Professional Documents
Culture Documents
Sr. CGEIT
No. Job Practice Domains Task Statement
No. Domain No.
1 1
2 2
3 3
4 4
5 5
IT Governance
1
Framework
6 6
7 7
9 9
10 10
11 11
11 11
12 1
13 2
14 3
15 4
16 5
Strategic
2
17 Alignment 6
18 7
19 8
20 9
21
10
22 11
23 12
24 1
25 2
26 3
27 4
3 Value Delivery
28 5
29 3 Value Delivery 6
30 7
31 8
32 9
33 10
34 11
35 1
36 2
37 3
38 4
Risk
4
Management
39 5
40 6
41 7
41 7
42 8
43 1
44 2
45 3
46 4
47 5
48 6
Resource
49 5 7
Management
50 8
51 9
52 10
53 11
54 1
Performance
6
55 2
Performance
6
56 Measurement 3
57 4
58 5
59 6
T and CobiT Controls
ontrol Objectives for CGEIT: 66
CGEIT CobiT
Task Statement Contols
Statement No.
PO1.4
Define the requirements and objectives for, and drive the establishment of, PO4.5
IT governance in an enterprise, considering values, philosophy, management PO6.1
style, IT awareness, organization, standards and policies.
ME4.1
PO1.2
Ensure that an IT governance framework exists and is based on a PO4.1
comprehensive and repeatable IT process and control model that is aligned
with the enterprise governance framework.
ME4.1
ME3.3
Ensure that appropriate policies and procedures are in place, understood and
followed to support IT and business strategic alignment. PO6.3
Identify and take action on barriers to strategic alignment. PO6.1
PO1.1
Ensure that business takes ownership and accountability for business cases,
business transformation, organizational change, business process operation PO5.1
and benefit realization for all IT-enabled business investments.
ME4.1
PO1.6
Ensure that all IT-enabled investments are managed as a portfolio of PO5.1
investments.
ME4.1
PO1.1
PO5.1
Ensure that all IT-enabled investments are managed as programs and include PO10.1
the full scope of activities and expenditures that are required to achieve PO10.2
business value.
ME4.1
ME4.3
Ensure that all IT-enabled investments are managed through their full PO5.2
economic life cycle so that value is optimized. ME4.3
Recognize that different categories of investments need to be evaluated and PO10.3
managed differently. PO5.1
Ensure that all IT solutions are developed and maintained effectively and PO10.7
efficiently through the development life cycle to deliver the required
capabilities.
PO5.5
PO1.1
Ensure that all IT services are delivered to the business with the right service DS1.3
levels.
DS1.4
Ensure that IT services enable the business to create the required business PO5.3
value using assets (people, applications, infrastructure and information) to
deliver the appropriate capabilities at optimal cost.
PO5.4
PO10.13
ME 1.1
Define and monitor appropriate metrics for the measurement of solution and ME 1.2
service delivery against objectives and for the measurement of benefits ME 1.4
realized, and respond to changes and deviations. ME 1.5
ME 1.6
DS 1.5
Engage all stakeholders and assign appropriate accountability for delivery of PO1.1
business and IT capabilities and realization of benefits. PO5.5
Ensure that IT investments, solutions and services are aligned with the
enterprise strategies and architecture ME4.2
PO4.8
Ensure a consistent application of the risk management framework across PO9.2
the enterprise IT environment.
PO10.9
DS2.3
Ensure that risk assessment and management is included throughout the PO9.2
information life cycle. PO10.9
Ensure that sourcing strategies are based on the effective use of existing PO4.5
resources and the identification of those that need be acquired.
PO7.2
PO1.3
Through periodic assessment of the training requirements for human
resources, ensure that sufficient, competent and capable human resources PO4.5
are available to execute the current and future strategic objectives and that PO7.1
they are kept up to date with constantly evolving technology. PO7.2
PO7.7
Ensure integration of resource identification, classification, allocation and PO1.4
periodic evaluation processes into the business’s strategic and tactical PO1.5
planning and operations. ME4.4
Ensure that IT assets are managed and protected through their economic life PO1.5
cycle and are aligned with current and long-term business operations
requirements to support cost-effective achievement of business objectives
PO5.2
Establish the enterprise's strategic IT objectives, with the board of directors PO1.4
and executive leadership team, categorized into four areas: financial PO5.1
(business contribution), customer (user orientation), internal process
(operational excellence), learning and growth (future orientation), or ME1.1
whatever areas are appropriate for the enterprise.
ME1.3
Establish outcome and performance measures, supported by metrics, and ME1.2
targets that assess progress toward the achievement of enterprise and IT ME1.3
objectives and the business strategy. ME1.4
Evaluate IT process performance, track IT investment portfolio performance,
and measure IT service delivery through the use of outcome measures and ME1.4
performance drivers.
ME4.3
Use maturity models and other assessment techniques to evaluate and
report on the health of the enterprise’s performance level. ME1.4
IT Strategy Committee
IT Steering Committee
IT Organizational Structure
IT Value Management
Value Delivery
Business-IT Alignment
Identification of External Legal, Regulatory and
Contractual Compliance Requirements
Optimization of Response to External
Requriements
Evaluation of Compliance With External
Requirements
Independent Assurance
IT Tactical Plans
Policy, Standard and Procedures Rollout
Strategic Alignment
IT Policies Management
IT Policy and Control Environment
Business-IT Alignment
Value Delivery
IT Stratetic Plan
IT Policies Management
Policy, Standard and Procedures Rollout
Strategic Alignment
IT Value Management
Financial Management Framework
Benefit Management
IT Value Management
Service Level Agreements
Operating Level Agreements
IT Budgeting
Cost Management
Project Peformane Measurement, Reporting and
Monitoring
Monotoring Approach
Definition and collection of Monitoring Data
Performance Assessment
Board and Executive Reporting
Remedial Actions
Monitoring and Reporting of Service Level
Achievements
IT Value Management
Benefit Management
Strategic Alignment
Risk Management
Establishment of Risk Context
Event Identification
Risk Assessment
Risk Response
Risk Management
Risk Analysis Report
Event Identification
Maintenance and Monitoring of Risk Action Plan
Risk Management
Personnel Recruitment and Retention
Personnel Competencies
Identification of Education and Training Needs
Staffing of Roles
Personnel Tranining
IT Stagging
IT Process Framework
Resource Management
IT Organizational Structure
Personnel Competencies
Procurement Control
Resource Management
Assessment of Current Capability and
Performance
IT Organizational Structure
Personnel Recruitment and Retention
Personnel Competencies
Employee Job Performance Evaluation
IT Strategic Plan
IT Tactical Plans
Resource Management
IT Tactical Plans
Monitoring Method
Definition and collection of Monitoring Data
Monitoring Method
Performance Assessment
Performance Assessment
Value Delivery
Performance Assessment
Remedial Actions
Board and Executive Reporting
Performance Measurement
Mapping Matrix - COBIT/CGEIT
Applicable Cobit Control Objectives for CGEIT: 66
COBIT
IT Governance Framewor
Sr.
No. Domain Process Control Objective TS1 TS2 TS3 TS4
PO1.1 - IT Value Management X
PO1.2 - Business-IT Alignment X
PO1.3 - Assessment of Current Capability
PO1 - Define a and Performance
Strategic IT Plan
PO1.4 - IT Strategic Plan X
PO1.5 - IT Tactical Plans
PO1.6 - IT Portfolio Management
PO2.1 - Enterprise Information
Architecture Model
PO2 - Define the
Information PO2.2 - Enterprise Data Dictionary and
Architecture Data Syntax Rules
PO2.3 - Data Classification Schema
PO2.4 - Integrity Management
Deliver and
3
Support (DS)
Security
X X
X X
X X
X X
X X
X
X X
X X X
X X
X
X X
X X
X
X
X
CGEIT
Value Delivery (Domain 3) Risk Management (Domain 4)
TS1 TS2 TS3 TS4 TS5 TS6 TS7 TS8 TS9 TS10 TS11 TS1 TS2 TS3 TS4 TS5 TS6 TS7 TS8
X X X X
X X
X X X X
X
X
X
X X
X X
X X X
X X
X X
X
X X
X X
X
X
X
X
X
X
X
X
X
X X X
X
X X
X X X
Resource Management (Domain 5) Performance Measrt (Domain 6)
TS1 TS2 TS3 TS4 TS5 TS6 TS7 TS8 TS9 TS10 TS11 TS1 TS2 TS3 TS4 TS5 TS6
X
X
X X
X X
X
X
X X X
X X X
X
X
X
X
X
X
X
X X
X X X
X
X
X
X X X