cobit executive summary and framework
DESCRIPTION
COBIT Executive Summary and Framework. Management Information. IT Governance Focus Areas. CORBIT Products. Interrelationships of COBIT Components. The concept of the COBIT Framework. Defining IT Goals and Enterprise Architecture for IT. Managing IT Resources to Deliver IT Goals. - PowerPoint PPT PresentationTRANSCRIPT
COBITExecutive Summary
and Framework
COBIT - 2 © Minder Chen, 2005-2006
Management Information
COBIT - 3 © Minder Chen, 2005-2006
IT Governance Focus Areas
COBIT - 4 © Minder Chen, 2005-2006
CORBIT Products
COBIT - 5 © Minder Chen, 2005-2006
Interrelationships of COBIT Components
COBIT - 6 © Minder Chen, 2005-2006
The concept of the COBIT Framework
COBIT - 7 © Minder Chen, 2005-2006
Defining IT Goals and Enterprise Architecture for IT
COBIT - 8 © Minder Chen, 2005-2006
Managing IT Resources to Deliver IT Goals
COBIT - 9 © Minder Chen, 2005-2006
Control Model
COBIT - 10 © Minder Chen, 2005-2006
Graphic Representation of Maturity Models
COBIT - 11 © Minder Chen, 2005-2006
The Three Dimensions of Maturity
COBIT - 12 © Minder Chen, 2005-2006
Maturity Attribute
• Awareness and Communication
• Policies, Standards, and Procedures
• Tools and Automation
• Skills and Expertise
• Responsibility and Accountability
• Goal Setting and Measurement
• COBIT 4.0 p. 25
COBIT - 13 © Minder Chen, 2005-2006
Relationship Among Process, Goals and Metrics (DS5)
COBIT - 14 © Minder Chen, 2005-2006
COBIT Management, Control, Alignment and Monitoring
COBIT - 15 © Minder Chen, 2005-2006
The COBIT Cube
COBIT - 16 © Minder Chen, 2005-2006
4 Domain
COBIT Processes Defined Within The Four Domains
COBIT - 17 © Minder Chen, 2005-2006
4 Domains
COBIT - 18 © Minder Chen, 2005-2006
Planning and Organizations
• PO1 Define a strategic IT plan.
• PO2 Define the information architecture.
• PO3 Determine technological direction.
• PO4 Define the IT processes, organisation and relationships.
• PO5 Manage the IT investment.
• PO6 Communicate management aims and direction.
• PO7 Manage IT human resources.
• PO8 Manage quality.
• PO9 Assess and manage IT risks.
• PO10 Manage projects.
COBIT - 19 © Minder Chen, 2005-2006
Acquisition and Implementation
• AI1 identify automated solutions
• AI2 acquire and maintain application software
• AI3 acquire and maintain technology infrastructure
• AI4 develop and maintain procedures
• AI5 install and accredit systems
• AI6 manage changes
COBIT - 20 © Minder Chen, 2005-2006
Delivery and Support• DS1 define and manage service levels• DS2 manage third-party services• DS3 manage performance and capacity• DS4 ensure continuous service• DS5 ensure systems security• DS6 identify and allocate costs• DS7 educate and train users• DS8 assist and advise customers• DS9 manage the configuration• DS10 manage problems and incidents• DS11 manage data• DS12 manage facilities• DS13 manage operations
COBIT - 21 © Minder Chen, 2005-2006
Monitoring
• M1 monitor the processes
• M2 assess internal control adequacy
• M3 obtain independent assurance
• M4 provide for independent audit
COBIT - 22 © Minder Chen, 2005-2006
Framework Navigation Overview
COBIT - 23 © Minder Chen, 2005-2006
Sample COBIT Core Components (1)
COBIT - 24 © Minder Chen, 2005-2006
Sample COBIT Core Components (2)
COBIT - 25 © Minder Chen, 2005-2006
Sample COBIT Core Components (3)
• COBIT 4.0 p. 34