You are on page 1of 24

Session 1

Friday, June 24, 2016

08:14

Daniel Morales, APM Group

7 Catalizadores--> habilitadores
4 Modules or areas
50% to pass exam
Check Appendix G (module of this course)

Proporciona un marco de refeencia de IT Gov renovado para la informacion de la empresa y tecnlogia relacionada.
Se alinea con otros marcos porongudos

It's been in the market for 4yr


VAL IT> Was focused in Biz case. In COBIT 5 there is no necessary to use RISK IT, BMIS and VAL IT.

COBIT5 --> Info Gov and Management

Simplificado
COBIT 5 responde directamente a las necesidades del
espectador desde diferentes perspectivas
El desarrollo contina con guas de prctica especficas
COBIT 5 est inicialmente en 3 volmenes:
1. El marco de referencia
2. Gua de Referencia de Procesos
3. Gua de Implementacin
COBIT 5 est basado en:
5 principios y
7 catalizadores

PRINCIPLES
You must these 5 principles by heart

COBIT 5 Foundation Page 1

Principio 1 Satisfacer las Necesidades de las Partes Interesadas --> Satisfy needs of the stakeholders
Principio 2 Abarcar la Empresa de Extremo a Extremo -->Approach end to end
Principio 3 Aplicar un Marco de Referencia Integrado nico --> Apply Unique integrator as a Framework
Principio 4 Habilitar un Enfoque Holstico --> Enable holistic approach
Principio 5 Separar Gobierno de Gestin --> Split Gov rom Management

Principle 1: Meeting Stakeholder Needs


Principle 2: Covering the Enterprise End-to-end
Principle 3: Applying a Single Integrated Framework
Principle 4: Enabling a Holistic Approach (7 enablers)
Principle 5: Separating Governance From Management
One and four are the biggest.

Principle 1: Meeting Stakeholder Needs


Identify your stakeholders and their needs. COBIT 5 Goals Cascade to map this. Negotiation

Benefits realization: Obtencin de beneficios


Risk Optimization:
Resource Optimization:
Page 22

COBIT 5 Foundation Page 2

Page 22

Page 19

Primary
Secondary
COBIT 5 Foundation Page 3

Secondary

Page 50

COBIT 5 Foundation Page 4

Page 52 and 53

COBIT 5 Foundation Page 5

Page 52 and 53

COBIT 5 Foundation Page 6

Workshop:
1. Identify a need (Appendix D or page 22) Did I address all IT-related risk?
a. Look for it in page 55 and map it
2. Mapping COBIT 5 Enterprise Goals to Governance and Management Questions
a. Managed business risk (safeguarding of assets) (3)
b. Business service continuity and availability (7)
c. Information-based strategic decision making (9)
d. Compliance with internal policies (15)
3. The girls selected Business service continuity and availability (7)
4. IT Goals: 4,10,14 (only Primaries) Managed IT-related business risk(4), Security of information, processing infrastructure and applications(10), Availability of
reliable and useful information for decision making (14)
5. They need to select one of them (step 4) . They took Goal 10 (Security of information, processing infrastructure and applicat ions)
6. The vieja identified 5 processes:
a. BA106, DSS05,ED1903,APO12,AP013
7. Select one of them and why?
a. AP012 (Risk Management)
RECAP
Respond the question in page 22 to begin :D
Page 36 in presentation to replicate workshop
Understand the cascade overview

COBIT F
MANUAL-...

COBIT 5 Foundation Page 7

COBIT F
MANUAL-...

Principle 2: Covering the Enterprise End-to-end


Align IT Gov with Corporate Gov

COBIT 5 Foundation Page 8

Principle 3: Applying a Single Integrated Framework

Principle 4: Enabling a Holistic Approach (Appendix G)


COBIT 5 Foundation Page 9

Principle 4: Enabling a Holistic Approach (Appendix G)

COBIT 5 Foundation Page 10

Lag Indicators: indicadores de atraso ----> Where I want to reach


Lead indicators: indicadores de avance ----> TO IMPROVE
Remember example of running: me comparing with the pro runner

To measure enablers
GOALS
Calidad intrinseca: se cumple o no. NO importa si esta correcta o no.
Calidad contextual: Es correcta o necesaria la meta.
Accessibility and Security:

Principle 5: Separating Governance From Management


Boundaries between them. Be careful with "Integration"
Direct: dirigir, orientar.

Test>

COBIT 5 Foundation Page 11

COBIT 5 Foundation Page 12

ENABLERS

1. Principles, Policies and Frameworks


Principles diff policies
COBIT 5 Foundation Page 13

Policies are more detailed.

2. Processes
The most similar to COBIT 4.x

COBIT 5 Foundation Page 14

5 Grupos de procesos
Grupos de procesos pertences a gobierno:1
A gestion: 4
Cuantos procesos por gupo

Align Plan Organize APO:13


Build, Acquire and Implement BAI: 10
Delivery, Service and Support DSS: 6
Monitor, Evaluate and Assess MEA:3

Evaluate: form an idea of the amount, number, or value of; assess.


(usually be assessed) calculate or estimate the price or value of.
(often be assessed) set the value of a tax, fine, etc., for a person or property at a specified level.

COBIT 5 Foundation Page 15

Assess: evaluate or estimate the nature, ability, or quality of.


(Mathematics) find a numerical expression or equivalent for an equation, formula, or function.
From <http://english.stackexchange.com/questions/13763/what-is-the-difference-between-assess-and-evaluate>

Volunteers are internal stakeholders

3. Organisational Structures

COBIT 5 Foundation Page 16

4. Culture, Ethics and Behaviour

COBIT 5 Foundation Page 17

Enabler Human resource it approaches to theirs skills. This one in people itself

5. Information

COBIT 5 Foundation Page 18

COBIT 5 Foundation Page 19

6. Services, Infrastructure and Applications

Good practicesGood practice for service capabilities includes:


COBIT 5 Foundation Page 20

Good practicesGood practice for service capabilities includes:


Definition of architecture principlesArchitecture principles are overall guidelines that govern the implementation and
use of IT-related resources within the enterprise. Examples of potential architecture principles are:
ReuseCommon components of the architecture should be used when designing and implementing solutions as
part of the target or transition architectures.
Buy vs. buildSolutions should be purchased unless there is an approved rationale for developing them internally
SimplicityThe enterprise architecture should be designed and maintained to be as simple as possible while still
meeting enterprise requirements.
AgilityThe enterprise architecture should incorporate agility to meet changing business needs in an effective and
efficient manner.
OpennessThe enterprise architecture should leverage open industry standards.
The enterprises definition of the most appropriate architecture viewpoints to meet the needs of different stakeholders.
These are the models, catalogues and matrices used to describe the baseline, target or transition architectures; for
example, an application architecture could be described through an application interface diagram, which shows the
applications in use (or planned) and the interfaces amongst them.

7. People, Skills and Competencies

COBIT 5 Foundation Page 21

Las capas estn fueras de mi scope page 83

Contextual and representational qualityThe extent to which information is applicable to the task of the information
user and is presented in an intelligible and clear manner, recognising that information quality depends on the context of
use. It includes:

RelevancyThe extent to which information is applicable and helpful for the task at hand
CompletenessThe extent to which information is not missing and is of sufficient depth and breadth for the task at hand
Currency (adecuacion)The extent to which information is sufficiently up to date for the task at hand
Appropriate amount of information (oportunidad)The extent to which the volume of information is appropriate for the task at hand
Concise representationThe extent to which information is compactly represented
Consistent representationThe extent to which information is presented in the same format
InterpretabilityThe extent to which information is in appropriate languages, symbols and units, with clear definitions
UnderstandabilityThe extent to which information is easily comprehended
Ease of manipulationThe extent to which information is easy to manipulate and apply to different tasks

COBIT books
IT GOV desde 0, implemenation-- Foundation

COBIT 5 Foundation Page 22

IT GOV desde 0, implemenation-- Foundation


Asssesor (de pago)--> Auditor
PAM -->

STUDY
Dimensions-->enablers-->good practices between them-->definition process, policies // principles,.

HOMEWORK
Chapter 7

Starred pages in the deck is mandatory in the test.

Know the 3 rings and all questions


Drivers --> motivos
Momentum-> impulso

The deeper ring the slowest is

CHECK THIS OUT


Know by heart levels and attributes
Why only for process 1?
Performance of each process (37) PAM. Performance indicators
2 and so
No more lupa, you have generic indicators (all processes are measure the same way) Capacity indicators

COBIT 5 Foundation Page 23

COBIT 5 Foundation Page 24