Scribd Logo
Upload

Welcome to Scribd!

  • 2018 Conference Presentation UsingCOBIT5 PDF

    Uploaded by

    Mohamed Shafi K K
    10 views26 pages
    The document discusses using the COBIT 5 framework for cybersecurity assessments. It provides an agenda for the conference presentation including a COBIT 5 refresher, why COBIT 5 is useful, how to conduct assessments, and a question and answer period. Speakers at the conference will discuss their experiences using COBIT 5 for assessments in various organizations to ensure benefits are realized and risks are mitigated. Assessment methodologies and self-assessment tools are presented.

    Original Description:

    Original Title

    2018-Conference-Presentation-UsingCOBIT5.pdf

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses using the COBIT 5 framework for cybersecurity assessments. It provides an agenda for the conference presentation including a COBIT 5 refresher, why COBIT 5 is useful, how to conduct assessments, and a question and answer period. Speakers at the conference will discuss their experiences using COBIT 5 for assessments in various organizations to ensure benefits are realized and risks are mitigated. Assessment methodologies and self-assessment tools are presented.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    10 views26 pages

    2018 Conference Presentation UsingCOBIT5 PDF

    Uploaded by

    Mohamed Shafi K K
    The document discusses using the COBIT 5 framework for cybersecurity assessments. It provides an agenda for the conference presentation including a COBIT 5 refresher, why COBIT 5 is useful, how to conduct assessments, and a question and answer period. Speakers at the conference will discuss their experiences using COBIT 5 for assessments in various organizations to ensure benefits are realized and risks are mitigated. Assessment methodologies and self-assessment tools are presented.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 26

    Conference 2018

    Conference 2018

    Using COBIT 5 Framework for Cybersecurity


    Assessment

    Hugh Burley, Trevor Hurst, and Ivor MacKay


    Speakers

    Trevor Hurst, Chief Information Officer


    Ministry of Advanced Education, Skills & Training

    Hugh Burley, Manager of Information Security/Information


    Security Officer
    Thompson Rivers University/BCNET

    Ivor MacKay, Manager, Information Technology


    BCNET

    Conference 2018
    Agenda

    1. COBIT 5 Refresher
    2. Why COBIT 5
    3. Assessments
    4. Q&A

    Conference 2018
    COBIT 5 Refresher

    Conference 2018
    COBIT PRINCIPLES

    Conference 2018
    Meeting Stakeholder Needs

    Conference 2018
    COBIT 5 ENABLERS

    Conference 2018
    GOVERNANCE VS MANAGEMENT

    Conference 2018
    Conference 2018
    Why COBIT 5?

    Conference 2018
    Alignment
    “How do I ensure all of our
    Digital investments contribute to
    Stakeholder Value and enable
    the strategy of my Institution?

    Tell a better Audit preparation


    story (funding) (Risk Management)

    “How do I better “How do I ensure benefits are


    communicate the gaps in our realized and IT risks are
    mitigated? How can I prepare
    environment and achieve for upcoming Audit and/or
    better funding? review activity?

    Conference 2018
    OAGBC
    General
    Computing
    Controls
    Report

    http://www.bcauditor.com/sites/default/files/publications/reports/OAGBC
    %20General%20Computing%20Controls%20Report_FINAL.pdf
    Conference 2018
    COBIT Maturity

    Conference 2018
    COBIT Maturity

    Conference 2018
    Assessments

    Conference 2018
    Assessment vs Audit

    Or is it really Gap Analysis vs.


    Internal Audit vs. Pre-Assessment

    Conference 2018
    Differences Between the COBIT 4.1 and the COBIT 5

    Conference 2018
    APO12 Manage Risk

    APO13 Manage Security

    BAI06 Manage Changes

    DSS02 Manage Service Requests and Incidents


    Assessment Methodology

    Conference 2018
    KEY AREA: RISK

    a) Level of risk acceptance


    b) Risk review
    c) Risk approval

    KEY AREA: MANAGING SECURITY

    Conference 2018
    Risk Assessment Consequence Table

    Conference 2018
    KEY AREA: MANAGING CHANGE

    a) Methods of assessing change and


    its risks
    b) Approval process

    KEY AREA: MANAGE SERVICE REQUESTS


    AND INCIDENTS
    a) Problem tracking
    b) Evidence of reviewing Incidents and
    Requests

    Conference 2018
    Self-Assessment

    Conference 2018
    Self-Assessment
    http://www.isaca.org/COBIT/Pages/Self-Assessment-Guide.aspx

    Conference 2018
    Self-Assessment
    http://www.isaca.org/COBIT/Pages/COBIT-5-PAM.aspx

    Conference 2018
    Info~Tech

    Conference 2018

    You might also like