Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
1
AGENDA
Overview of Frameworks
Similarities and Differences
Q&A
2
6
Control OBjectives for Information and related Technology
8
COBIT ONLINE: WWW.ISACA.ORG/COBITONLINE
•Framework
•Control Objectives
•Inputs/Outputs
•RACI Charts
•Goals and Metrics
•Maturity Models
•Control Practices
9
•Assurance Steps
COBIT ON IT GOVERNANCE..
owners.
COBIT Family of Products
11
COBIT IT Domains and Processes
12
COBIT COMPONENTS
4 Domains
•Planning & Organization (PO)
•Acquire & Implement (AI)
•Delivery & Support (DS)
•Monitor and Evaluate (ME)
34 Control Objectives
318 Detailed Control Activities
13
14
INTERRELATIONSHIPS WITH COBIT COMPONENTS
15
How Does Governance and the Business Drive IT?
16
How Does Governance and the Business Drive IT?
17
How Does Governance and the Business Drive IT?
IT Goals:
18
How Does Governance and the Business Drive IT?
COBIT information Criteria
19
How Does Governance and the Business Drive IT?
20
How Does Governance and the Business Drive IT?
COBIT information Criteria
21
COBIT FRAMEWORK NAVIGATION
22
COBIT FRAMEWORK NAVIGATION- EXAMPLE
23
COBIT FRAMEWORK NAVIGATION- EXAMPLE
24
CHANGE MANAGEMENT ITIL PROCESS FLOW SUMMARY
Reasons:
Fix a Problem
Changing business
requirements
Changing technology
Continuous SIP
Change Advisory Board
External forces (e.g.
Service Management
competition, legislations)
Technical Experts
Customers and Users
Interested Parties
25
ITIL
Information Technology
Library
26
INTRODUCTION TO ITIL
During the late 1980’s the Central Computer and
Telecommunication Agency (CCTA) in the United
27
Kingdom started to work on what is now known as
ITIL, the Information Technology Infrastructure
Library
28
ITIL MYTH
29
ITIL V.2 AND V.3
ITIL v2 , seven books with two main areas:
•Service Support
•Service Delivery
32
COBIT Control Objectives Linked with ITIL V.2
Plan and Organize Direct link with ITIL
33
COBIT Control Objectives Linked with ITIL
Define and Support
Direct link with ITIL
34
ONE TO ONE COMPARISON COBIT 4.1 AND ITIL V.2
Service Level Maintain and improve IT service quality Service DS1. and
Management through a constant cycle of agreeing, Delivery some of
monitoring and reporting IT service DS.2
level agreements
Availability Optimize the capacity of the IT Service DS.3
Management infrastructure and supporting Delivery
organization to deliver cost effective
and sustained level of availability to
satisfy business objectives.
Capacity Ensure the capacity and performance Service DS.3
Management aspects of the business requirements Delivery
are provided timely and cost effectively.
IT Service Ensuring that the required IT services Service DS.4
Continuity and facilities can be recovered within Delivery 36
the agreed times
MATURITY MODELING
Maturity modeling for management and control over IT processes is
based on a method of self-evaluation by the organization.
In COBIT and ITIL a maturity model has been defined for each section,
providing an incremental measurement scale from 0, non-existent,
through 5, optimized.
Using the maturity models developed for each IT process, management
can identify:
38
Maturity Model- Where Does Your Organization Stack?
Optimization/ Value
Managed and
Defined Process Measurable
Repeatable/ Integration/ Service Level 5
Control/ Proactive
Intuitive
Awareness/ Reactive Level 4 IT as strategic
Initial/ Ad Hoc Level 3 business partner
IT as a service
IT and business
provider
Initiation/ Chaotic Level 2 Analyze trends metric linkage
Define services,
IT/business
Set thresholds classes, pricing
Level 1 Fight fires collaboration
Predict Understand costs improves
Inventory problems Guarantee SLAs business
Ad hoc Initiate process
Measure appli- Measure & report
Undocumented
problem mgt cation service availability Real-time
process availability infrastructure
Unpredictable Integrate Manage IT as a Business
Alert and Automate processes Business
Multiple help event mgt planning
Mature Service and Account
Capacity Management
desks Measure
problem, mgt
Minimal IT
component configuration, Service Delivery Process Engineering
operations availability change, asset
(up/down)Operational
and Process Engineering
User call 39
performance
notification Tool Leverage mgt processes
PROCESS MATURITY MODEL
40
IN SHORT- WHAT ARE SOME OF THE BENEFITS
oBetter alignment of IT environment based on business focus and
customer needs
41
SO, HOW THEN DO WE IMPLEMENT A GOVERNANCE FRAMEWORK?
42
QUESTIONS & ANSWERS
Questions & Answers
THANK YOU!!!!
43
Contact Information: