Start and Course

finish style

Coffee and Lunc

breaks h
M00 - Course introduction 2/12 | 2/246
 □ Understand the concepts relating to the structure
and format of the framework, the drivers and
business benefits of using the COBIT 5 framework
□ To know facts, terms and concepts
relating to the Process Capability
Model
□ To understand the Process Capability Model
and the basic ISO 15504 concepts
□ Known facts and terms relating to
the COBIT 5 Enablers
□ Understand that COBIT enables IT to be governed and
managed in a holistic manner for the entire
enterprise.
□ To know facts, terms and concepts relating to
the Implementation of COBIT 5
Main goal:
□Attempt Foundation exam with confidence
Secondary goal:
M00 Benefits
□ - Course and value of IT Governance and
introduction 3/12 | 3/246
 □ Please share with the
class:
Yourname
□Your
□ organization
and surname
□Your profession (title, function, job
responsibilities)
□Your familiarity with:
□ Project management
□ IT management
□ IT service management (ITSM)
□ Enterprise architecture
□Your experience with IT
Governance
□Your personal session expectations

M00 - Course introduction 4/12 | 4/246

M00 - Course introduction 5/12 | 5/246
 □ Foundation Exam
□ Paper based and closed book exam
□ Only pencil and eraser are allowed
□ Simple multiple (ABCD) choice exam
□ Only one answer is correct
□ 50 questions, pass mark is 25 (50%)
□ No negative points, no “Tricky Questions”
□ No pre-requisite
for Foundation
exam
□ Sample, one (official)
mock exam is
provided to you t
Candidates completing an examination in a language tha
is not their mother tongue, will receive additional
M00 - Course introduction 6/12 | 6/246
 □ Target Audience
□ Consultants, IT practitioners, Business
managers
□ Apply the COBIT 5 good practice
continual improvement lifecycle
approach to GEIT, tailored to suit
the needs of a specific enterprise.
In particular

Candidates completing an examination in a language that

is not their mother tongue, will receive additional
time
M00 - Course introduction 7/12 | 7/246
 □ Target Audience
□ Internal and external (Lead) Auditors
□ Perform a process capability
assessment using the Assessor
Guide: using COBIT 5
□ Apply the Process Assessment Model
□ Identify and
assess the roles
and
responsibilities

Candidates completing an examination in a language that

is not their mother tongue, will receive additional
time
M00 - Course introduction 8/12 | 8/246
 COBIT5 syllabus section code and title

OV Overview and Key Features of COBIT 5

PR The COBIT 5 Principles

EN The COBIT 5 Enablers

IM Introduction to COBIT 5 Implementation

PC Process Capability Assessment Model

COBIT5 main publication is COBIT 5 - A

Business Framework for the Governance
Module slide number / total module
and Management of Enterprise IT: slides
• ISBN-13: 978-1604202373
COBIT5 syllabus COBIT5 Slide number /
section code handbook page total slides

Module number
and name
M00 - Course introduction Syllabus Handbook Page 9/12 | 9/246
M00 - Course introduction 10/12 | 10/246
 quizlet.com/67599656/

M00 - Course introduction 11/12 | 11/246

 Mirosław Dąbrowski linkedin.com/ in/ miroslawdabrows
ki google.com/+miroslawdabrowski
Agile Coach, Trainer, Consultant twitter.com/mirodabrowski
(former JEE/PHP developer, UX/UI designer, BA/SA) miroslaw_dabrowski

Creator Writer / Translator Trainer / Coach

• Creator of 50+ mind maps from PPM and • Product Owner of biggest Polish project • English speaking, international, independent
related topics (2mln views): management portal: 4PM: 4pm.pl (15.000+ trainer and coach from multiple domains.
miroslawdabrowski.com views each month) • Master Lead Trainer
• Lead author of more than 50+ accredited materials • Editorial Board Member of Official PMI • 11+ years in training and coaching / 15.000+
from PRINCE2, PRINCE2 Agile, MSP, MoP, P3O, ITIL, Poland Chapter magazine: “Strefa PMI”: hours
M_o_R, MoV, PMP, Scrum, AgilePM, DSDM, CISSP, strefapmi.pl • 100+ certifications
CISA, CISM, CRISC, CGEIT, TOGAF, COBIT5 etc. • Official PRINCE2 Agile, AgilePM, ASL2, BiSL methods • 5000+ people trained and coached
• Creator of 50+ interactive mind maps from PPM translator for Polish language • 25+ trainers trained and coached
topics: linkedin.com/in/miroslawdabrowski
mindmeister.com/users/channel/2757050
Agile Coach / Scrum PM / IT Notable clients
Master
• 8+ years of experience with Agile projects as a
architect
• Dozens of mobile and ecommerce projects ABB, AGH, Aiton Caldwell, Asseco, Capgemini, Deutsche Bank,
Scrum Master, Product Owner and Agile • IT architect experienced in IT projects with Descom, Ericsson, Ericpol, Euler Hermes, General Electric,
Coach budget above 10mln PLN and timeline of 3+ Glencore, HP Global Business Center, Ideo, Infovide-Matrix,
• Coached 25+ teams from Agile and Scrum Interia, Kemira, Lufthansa Systems, Media-Satrun Group,
years
Ministry of Defense (Poland), Ministry of Justice (Poland),
• Agile Coach coaching C-level executives • Experienced with (“traditional”) projects under
Nokia Siemens Networks, Oracle, Orange, Polish Air Force,
• Scrum Master facilitating multiple high security, audit and compliance requirements Proama, Roche, Sabre Holdings, Samsung Electronics,
teams experienced with UX/UI + Dev based Sescom, Scania, Sopra Steria, Sun Microsystems, Tauron
teams on ISO/EIC 27001 Polish Energy, Tieto, University of Wroclaw, UBS Service
• Experience multiple Agile methods • 25+ web portal design and development Centre, Volvo IT… miroslawdabrowski.com/about-me/clients-
• Author of AgilePM/DSDM Project Health and mobile application projects with and-references/
Accreditations/certifications (selected):
Check Questionnaire (PHCQ) audit tool CISA, CISM, CRISC, CASP, Security+, Project+, Network+, Server+, Approved
iterative,
Trainer: (MoP, MSP, PRINCE2, PRINCE2 Agile, M_o_R, MoV, P3O, ITILincremental
Expert, RESILIA),
andASL2, BiSL, Change
adaptive approachManagement,
Facilitation, Managing Benefits, COBIT5, TOGAF 8/9L2, OBASHI, CAPM, PSM I, SDC, SMC, ESMC, SPOC, AEC, DSDM Atern,
DSDM Agile Professional, DSDM Agile Trainer-Coach, AgilePM, OCUP Advanced, SCWCD, SCBCD, SCDJWS, SCMAD, ZCE 5.0,
ZCE 5.3, MCT, MCP, MCITP, MCSE-S, MCSA-S, MCS, MCSA, ISTQB, IQBBA, REQB, CIW Web Design / Web Development /
Web Security Professional, Playing Lean Facilitator, DISC D3 Consultant, SDI Facilitator, Certified Trainer Apollo 13 ITSM
Simulation …

www.miroslawdabrowski.com
M00 - Course introduction 12/12 | 12/246
 1. Defining IT Governance and COBIT5
2. COBIT 5 principles
3. COBIT 5 enablers
4. The Lifecycle approach
5. COBIT 4.1 differences to COBIT 5
6. COBIT 5 Process Capability Model
(PCM)

M01 - Defining IT Governance and COBIT 5 2/22 | 14/246

 1. The Reasons for the Development of COBIT
5
2. The History of COBIT
3. The Drivers for developing a Framework
4. The Benefits of using COBIT 5
5. The COBIT 5 Format and product
Architecture
6. COBIT 5 and Other Frameworks

M01 - Defining IT Governance and COBIT 5 3/22 | 15/246

 □ISACA Board of Directors directive:
□ “Tie together and reinforce all ISACA knowledge
assets with COBIT”
□Provide a renewed and authoritative
governance and management
framework for enterprise information
and related technology
□Integrate all other major ISACA
frameworks and guidance
□Align with other major frameworks
and standards

© 2013 ISACA. All Rights

Reserved.
M01 - Defining IT Governance and COBIT 5 4/22 | 16/246
 Governance of Enterprise COBIT 5 ties together all
ISACA knowledge
IT
assets, i.e.
• COBIT 4.1
IT • Val IT™
Governance BMIS • Risk IT
(2010) • Business Model for
Information Security™
Management
Evolution

(BMIS™)
Val IT 2.0 • ITAssurance
(2008) Framework™ (ITAF™);
Contro • Taking Governance
l orward (TGF),
• Board Briefing on IT
Audi Risk IT Governance, 2nd
(2009)
t Edition.

COBIT COBIT COBIT COBIT4.0/4.1 COBIT

© 2013 ISACA. All Rights

1 2 3 5
1996 1998 2000 2005/7 2012

Reserved.
M01 - Defining IT Governance and COBIT 5 5/22 | 17/246
 □ Provide guidance in:
□ Enterprise architecture
creation
□ Asset and service management
□Emerging sourcing and
organization models
□Innovation and
emerging technologies
□End to end business and
IT responsibilities
□Controls for user-initiated
and user-controlled IT
solutions
M01 - Defining IT Governance and COBIT 5
□ A need for the enterprise to:
□ Achieve increased value
□Obtain business user satisfaction
□Achieve compliance with
relevant laws, regulations and
policies
□Improve the relation
between business and IT
□Increase the return of
governance over enterprise IT
□Connect and align with other
major
frameworks and standards
© 2013 ISACA. All Rights
Reserved.
6/22 | 18/246
 □ Information is the business
currency of the 21st
Century
□ Information has a life cycle: it is
created, used, retained,
disclosed and destroyed
□ Technology plays a key role in
these actions
□ Technology is becoming pervasive
in all aspects of business and
personal life
□ Every form of enterprise needs
to be able to rely on quality

© 2013 ISACA. All Rights

information to support quality
executive decisions!

Reserved.
M01 - Defining IT Governance and COBIT 5 7/22 | 19/246
 □ Not simply IT; not only for big business!
□ COBIT 5 is about governing and managing
information
□ Whatever medium is used
□ End to end throughout the enterprise
□Information is equally important to:
□ Global, multinational business
□ National and local government
□ Charities and not for profit enterprises
□ Small to medium enterprises
□ Clubs and associations

© 2013 ISACA. All Rights

Reserved.
M01 - Defining IT Governance and COBIT 5 8/22 | 20/246
 □ Enterprises and their executives strive to:
□ Maintain quality information to support
business decisions
□ Generate business value from IT-enabled
investments, i.e., achieve strategic goals and
realise business benefits through effective
and innovative use of IT
□ Achieve operational excellence through
reliable and efficient application of technology
□ Maintain IT-related risk at an acceptable level
□ Optimise the cost of IT services and technology
de
vr
es
e
R
st
hg
i
R
l
A
A
C
A
S
I3
1
0
2
©

M01 - Defining IT Governance and COBIT 5 9/22 | 21/246

 □ Delivering enterprise stakeholder value requires good
governance
□and management of information and technology (IT) assets
Enterprise boards, executives and management have to embrace
IT like any other significant part of the business
□External legal, regulatory and contractual compliance
requirements related to enterprise use of information and
technology are increasing, threatening value if breached
□COBIT 5 provides a comprehensive framework that assists
enterprises to achieve their goals and deliver value through
effective governance and management of enterprise IT

© 2013 ISACA. All Rights

Reserved.
M01 - Defining IT Governance and COBIT 5 10/22 | 22/246
 □ Enterprises are under constant pressure to:
□ Increase benefits realization through effective and innovative use of
enterprise
IT:
□ Generate business value from new enterprise investments with a supporting
IT investment
□ Achieve operational excellence through application of technology
□ Maintain IT related risk at an acceptable level
□Contain cost of IT services and technology
□Ensure business and IT collaboration, leading to business user satisfaction
with IT engagement and services
□Comply with ever increasing relevant laws, regulations and policies

© 2013 ISACA. All Rights

Reserved.
M01 - Defining IT Governance and COBIT 5 11/22 | 23/246
 □ COBIT 5 is initially in 3 volumes:
□ COBIT 5: A Business Framework for
thethe Governance and
Management of Enterprise IT
□COBIT 5: Enabling Processes
□COBIT 5: Implementation
□Several guides acts as
extension
□COBIT 5: for Information Security
□COBIT 5: for Risk
M01 - Defining IT Governance and COBIT 5
□ Simplified:
□ COBIT 5 directly addresses
needs of the viewer from
different perspectives.
□ Development continues with
specific practitioner guides
□COBIT 5 is based on:
□5 principles
□7 enablers
© 2013 ISACA. All Rights
Reserved.
12/22 | 24/246
 © 2013 ISACA. All Rights
Reserved.
M01 - Defining IT Governance and COBIT 5 13/22 | 25/246
 PERFORMANCE: CONFORMANCE
Drivers Business Goals Basel III,
Sarbanes-
Oxley Act, etc.

Enterprise Governance Balanced

COSO
Scorecar
d

IT
Governance

ISO ISO/ EI ISO/ EI

Best Practice Standards 9001:2000 C C
27002 20000

© 2013 ISACA. All Rights

QA Security
Processes and Procedures ITIL
Procedures Principle

Reserved.
s

M01 - Defining IT Governance and COBIT 5 15/22 | 27/246

 © 2013 ISACA. All Rights
Reserved.
M01 - Defining IT Governance and COBIT 5 16/22 | 28/246
 □ ISO/IEC
38500:
□ ISO’s 6 principles map to COBIT 5 (appendix E).
□ ITIL - the following 5 areas and domains
are covered by ITIL:
□ A subset of process in the DSS and BAI domain
□ Some process in the APO domain
□ ISO/IEC 27000:
□ Security and IT-related processes in domains EDM,
APO and DSS
□ Some monitoring of security monitoring activities in
de
MEA vr
es
e
R
st

□ ISO/IEC 31000: hg
i
R
l
A
A
C
□ Risk management related activities in EDM and APO A
S
I3
1
0
2
©

M01 - Defining IT Governance and COBIT 5 17/22 | 29/246

 □ TOGAF (The Open Group
Architecture Framework):
□ Resource-related processes in EDM
□ TOGAF components of the architecture board
and governance areas
□ Enterprise architecture processes of APO
□ PRINCE2:
□ Project management processes in the BAI domain
□ Portfolio related processes in the APO domain
□ CMMI:
□ Some organisational and quality-related
processes in the APO domain

© 2013 ISACA. All Rights

□ Application - building and acquisition

Reserved.
related processes in BAI
M01 - Defining IT Governance and COBIT 5 18/22 | 30/246
 □ Defines the starting point of governance
and management activities with the
stakeholder needs related to enterprise IT
□ Creates a more holistic, integrated and ete
compl view of enterprise governance and en
managem of IT that is consistent, provides t
an end-to-en view on all IT-related matters d
and provides a holistic view
□ Creates a common language between IT
and business for the enterprise
governance and management of IT de
vr
es
e
Rs
□ Is consistent with generally accepted i
R
hg
t

corporat governance standards, and thus

A
A
C
AS

helps to mee regulatory requirements

3
1
0
2
©

M01 - Defining IT Governance and COBIT 5 19/22 | 31/246

 □ COBIT 5
Scope
□Benefits
□Enterprise Benefits
□Stakeholder Value
□The COBIT 5 Volumes
□COBIT 5 Product Family
□COBIT 5 Mapping
□COBIT and Other IT Governance
Frameworks

M01 - Defining IT Governance and COBIT 5 20/22 | 32/246

M01 - Defining IT Governance and COBIT 5 21/22 | 33/246
 

I hope you enjoyed

this presentation. If
so, please like, share
and leave a
comment below.
Endorsements on
LinkedIn are also
highly appreciated!

(your feedback = more free stuff)

MIROSLAWDABROWSKI.COM/downloads