COBIT 5 Only As Good As the People Who Use It.
|
|
- Earl Payne
- 7 years ago
- Views:
Transcription
1 COBIT 5 Only As Good As the People Who Use It. Date: March 2014 Prepared by: Gary Hardy, COBIT Lead Author and Owner of IT Winners
2 Content Seven TIPS for COBIT 5 Implementation: Tip #1 Get Business Buy-In Tip #2 Change Mindsets and Attitudes Tip #3 Initiate a Transformation Program Tip #4 No Big Bang Continual Improvement in Steps Tip #5 Focus on Business Benefits Tip #6 Deliver Outcomes Instead of Outputs Tip #7 Learn from Best Practices 1
3 Learn from the Expert Gary Hardy is the architect of the ITpreneurs IT governance training portfolio and one of the originators of the COBIT framework. He s been a lead developer of all the COBIT versions, including COBIT 5. He also has the distinction of being the lead author of all the versions of the COBIT Implementation Guide. His core business activities include consulting, training, and running his own company, IT Winners in South Africa. Recognized globally as a thought leader and implementation expert with over 30 years experience, Gary has guided numerous public and private enterprises in implementing IT performance improvements and governance and management practices. He s also an expert advisor to one of the world s largest and most significant COBIT-based IT governance improvement programs. 2
4 Seven TIPS for COBIT 5 Implementation Over the past decade, the term governance has moved to the forefront of business thinking. The pressing need to deliver more value from IT, and a growing number of risk and compliance challenges, are the primary factors for this evolution. COBIT 5 is a business-driven framework, which guides good IT-related practices for all stakeholders of an enterprise, with a focus on delivering value from IT. The COBIT 5 Implementation guide provides the latest thinking and best practices for improving IT governance. Building on the principles and concepts learned in the COBIT 5 Foundation Course, the COBIT 5 Implementation Course uses a combination of practical, hands-on exercises and presentations to enable participants to apply these methods in practice. IT governance and COBIT expert, Gary Hardy, shares his implementation tips below. These are based on his many years of real world experiences and those of others in his network around the world. Learn how do apply these tips by attending the COBIT 5 Implementation Course. Tip #1 Get Business Buy-In The increased focus on IT by executive management has highlighted the need for better governance and management of IT. The concept and actual practice of IT governance have gained significant momentum and acceptance in recent years. This is driving the need for IT best practices to be aligned to business and governance requirements. It has shifted management s attention away from just technology solutions towards defining the beneficial outcomes desired from the use of IT. Executive management is increasingly paying special attention to the use of IT, given that IT is now so intrinsic to the execution of business strategy and operations. IT accounts for a very significant proportion of an enterprise's costs, yet many fail to optimize these costs and obtain a good return from their IT-related investments. Enterprises are also dealing with an increasing amount of regulation, especially those operating globally. Getting executive management involved and buying in to IT governance implementation is critical. Analysts have often reported that as many as three out of four IT projects fail. This is usually because they are not initiated with a sound business case, sponsored by senior management, and then managed properly as programs, to ensure that benefits are realized. Implementing IT governance is no different and, in fact, even more important to drive properly from a business-benefit perspective as they are not typical IT projects. COBIT-based implementation and improvement initiatives, therefore, need to be sponsored by executive management and be based on agreed business benefits. The practice of using a business case, defining measurable business outcomes and benefits, makes sure that the improvements are based on real business needs and that good governance disciplines are followed to monitor the return on investment to ensure successful delivery of the improvement objectives. This is one of the most significant areas where the use of COBIT will add value. Why? Because COBIT tends to involve business and senior management and encourages adoption of good governance practices, structures and activities that drive benefits from ITrelated activities. 3
5 The objective is to provide sufficient commitment, direction and control of activities so that there is alignment with enterprise objectives and appropriate implementation support from the board, executive management and key management committees. COBIT 5 Implementation training will help you learn how to connect with executives and develop business cases. Tip #2 Change Mindsets and Attitudes Many executives and business users regard anything related to IT as mysterious, technical and risky. As a result, they have not been sufficiently involved in the application of proven techniques to ensure that the use of IT is governed and managed effectively as an integral part of doing business and governing the enterprise. IT is a topic that can no longer be avoided, as using IT has become a part of everyone s working environment. From a business perspective, the financial consequences of poorly managed IT services can be very significant, either failing to enable real business benefits, or because of costly losses due to failed projects or unreliable service delivery. IT is often the largest category of expenditure after staffing costs; and it can be a difficult task to acquire a clear and complete picture of exactly how much is being spent, on what types of technology assets and processes, and where in the enterprise. In far too many cases, IT costs are not understood and budgets are spread across business units and functions with no overall oversight resulting in unnecessarily high IT costs. The most common indicators of poor oversight of IT are: Board members or senior managers reluctant to engage with IT. Potential senior-level sponsors failing to take ownership for the IT aspects of business initiatives. Business executives and IT executives not communicating amongst themselves, nor trusting one another. IT leaders and experts not understanding the business requirements. Business leaders not understanding the potential for IT-enabled innovation. IT service providers slow to respond to add value. IT services not aligned or prioritized based on business needs. IT risks are not understood or managed effectively in conjunction with business risks. Metrics to measure IT service performance not relevant to the business users. Experience has shown that changing mindsets is probably the biggest challenge when implementing IT Governance using COBIT. The Implementation approach focuses on the needs of stakeholders and the enablement of change. Implementing change works best when the affected role-players are empowered to drive and develop the improved practices themselves. Use of consultants and advisors is most effective when they act as enabling facilitators transferring skills, experiences and proven approaches to the affected role-players and stakeholders, rather than taking over the task. COBIT 5 Implementation training will help you learn how to deal with stakeholders, role-players, and enable change with COBIT 5. 4
6 Tip #3 Initiate a Transformation Program While the goal is to make continual improvement an on-going natural business as usual way of working, it will require a change of attitude and mindset and become a transformation program. Improvement initiatives will generate improvement actions that should then be managed as a program based on a business case with defined business objectives. For these reasons, the implementation approach is based on empowering business and IT stakeholders and role-players, to take ownership of IT governance-related initiatives. The implementation program will be closed when the initiative is generating a measurable benefit and the new way of working has become embedded in on-going business activity. The COBIT 5 implementation approach emphasizes the importance of program management when driving value from continual improvement. Executive management should allocate clear roles and responsibilities for directing the improvement program. One of the best ways to formalize oversight and direction of the IT governance program and all IT-related activities is to establish an IT executive committee. This committee acts on behalf of the board (to which it is accountable) and is responsible for how IT is used within the enterprise and for making key IT-related decisions affecting the enterprise. It should have a clearly defined mandate, and is best chaired by a business executive (ideally a board member) and staffed by senior business executives representing the major business units, as well as the chief information officer (CIO), and, if required, other senior IT managers. Internal audit and risk functions should provide an advisory role. Information systems have now become pervasive in the sense that they are built into the strategy of the business. IT is strategic because: Success with IT demands a change in culture and mindset. IT is enterprise-wide. Not just for the IT function. Information is a strategic asset. No such thing as an IT project. Let s consider these IT-enabled business initiatives. Delivering IT solutions and services and IT governance is not just about technology; it s about business processes and organizational changes enabled by IT. COBIT 5 Implementation training will help you learn how to apply program management. Tip #4 No Big Bang Continual Improvements in Steps Optimal value can be realized from leveraging COBIT, only, if it is effectively adopted and adapted to suit the unique environment of an enterprise. Each implementation approach will need to address specific challenges, including managing changes to culture and behaviour. COBIT 5 Implementation is based on a continual improvement lifecycle similar to the ITIL approach, but with a much greater emphasis on business drivers. The COBIT approach is not intended to be a prescriptive approach nor a complete solution, but rather a guide to avoid commonly encountered pitfalls, leverage best practices; and assist in the creation of successful business outcomes and deliver business benefits to enterprises. Improvement happens progressively, a step at a time, to avoid approaches that are complex. The big bang approach definitely will not work. COBIT 5 Implementation helps leverage the COBIT components and other best practices and standards, when analyzing gaps and designing solutions and prioritizing improvements to deliver quick wins and benefits progressively. COBIT 5 Implementation also guides change enablement so that there is a clear vision of the improvement target, supported by stakeholders with the willingness and 5
7 involvement of the affected role players. The vision usually has to be implemented progressively in manageable steps. An Improvement Register is a good vehicle for recording and maintaining the status of improvements. Improvement will only occur if there is a management commitment to invest in continual improvement. Management should also encourage and reward process owners to make improvements, and then provide the necessary resources to sustain the new way of working. COBIT 5 Implementation training will help you learn how to apply the COBIT 5 Continual Improvement Lifecycle. Tip #5 Focus on Business Benefits Proven practices in realizing value from IT, reducing risk and delivering reliable and secure IT services are embodied in COBIT 5 and adopting them does not have to be complex or expensive. Opportunity, cost and risk make IT operationally critical and strategic to enterprise success, so implementing good professional management practices should be an enterprise initiative driven by business need and by executive management, rather than a lower level activity that can easily suffer from lack of commitment or misalignment with strategic objectives. IT governance-related activities across the enterprise should be managed just like the rest of the business. The best way to achieve this is to focus on: Executive and business engagement. Clear vision, policies and objectives. The basics applying good management practices. Transparency plain language communications and metrics. Collaborative positive team work all on the same page. Every enterprise needs to tailor the use of COBIT to suit its individual requirements, and experience has shown that adoption of these potentially helpful best practices can be costly and unfocused, if they are not driven by business priorities and requirements. Applying the COBIT 5 value management processes and use of a value management office for the program will drive and monitor delivery of benefits from the continual improvement. It will also demonstrate how these practices can be adopted for all IT-related investments. COBIT 5 Implementation training will help you learn how to connect with the business and identify business benefits. Tip #6 Deliver Outcomes Instead of Outputs By using pain points or trigger events to initiate IT governance initiatives, the business case for improvement will be related to issues being experienced, and will clarify the desired business outcomes (such as reduction in incidents, improved service reliability, lower costs, etc.) from the investment in improvement of governance and management practices guided by COBIT. This is an essential step to make sure the requirement for IT governance is properly understood as desired outcomes. The initiative then focuses on delivery of these outcomes, rather than a COBIT implementation approach that is driven by COBIT as the solution. This being a classic weakness in IT-related activities and a trap many enthusiastically fall into. Too often, IT governance implementation projects focus on outputs and gravitate too quickly towards delivery of policies and process documents, which have no value unless they are adopted and work effectively to deliver value-adding outcomes, such as faster and more reliable changes. 6
8 Focusing on business outcomes also enhances the likelihood of business involvement, business alignment and, thus, delivery of real business benefits. Executives are faced with risky and challenging IT decisions that are key to delivering successful outcomes, for example: Business and IT alignment who is accountable for defining business needs? Agility can we react in time to new opportunities? Service levels acceptable quality, reliability and availability? Outsourcing, off-shoring cloud beneficial or risky? Network security are we protected? Portable data devices are we losing data? Regulations do we comply? Budgets why are IT costs so high? Investments do we have a business case and ROI? Poor IT governance can result in many of the following damaging consequences affecting performance and reputation, such as: Failed IT initiatives Rising costs Late project deliveries Low business benefit from IT Significant IT incidents Poor service delivery Ineffective IT HR practices Regulatory or contractual issues Audit findings COBIT 5 Implementation training will help you learn how to recognize pain points, trigger events and desired improvement outcomes. Tip #7 Learn from Best Practices The adoption of proven best practices help guide professional behaviour, increase effectiveness and efficiency, and result in reliable and trusted activities. They avoid re-inventing wheels and disagreements between business, IT, risk and assurance stakeholders and save time in developing approaches. However, every enterprise is different and there is no one-size-fits-all. COBIT 5 and other best practices will help to realize value from IT investments and IT services by identifying benefits, such as: Improving the achievability, predictability and repeatability of successful business outcomes. Aligning the allocation of resources with business and stakeholders needs. Gaining the confidence and increased involvement of business sponsors and users. Improving the quality, responsiveness and reliability of IT solutions and services. Reducing risks, incidents and project failures. Improving the business s ability to manage and monitor IT benefit realization. The enterprise will also benefit from increased efficiencies and reduced costs by: Avoiding the reinvention of proven practices. Reducing dependency on technology experts. Increasing the potential to utilize less experienced, but properly trained, staff. Overcoming IT experts working in isolation and not following agreed processes. Increasing standardization leading to cost reduction. Making it easier to leverage external assistance through the use of industry-standard processes. In a climate of increasing regulation and concern about IT-related risks, adopting best practices will help to minimize compliance issues by: 7
9 Making compliance and the application of internal controls normal business practice. Demonstrating processes aligned with proven industry best practices. Improving trust and confidence from management and partners. Creating respect from organizations and individuals outside of the business. Adherence to best practices also helps strengthen supplier/customer relations, make contractual obligations easier to monitor and enforce, and harmonize multi-supplier outsourcing contracts. They can also help to improve the market position of those service providers seen to be compliant with accepted global standards such as ISO/IEC 20000, ISO/IEC and ISAE While implementation should be guided by COBIT5 and other standards and best practices, specific solutions must be developed that are suitable for adoption and use within the enterprise. Where tools are used, it is best to choose proven tools aligned with best practices and then adapt working practices to align with the tools. Modifying toolsets will create future maintenance headaches, increase costs and diminish the benefits of the tool design. Best practices exist to save time, avoid re-inventing wheels and to learn from successful experience and expert guidance. From these experiences, they have been shown to deliver superior results. COBIT is one of the most popular frameworks for helping enterprises deliver superior results from the use of IT. COBIT and other best practices such as ITIL, however, need to be understood to be applied effectively, and are only as good as the people who use them. Business and IT professionals need to understand how to use COBIT to deliver value to the enterprises they serve. Only then is the value of their personal contribution recognized and the value of COBIT demonstrated, when measurable business benefits have resulted from the contribution of role-players and their use of COBIT. Education is therefore essential. A lack of skills or a culture that doesn t understand the value of best practices can be the biggest obstacles to COBIT adoption. The comprehensive ITpreneurs training schemes, that support the understanding and application of COBIT and other relevant best practices such as ITIL, are critical to support implementation activity. Mixing business and IT professionals in COBIT classes, especially when run in-house, has been proven to greatly increase the mutual understanding of issues and potential solutions, break down cultural barriers, and encourage a holistic team approach to implementing improvements. COBIT 5 Implementation training will help you learn how to avoid reinventing the wheel and personally improve your performance. 8
10 Acknowledgements ITpreneurs is pleased to share with you a deeper knowledge of various frameworks and domains connecting their usage and application for the betterment of the IT profession. Our appreciation goes to the industry experts who generously share their invaluable knowledge and experience with us. Our special thanks goes to Gary Hardy for his work on this white paper Contacts Gary Hardy Lead Author of COBIT and Owner of IT Winners Tel: +27 (0) (0) gary.hardy@itwinners.com 7 Fern Close - Constantia 7806 Cape Town RSA May Sau Marketing Manager, ITpreneurs Tel: +31 (0) may.sau@itpreneurs.com Weena NJ Rotterdam The Netherlands Copyright and Trademark Information Copyright 2014 ITpreneurs. All rights reserved. COBIT is a trademark of ISACA registered in the United States and other countries. 9
Effectively Using CobiT in IT Service Management
Effectively Using CobiT in IT Service Management Crown copyright material is reproduced with the permission of the Controller of HMSO and Queen s Printer for Scotland. ITIL is a Registered Trade Mark of
More informationThe Good, the Bad and the Ugly of Implementing Service Management
Service Management The Good, the Bad and the Ugly of Implementing Service Management Date: April 2013 Prepared by: Alex Hernandez, ITIL Master and Fellow in Service Management Content 1. The Bad and Ugly
More informationIncreasing IT Value and Reducing Risk. More for Less with COBIT5. IT Governance and Strategy
Increasing IT Value and Reducing Risk More for Less with COBIT5 Copyright 2012 ITpreneurs. All rights reserved. 1 COBIT 5 the Next Evolution 2 COBIT 5 Released in April 2012 COBIT5 is the eagerly awaited
More informationSomewhere Today, A Project is Failing
Aligning CobiT and ITIL - The Business Benefit 2007 ISACA All rights reserved www.isaca.org Page - 1 Somewhere Today, A Project is Failing Chapter 1, Peopleware 2nd edition Tom DeMarco 2007 ISACA All rights
More informationCOBIT 5 Introduction. 28 February 2012
COBIT 5 Introduction 28 February 2012 COBIT 5 Executive Summary 2012 ISACA. All rights reserved. 2 Information! Information is a key resource for all enterprises. Information is created, used, retained,
More informationContents. viii. 4 Service Design processes 57. List of figures. List of tables. OGC s foreword. Chief Architect s foreword. Preface.
iii Contents List of figures List of tables OGC s foreword Chief Architect s foreword Preface Acknowledgements v vii viii 1 Introduction 1 1.1 Overview 4 1.2 Context 4 1.3 Purpose 8 1.4 Usage 8 2 Management
More informationHow the Two Complement Each Other
Project and Program Management PRINCE2 and PMBOK Friend or Foe? How the Two Complement Each Other Date: September 2013 Prepared by: Klaus Nielsen, Founding Partner Global Business Development, Advisor
More informationOPTIMUS SBR. Optimizing Results with Business Intelligence Governance CHOICE TOOLS. PRECISION AIM. BOLD ATTITUDE.
OPTIMUS SBR CHOICE TOOLS. PRECISION AIM. BOLD ATTITUDE. Optimizing Results with Business Intelligence Governance This paper investigates the importance of establishing a robust Business Intelligence (BI)
More informationUnlocking value from your ERP service organization*
Consulting Application Managed Services Technology Unlocking value from your ERP service organization* Application Support Effectiveness Assessment can help you identify and dismantle the roadblocks that
More informationAssessing Your Information Technology Organization
Assessing Your Information Technology Organization Are you running it like a business? By: James Murray, Partner Trey Robinson, Director Copyright 2009 by ScottMadden, Inc. All rights reserved. Assessing
More informationCOBIT 5 For Cyber Security Governance and Management. Nasser El-Hout Managing Director Service Management Centre of Excellence (SMCE)
COBIT 5 For Cyber Security Governance and Management Nasser El-Hout Managing Director Service Management Centre of Excellence (SMCE) Cybersecurity Governance using COBIT5 Cyber Defence Summit Riyadh, KSA
More informationPractical Approaches to Achieving Sustainable IT Governance
Practical Approaches to Achieving Sustainable IT Governance Beyond Mandates: Getting to Sustainable IT Governance Best Practices Agenda IT Governance Definition IT Governance Principles IT Governance Decisions
More informationIT Governance Regulatory. P.K.Patel AGM, MoF
IT Governance Regulatory Perspective P.K.Patel AGM, MoF Agenda What is IT Governance? Aspects of IT Governance What banks should consider before implementing these aspects? What banks should do for implementation
More informationBridging the IT Business Gap The Role of an Enterprise Architect
Whitepaper Bridging the IT Business Gap The Role of an Enterprise Architect Today s enterprises understand the value that Information Technology (IT) can bring to their business. IT supports day-to-day
More informationChayuth Singtongthumrongkul
IT is complicated. IT Governance doesn t have to be. Chayuth Singtongthumrongkul CISSP, CISA, ITIL Intermediate, PMP, IRCA ISMS (ISO/IEC 27001) Director of International Academic Alliance, ACIS Professional
More informationINFORMATION TECHNOLOGY FLASH REPORT
INFORMATION TECHNOLOGY FLASH REPORT ISACA Releases COBIT 5: Updated Framework for the Governance and Management of IT May 18, 2012 In April, ISACA released COBIT 5 as a replacement for its current globally
More informationCORPORATE INFORMATION AND TECHNOLOGY STRATEGY
Version 1.1 CORPORATE INFORMATION AND TECHNOLOGY STRATEGY The City of Edmonton s Information and Technology Plan, 2013-2016 Bringing the Ways to Life through Information and Technology June 2013 2 Copyright
More informationTOGAF. TOGAF & Major IT Frameworks, Architecting the Family. by Danny Greefhorst, MSc., Director of ArchiXL. IT Governance and Strategy
TOGAF TOGAF & Major IT Frameworks, Architecting the Family by Danny Greefhorst, MSc., Director of ArchiXL TOGAF is a registered trademark of The Open Group. Copyright 2013 ITpreneurs. All rights reserved.
More informationIT Governance. What is it and how to audit it. 21 April 2009
What is it and how to audit it 21 April 2009 Agenda Can you define What are the key objectives of How should be structured Roles and responsibilities Key challenges and barriers Auditing Scope Test procedures
More informationImplement Business Process Management to realize Cost Savings and High Return on Investments
Implement Business Process Management to realize Cost Savings and High Return on Investments Business Process Management (BPM) was unheard of just a few years ago, but it has burst onto the global scene
More informationUnderstanding COBIT 5. based on ISACA Materials www.isaca.org/cobit. Prepared by: Deb Mallette, CGEIT, CISA, CSSBB, IMG BSMS EPDM, Process Consultant
Prepared by: Deb Mallette, CGEIT, CISA, CSSBB, IMG BSMS EPDM, Process Consultant Understanding COBIT 5 based on ISACA Materials www.isaca.org/cobit ISACA Silicon Valley Chapter Spring 1 Why COBIT is important
More informationRevised October 2013
Revised October 2013 Version 3.0 (Live) Page 0 Owner: Chief Examiner CONTENTS: 1. Introduction..2 2. Foundation Certificate 2 2.1 The Purpose of the COBIT 5 Foundation Certificate.2 2.2 The Target Audience
More informationWHITE PAPER CREATING A CUSTOMER-CENTRIC COMMUNICATIONS STRATEGY
WHITE PAPER CREATING A CUSTOMER-CENTRIC COMMUNICATIONS STRATEGY CREATING A CUSTOMER-CENTRIC COMMUNICATIONS STRATEGY Executive Summary This white paper is designed to help you create a customer communications
More informationOffice of the Chief Information Officer
Office of the Chief Information Officer Business Plan: 2012 2015 Department / Ministère: Executive Council Date: November 15, 2012 1 P a g e This Page Left Intentionally Blank 2 P a g e Contents The Business
More informationAn Oracle White Paper October 2011. Why Projects Fail: Avoiding the Classic Pitfalls
An Oracle White Paper October 2011 Why Projects Fail: Avoiding the Classic Pitfalls Executive Summary There is an age-old saying that goes something like this: we can do anything we want, but we cannot
More informationEnabling IT Performance & Value with Effective IT Governance Assessment & Improvement Practices. April 10, 2013
Enabling IT Performance & Value with Effective IT Governance Assessment & Improvement Practices April 10, 2013 Today's Agenda: Key Topics Defining IT Governance IT Governance Elements & Responsibilities
More informationthe role of the head of internal audit in public service organisations 2010
the role of the head of internal audit in public service organisations 2010 CIPFA Statement on the role of the Head of Internal Audit in public service organisations The Head of Internal Audit in a public
More informationPM Services. Portfolio Strategy, Design and Build
PM Services Portfolio Strategy, Design and Build Portfolio Strategy, Design and Build PM Services consultants will design an effective portfolio management system and works closely with client management
More informationASTRAZENECA GLOBAL POLICY SAFETY, HEALTH AND ENVIRONMENT (SHE)
ASTRAZENECA GLOBAL POLICY SAFETY, HEALTH AND ENVIRONMENT (SHE) THIS POLICY SETS OUT HOW WE WILL MEET OUR COMMITMENT TO OPERATING OUR BUSINESS IN A WAY THAT PROTECTS PERSONAL HEALTH, WELLBEING AND SAFETY
More informationConsulting. PMOver Transforming the Program Management Office into a Results Management Office
Consulting PMOver Transforming the Management Office into a Results Management Office Executive summary Regardless of size and complexity, most programs encounter hurdles and issues. Many are able to address
More informationExecutive summary. Table of Contents. How closer ties between management, operations and training make for higher impact learning, faster
White Paper Integrated learning How closer ties between management, operations and training make for higher impact learning, faster Executive summary Today, more than ever, organizations are focused on
More informationPresented by. Denis Darveau CISM, CISA, CRISC, CISSP
Presented by Denis Darveau CISM, CISA, CRISC, CISSP Las Vegas ISACA Chapter, February 19, 2013 2 COBIT Definition Control Objectives for Information and Related Technology (COBIT) is an IT governance framework
More informationPresentation on COBIT Education
http://www.itpreneurs.com Presentation on COBIT Education Mastering COBIT with effective learning solutions Arjan Woertman ITpreneurs This COBIT product suite includes COBIT 4.0, which is used by permission
More informationCMDB and its Role in Transformation
CMDB and its Role in Transformation 2 CMBD and its Role in Transformation Contents Foreword from Richard Pharro, CEO, APMG 3 Introduction 4 Setting the Scene 5 Implimentation 6 People, Process, Technology,
More informationSAME PRINCIPLES APPLY, BUT NEW MANDATES FOR CHANGE
Information is an organization s most important strategic asset the lifeblood of the organization s knowledge, processes, transactions, and decisions. With information continuing to grow exponentially,
More informationperspective Progressive Organization
perspective Progressive Organization Progressive organization Owing to rapid changes in today s digital world, the data landscape is constantly shifting and creating new complexities. Today, organizations
More informationPINK ELEPHANT THOUGHT LEADERSHIP WHITE PAPER DEVELOPING AN IT SERVICE MANAGEMENT TRAINING STRATEGY & PLAN
PINK ELEPHANT THOUGHT LEADERSHIP WHITE PAPER DEVELOPING AN IT SERVICE MANAGEMENT TRAINING STRATEGY & PLAN Executive Summary Developing and implementing an overall IT Service Management (ITSM) training
More informationHow to achieve excellent enterprise risk management Why risk assessments fail
How to achieve excellent enterprise risk management Why risk assessments fail Overview Risk assessments are a common tool for understanding business issues and potential consequences from uncertainties.
More informationRoles, Activities and Relationships
and in COBIT 5 Objective: Value Creation Benefits Realisation Risk Resource Enablers Scope Roles, Activities and Relationships Source: COBIT 5, figure 8 Key Roles, Activities and Relationships Roles, Activities
More informationIntroduction to ITIL for Project Managers
CSC NORTH AMERICAN PUBLIC SECTOR Introduction to ITIL for Project Managers May Chantilly Luncheon Linda Budiman, PMP ITILv2 & ITILv3 Process Architect ITIL Service Manager, CobiT certified 5/13/2008 8:08:45
More informationTOGAF TOGAF & Major IT Frameworks, Architecting the Family
Fall 08 TOGAF TOGAF & Major IT Frameworks, Architecting the Family Date: February 2013 Prepared by: Danny Greefhorst, MSc., Director of ArchiXL TOGAF is a registered trademark of The Open Group. TOGAF
More informationProject Management Office Charter
Old Dominion University Office of Computing and Communication Services Project Management Office Charter Version: 1.0 Last Update: February 18, 2010 Created By: Anthony Fox, PMP OCCS Project Management
More informationThe New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework
The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework Dorothy Gjerdrum, ARM-P, Chair of the ISO 31000 US TAG and Executive Director,
More informationEA vs ITSM. itsmf 15.4.2014
EA vs ITSM itsmf 15.4.2014 EA vs ITSM SH Needs Business Goals 2 GOVERNANCE EVALUATE PLANNING ITSM IMPROVING OPERATING Business Programs Projects DEVELOPING EA IMPLEMENTING What is an enterprise in the
More informationThe Art of Architecture Transformation. Copyright 2012, Oracle and/or its affiliates. All rights reserved.
The Art of Architecture Transformation Oracle Safe Harbor The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into
More informationBusiness Relationship Management Professional (BRMP )
Course overview Business Relationship Management is a world-class professional development program designed to provide a solid foundation-level knowledge of Business Relationship Management. It embodies
More informationFortune 500 Medical Devices Company Addresses Unique Device Identification
Fortune 500 Medical Devices Company Addresses Unique Device Identification New FDA regulation was driver for new data governance and technology strategies that could be leveraged for enterprise-wide benefit
More informationIT Governance (Worthwhile Exercise?) January 10, 2013 Presented by Chad Murphy, CISA
IT Governance (Worthwhile Exercise?) January 10, 2013 Presented by Chad Murphy, CISA Things we hear! You are making it much too complex. It is an IT problem! We do not know where to start! We do this already!
More informationITIL V3 - The Future Is Here
ITIL V3 - The Future Is Here Copyright Notice Copyright Axios Systems 2007. The information, which is contained in this document, is the property of Axios Systems. The contents of the document must not
More informationCOBIT 5 IMPLEMENTATION SYLLABUS
COBIT 5 IMPLEMENTATION SYLLABUS 2013 Version 1.0 (Status Live) Page 0 Owner: Chief Examiner 1. Introduction The COBIT 5 Implementation Guide provides the main guidance for a practical approach to implementing
More informationUCISA ITIL Case Study on Nottingham Trent University
UCISA ITIL Case Study on Nottingham Trent University 1. Introduction Nottingham Trent University is a large, diverse and vibrant modern university with approximately 24,000 students. Its mission is to
More informationISO 9001:2015 Your implementation guide
ISO 9001:2015 Your implementation guide ISO 9001 is the world s most popular management system standard Updated in 2015 to make sure it reflects the needs of modern-day business, ISO 9001 is the world
More informationFive Core Principles of Successful Business Architecture
Five Core Principles of Successful Business Architecture Authors: Greg Suddreth and Whynde Melaragno Strategic Technology Architects (STA Group, LLC) Sponsored by MEGA Presents a White Paper on: Five Core
More informationBoard Governance Principles Amended September 29, 2012 Tyco International Ltd.
BOD Approved 9/13/12 Board Governance Principles Amended September 29, 2012 Tyco International Ltd. 2012 Tyco International, Ltd. - Board Governance Principles 1 TABLE OF CONTENTS TYCO VISION AND VALUES...
More informationBeyond Mandates: Getting to Sustainable IT Governance Best Practices. Steve Romero PMP, CISSP, CPM IT Governance Evangelist
Beyond Mandates: Getting to Sustainable IT Governance Best Practices Steve Romero PMP, CISSP, CPM IT Governance Evangelist Agenda > IT Governance Definition > IT Governance Principles > IT Governance Decisions
More informationEmploying ITSM in Value Added Service Provisioning
RL Consulting People Process Technology Organization Integration Employing ITSM in Value Added Service Provisioning Prepared by: Rick Leopoldi January 31, 2015 BACKGROUND Service provisioning can oftentimes
More informationThe Rise of Service Level Management. Gary Case
pink elephant WHITE PAPER: The Rise of Service Level Management in ITIL V3 The Rise of Service Level Management in ITIL V3 february, 2010 Gary Case Principal Consultant, Pink Elephant Table of Contents
More informationITIL and Outsourcing Engagements
ITIL and Outsourcing Engagements A Trestle Group Research Publication TABLE OF CONTENTS Executive Summary About the Author About Trestle Group Research What is ITIL? The Relationship between ITIL and Outsourcing
More informationProject organisation and establishing a programme management office
PROJECT ADVISORY Project organisation and establishing a programme office Leadership Series 1 kpmg.com/nz About the Leadership Series KPMG s Leadership Series is targeted towards owners of major capital
More informationLowering business costs: Mitigating risk in the software delivery lifecycle
August 2009 Lowering business costs: Mitigating risk in the software delivery Roberto Argento IBM Rational Business Development Executive Valerie Hamilton IBM Rational Solution Marketing Manager and Certified
More informationEnterprise Release Management
Enterprise Release Management Plutora helps organizations manage complex IT Feature Pipeline, IT Releases and IT Test Environments in a simple and transparent manner. Enterprise Releases Transparency and
More informationApplying Integrated Risk Management Scenarios for Improving Enterprise Governance
Applying Integrated Risk Management Scenarios for Improving Enterprise Governance János Ivanyos Trusted Business Partners Ltd, Budapest, Hungary, ivanyos@trusted.hu Abstract: The term of scenario is used
More informationCOBIT 5: A New Governance Framework for Managing & Auditing the Technology Environment CS 6-7: Tuesday, July 7 3:30-4:30
COBIT 5: A New Governance Framework for Managing & Auditing the Technology Environment CS 6-7: Tuesday, July 7 3:30-4:30 Presented by: Nelson Gibbs CIA, CRMA, CISA, CISM, CGEIT, CRISC, CISSP ngibbs@pacbell.net
More informationRISK BASED INTERNAL AUDIT
RISK BASED INTERNAL AUDIT COURSE OBJECTIVE The objective of this course is to clarify the principles of Internal Audit along with the Audit process and arm internal auditors with a good knowledge of risk
More informationMergers and Acquisitions Operational Synergies Perspectives on the Winning Approach
Mergers and Acquisitions Operational Synergies Perspectives on the Winning Approach Part 1 of the Miniseries on Mergers and Acquisitions Operational Synergies Mergers and Acquisitions Operational Synergies
More informationBoard of Directors Meeting 12/04/2010. Operational Risk Management Charter
Board of Directors Meeting 12/04/2010 Document approved Operational Risk Management Charter Table of contents A. INTRODUCTION...3 I. Background...3 II. Purpose and Scope...3 III. Definitions...3 B. GOVERNANCE...4
More informationDraft Guidance: Non-economic Regulators: Duty to Have Regard to Growth
Draft Guidance: Non-economic Regulators: Duty to Have Regard to Growth January 2014 Purpose of this document The duty to have regard to the desirability of promoting economic growth (the growth duty )
More informationCOBIT 5 ISACA s new framework for IT Governance, Risk, Security and Auditing. An overview
COBIT 5 IACA s new framework for IT Governance, Risk, ecurity and Auditing An overview M. Garsoux COBIT 5 Licensed Training rovider Introduction rinciples rocesses Implementation upporting roducts Questions
More informationIdentifying & Implementing Quick Wins
Identifying & Implementing Quick Wins 1 Executive Summary........3 2 Introduction....... 5 3 Key Steps to Quick Wins....... 7 4 Sample Quick Wins...8 4.1 People Quick Wins... 8 4.2 Process Quick Wins......9
More informationITIL V3 AND THE SERVICE LIFECYCLE PART I THE MISSING COMPONENT
ITIL V3 AND THE SERVICE LIFECYCLE PART I THE MISSING COMPONENT PLANVIEW INC. BACKGROUND IT departments continually have tremendous demands placed on them to manage new initiatives, projects, incidents,
More informationOperational Risk Management - The Next Frontier The Risk Management Association (RMA)
Operational Risk Management - The Next Frontier The Risk Management Association (RMA) Operational risk is not new. In fact, it is the first risk that banks must manage, even before they make their first
More information5 WAYS STRUCTURED ARCHIVING DELIVERS ENTERPRISE ADVANTAGE
5 WAYS STRUCTURED ARCHIVING DELIVERS ENTERPRISE ADVANTAGE Decommission Applications, Manage Data Growth & Ensure Compliance with Enterprise IT Infrastructure 1 5 Ways Structured Archiving Delivers Enterprise
More informationRealizing business flexibility through integrated SOA policy management.
SOA policy management White paper April 2009 Realizing business flexibility through integrated How integrated management supports business flexibility, consistency and accountability John Falkl, distinguished
More informationEnterprise Architecture: A Governance Framework
Enterprise Architecture: A Governance Framework Part I: Embedding Architecture into the Organization Sohel Aziz, Thomas Obitz, Reva Modi and Santonu Sarkar The whitepapers arei related to two sessions
More informationHow to Build a Service Management Hub for Digital Service Innovation
solution white paper How to Build a Service Management Hub for Digital Service Innovation Empower IT and business agility by taking ITSM to the cloud Table of Contents 1 EXECUTIVE SUMMARY The Mission:
More informationThe Future of the IT Department
Thought Leadership White Paper SmartCloud The Future of the IT Department Exploring the impact of Cloud on IT roles and responsibilities 2 The Future of the IT Department Contents 2 Introduction 3 Using
More informationSecure Your Cloud and Outsourced Business with Privileged Identity Management
Secure Your Cloud and Outsourced Business with Privileged Identity Management Table of Contents Executive Summary... 3 Understanding Privilege... 3 Do All Service Providers Get It?... 5 Managing Privilege
More informationVENDOR SELECTION: WHERE TO BEGIN?
VENDOR SELECTION: WHERE TO BEGIN? INTRODUCTION Selecting the right software for your organization, regardless if it s a best-of breed HR or Sales application or a full-fledged ERP system, can be a daunting
More informationWhite Paper. Business Analysis meets Business Information Management
White Paper BABOK v2 & BiSL Business Analysis meets Business Information Management Business Analysis (BA) and Business Information Management (BIM) are two highly-interconnected fields that contribute
More informationIT Governance: framework and case study. 22 September 2010
IT Governance: framework and case study Presenter Yaowaluk Chadbunchachai Advisory Services Ernst & Young Corporate Services Limited Presentation topics ERM and IT governance IT governance framework IT
More informationProcess Management: Creating Supply Chain Value
Process Management: Creating Supply Chain Value Carol L. Marks, C.P.M., Director of Purchasing and Business Management Systems Industrial Distribution Group, Southern Division 704/398-5666; carol.l.marks@idg-corp.com
More informationCompany size matters: Perspectives on IT Governance
www.pwc.com/ca/technology-consulting Company size matters: Perspectives on IT Governance versus large Canadian organizations and IT Governance PwC conducted research for the 4th edition of the IT Governance
More informationSocial media governance
www.pwchk.com Social media governance Harnessing your social media opportunity Social media allows organisations to engage with people directly, express their corporate personality and gain insight into
More informationOptimizing Rewards and Employee Engagement
Optimizing Rewards and Employee Engagement Improving employee motivation and engagement, and identifying the right total rewards strategy to influence workforce effectiveness. Kevin Aselstine, Towers Perrin
More informationPractical IT Service Management: Rapid ITIL Without Compromise
W H I T E P A P E R Practical IT Service : Rapid ITIL Without Compromise John Custy IT Service Consultant and Managing Consutant JPC Group Executive Summary All businesses face challenges providing the
More informationCriticism of Implementation of ITSM & ISO20000 in IT Banking Industry. Presented by: Agus Sutiawan, MIT, CISA, CISM, ITIL, BSMR3
Criticism of Implementation of ITSM & ISO20000 in IT Banking Industry Presented by: Agus Sutiawan, MIT, CISA, CISM, ITIL, BSMR3 Outline What is IT Service Management What is ISO 20000 Step by step implementation
More informationDriving Your Business Forward with Application Life-cycle Management (ALM)
Driving Your Business Forward with Application Life-cycle Management (ALM) Published: August 2007 Executive Summary Business and technology executives, including CTOs, CIOs, and IT managers, are being
More informationEnterprise Risk Management: From Theory to Practice
INSURANCE Enterprise Risk Management: From Theory to Practice KPMG LLP Executive Summary Enterprise Risk Management (ERM) is a structured and disciplined business tool aligning strategy, processes, people,
More informationThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material,
More informationMajor IT Projects: Continue Expanding Oversight and Strengthen Accountability
Secretary of State Audit Report Jeanne P. Atkins, Secretary of State Gary Blackmer, Director, Audits Division Major IT Projects: Continue Expanding Oversight and Strengthen Accountability Summary Information
More informationTaking a holistic QMS approach to enhancing productivity
Taking a holistic QMS approach to enhancing productivity Harnek Singh 9 th March 2012 Enhancing Productivity and Business Growth Through Quality Management Systems Rationale for the QMS A response to the
More informationJob Grade: Band 5. Job Reference Number:
Job Title: Business Analyst Job Grade: Band 5 Directorate: Job Reference Number: People and Transformation P01216 The Role: This is a challenging role working with and across all services to support the
More informationGlobal Software Update Rollout: Global Learning Management System
Journal of IT and Economic Development 5(2), 18-31, October 2014 18 Global Software Update Rollout: Global Learning Management System Heather Budriss, Tamikia Life, Denise Sarpong, Cham Williams College
More informationHP Strategic IT Advisory Services
HP Strategic IT Advisory Services Optimizing the value of IT investment Brochure The world has changed dramatically, and we increasingly live in a world where enterprise and personal IT experiences are
More informationE XPERT PERFORMANC E. Building Confidence. Charting Your Course to Higher Performance. The Number 1 Challenge for New Leaders
E XPERT PERFORMANC E Charting Your Course to Higher Performance CHALLENGE: Today s leaders need to meet an increasing demand for measurable results in ever decreasing time frames. SOLUTION: Ultimately
More informationHenkel s Compliance Management System (CMS)
Henkel s Compliance Management System (CMS) As a company that operates in an ethically and legally correct manner, Henkel s image and reputation is inseparable from the appropriate conduct of each of its
More informationHow quality assurance reviews can strengthen the strategic value of internal auditing*
How quality assurance reviews can strengthen the strategic value of internal auditing* PwC Advisory Internal Audit Table of Contents Situation Pg. 02 In response to an increased focus on effective governance,
More informationAgile Master Data Management TM : Data Governance in Action. A whitepaper by First San Francisco Partners
Agile Master Data Management TM : Data Governance in Action A whitepaper by First San Francisco Partners First San Francisco Partners Whitepaper Executive Summary What do data management, master data management,
More informationBenefits Administration: Should You Outsource or Manage In-House? As companies consider options, Health Care Reform may impact decisions
Benefits Administration: Should You Outsource or Manage In-House? As companies consider options, Health Care Reform may impact decisions Contents Introduction 3 Findings 5 Which Areas of Benefits Administration
More informationSound Transit Internal Audit Report - No. 2014-3
Sound Transit Internal Audit Report - No. 2014-3 IT Project Management Report Date: Dec. 26, 2014 Table of Contents Page Background 2 Audit Approach and Methodology 2 Summary of Results 4 Findings & Management
More information