Scribd Logo
Upload

Welcome to Scribd!

  • Act 9 Gobernabilidad

    Uploaded by

    Juan Salazar
    32 views5 pages
    Act

    Copyright

    © © All Rights Reserved

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Act

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    32 views5 pages

    Act 9 Gobernabilidad

    Uploaded by

    Juan Salazar
    Act

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    Reporte

    Name: Juan Alejandro Valdez Salazar Student ID: 2825782


    Course Name: Information Professor Name: Alejandrina Lastra
    Technologies Governance. Colorado.

    Module: 2 Frame of Reference of the Activity 9: COBIT 5 implementation


    Governance: Model COBIT

    Date: 13-10-2021
    Bibliography:
    4.2. COBIT - Gobierno de TI bajo COBIT. (n.d.). Google. Retrieved October 13, 2021,
    from https://sites.google.com/site/gobiernodetibajocobit/nuevo-rol-del-director/cobit

    Control Interno. (n.d.). Control. Retrieved October 13, 2021, from


    https://www.auditool.org/herramientas#sort=created_date&sortdir=desc

    Fonseca, O. (2011). Sistemas de Control Interno. Perú: Instituto de Investigación en


    Accountability y Control.

    ISACA. (2012). COBIT 5: A business framework for the governance and management of


    enterprise IT. USA: ISACA.
    Retrieved from http://www.isaca.org/COBIT/Pages/COBIT-5-spanish.aspx

    Activity objective:

    To know the monitor advantages, internal control and process evaluation to reach the
    objectives of the organization with an IT governance.

    Activity description:

    Through this exercise, you will learn how to make a process evaluation with COBIT 5.

    Activity requirements:

    Bring to class either printed or in digital form, the previous activity, and information about
    the examples of process evaluation with COBIT 5. and management - divided into
    process.

    1. Gather in teams and make an executive report from last activity, it


    must contain the following:
    a. Why is the performance evaluation important?

    R=In this way we will be able to review the searches and also
    specify the areas for improvement, it will also have a double
    Reporte

    function of supporting us to verify the strategies and correctly


    close projects.

    b. What must be considered in the monitor and performance


    evaluation?

    R=

    • The monitoring method to be used

    • The performance evaluation previously obtained

    • Direct reports

    c. What is the purpose of monitor and internal control


    evaluation?

    R= Its main objective is to meet IT standards in addition to


    complying with computer regulations where the roles or tasks to
    be performed must be considered and thus review risks that may
    affect them.

    d. What must be considered when monitoring and control


    internal evaluating?

    R=

    • Monitor the internal framework

    • Control self-assessments

    • Hearing screenings.

    • Third party internal control and corrective actions

    e. How can COBIT 5 guarantee a regulatory compliance?

    R=For the use of processes within the same in addition to the


    experiences that gave him to learn and overcome each process
    as well as compliance standards.

    f. How can the control objective be achieved to supply an IT


    governance?

    R=They must be aligned with the objectives of the company,


    integrating them in a corporate way
    Reporte

    g. Which are the key points to consider to achieve the objective


    of control to supply the IT governance?

    R=

    • Align yourself strategically

    • Deliver value

    • Define a framework

    • Manage risks

    • Manage resources

    • Measure performance

    2. Read the next situation:

    A new specialties hospital needs to know if the processes


    established are being followed in a correct way to reach the
    objectives established when the hospital was recently opened, they
    also wish to evaluate the performance and to know if the internal
    controls are efficient.
    They are thinking about implementing COBIT 5, therefore they are
    asking you to make a report in which you explain if I is possible to
    be compliant with these requirements through COBIT 5.
    3. Prepare a report with the following:

    a. What is the performance measure?

    R= Requests that an identification of capacities be carried out for


    1 or more processes which can be incompletely managed or
    carried out in addition to established or optimized.

    b. How are the monitoring and performance measure used?

    R= They are evaluated with the specific indicators since these will
    give an evaluation of achievements with the attributes for this a
    definition of work methods is made according to the reference
    frameworks and organization.

    c. In which points the monitoring and performance measure


    must be considered?
    Reporte

    R=

    • Process innovation

    • Process optimization

    • Measurement

    •Control

    • Implementation of the process

    • Process definition

    •Performance management

    • Carrying out the process

    d. Explain if there are some important deficiencies for the


    internal control that may affect in a negative way to the
    organization.

    R= Errors or deficiencies could be found during the risk


    assessment or any phase

    This will specifically be done or found when the process is


    designed, implemented, or operated in a way without being able to
    prevent errors.

    e. Which are the most important points to consider to guarantee


    a regulatory compliance?

    R= If the assignment is under the review of a third party or


    controller, the necessary regulations or standards must be
    established.

    • If the professional is the one who measures it, their work or fees
    should be positioned as first class and covers many levels.

    f. How can the objective of control be supplied for IT


    governance?

    R= The objective can be carried out in detail in the documentation


    of each of the necessary activities, in addition to putting each one
    of the achievements or expected goals, it is also possible to carry
    out mapping processes and complete said documentation.

    g. Which are the most important points to consider to achieve


    the objective of control of supplying an IT governance?
    Reporte

    R=

    • Defined standard process

    • Necessary skills and functions, as well as infrastructure

    • Appropriate methods to monitor the effectiveness and adequacy


    of the project

    You might also like