Professional Documents
Culture Documents
SMSG 210612 PDF
SMSG 210612 PDF
Geoff Harmer
PhD, CEng, FBCS, CITP, CGEIT
Maat Consulting
Reading, UK
www.maatconsulting.com
1
Copyright Notice
COBIT is 1996, 1998, 2000, 2005 2012 ISACA and IT Governance Institute.
COBIT, Val IT, Risk IT, BMIS, ITAF, TGF are the registered trade marks of ISACA and the IT Governance Institute
ITIL, PRINCE2 and MSP are registered trademarks of the Cabinet Office, UK
CMM and CMMI - DEV are US Registered trademark of Software Engineering Institute, Carnegie Mellon University
Course design and content: 2012 Maat Consulting Ltd. All rights reserved.
Neither ISACA nor ITGI endorse, sponsor or are otherwise affiliated with this COBIT 5 presentation content and they do
not warrant or guarantee its accuracy
Maat Consulting Ltd is always seeking improvements and welcomes comments on these materials to:
feedback@maatconsulting.com
2
Agenda
Introduction to COBIT 5
Dive deeper
Framework
5 Principles
7 Enablers
Domains and processes
Management practices
Process capability assessment
Current and future ISACA resources for COBIT 5
Summary
enterprise IT
4
COBIT : Audit to GEIT in 16 years
Scope
Governance of Enterprise IT
IT Governance
Val IT
2.0
Management 2008
Control Risk IT
2009
Audit
COBIT 1 COBIT 2 COBIT 3 COBIT 4.0/4.1 COBIT 5
Management (PBRM)
Plans, builds, runs and monitors activities
Aligned with governance bodys direction
With goal of achieving enterprise objectives
Responsibility: Executive management; Leader: CEO
9
Management & Governance Practices
COBIT 4.1 Control Objectives COBIT 5
210
Governance
15
Practices
Val ITTM Management Practices
22 Management 193
Practices
10
COBIT 5: 5 Principles
1. Meeting stakeholder needs
2. Covering the enterprise end-to-end
3. Single integrated framework
4. Holistic approach of 7 enterprise enablers
5. Separating governance from management
Organisational
Structures
Culture, Ethics
Processes
and Behaviour
Principles, Policies
and Frameworks
Resources
Resources
5 Principles allow
enterprise IT
14
COBIT 5: The 5 Principles
1. Meeting stakeholders needs
2. Covering the enterprise end-to-end
3. Single integrated framework
4. Holistic approach of 7 enterprise enablers
5. Separating governance from management
Stakeholder Needs
Benefits Risk Resource
Realisation Optimisation Optimisation Goals Cascade
Cascade
Enterprise Goals
Cascade
IT-related Goals
Cascade
Enabler Goals
(Processes +++)
COSO PRINCE2
COSO ITIL 2011
ERM PMBOK
Kotter
OECD CG ISO 31000 ISO 38500
UK CCCG ISO 27000
King III ISO 9001 TOGAF ISO 20000
BS 25999 CEAF
MSP CMMIDEV
FEA
20
Enabling a Holistic Approach - 1
le rs
nab Organisational
7 E Structures
e
Th Processes
Culture, Ethics
And Behaviour
Principles, Policies
and Frameworks
Resources
Resources
Information
Organisational
Structures
Governance
Evaluate
Management
Direct Feedback Monitor
24
Domains & Processes
25
COBIT 5: Processes (37)
Processes for Governance of Enterprise IT
Evaluate, Direct and Monitor (EDM) 5
EDM01 EDM05
40
5 key facts about COBIT 5
1. Leads to more value from information and technology
Improved risk management
Improved business-IT communication
Improved delivery of business objectives
Improved business competitiveness and lower costs
2. Is a business framework for GEIT
Meets needs of business execs. and IT leaders
3. Provides effective decision making
Systematic approach that clarifies goals
4. Addresses needs of stakeholders
An end-end framework integrating 80+ other approaches
5. Based on collective wisdom of 95 global experts.
Foundation 6/2012
All have
certificates
IT Process Level 9/2012
43
Is there a COBIT 5 competitor?
Maybe, but not at the level of COBITs user-base
Nearest that includes governance and management is:
IT Capability Maturity Framework (IT-CMF ) V1.0: 2010
From Innovation Value Institute (IVI) consortium of blue-chips
4 macro-capabilities = domains
Managing IT like a business (13 critical capabilities= processes)
Managing the IT Budget (4)
Managing the IT Capability (13) 33 critical
capabilities
Managing IT for Business Value (3)
Based on a maturity assessment approach to improvement
Qualifications: 5 tiers up to MSc in IT Management available
http://ivi.nuim.ie/itcmf.shtml
45
Any Further Questions?
46
Education and Consultancy
for IT Best Practices
www.maatconsulting.com
47