishes guidelines for certification, compliance, and audits 11 security control clauses with 39 main security categories

ISO steps Conduct risk assessments Establish a security policy Compile an asset inventory Define accountability Address physical security Document operating procedures Determine access controls Coordinate business activity Demonstrate compliance

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.