Using COBIT 5 Framework for Cybersecurity Assessment · Using COBIT 5 Framework for Cybersecurity...

Preview:

Click to see full reader

Citation preview

Conference 2018Conference 2018

Using COBIT 5 Framework for Cybersecurity Assessment

Hugh Burley, Trevor Hurst, and Ivor MacKay

Conference 2018

Speakers

Trevor Hurst, Chief Information OfficerMinistry of Advanced Education, Skills & Training

Hugh Burley, Manager of Information Security/Information Security OfficerThompson Rivers University/BCNET

Ivor MacKay, Manager, Information TechnologyBCNET

Conference 2018

Agenda

1. COBIT 5 Refresher2. Why COBIT 53. Assessments4. Q & A

Conference 2018

COBIT 5 Refresher

Conference 2018

COBIT PRINCIPLES

Conference 2018

Meeting Stakeholder Needs

Conference 2018

COBIT 5 ENABLERS

Conference 2018

GOVERNANCE VS MANAGEMENT

Conference 2018

Conference 2018

Why COBIT 5?

Conference 2018

Alignment“How do I ensure all of our

Digital investments contribute to Stakeholder Value and enable the strategy of my Institution?

Audit preparation (Risk Management)

Tell a better story (funding)

“How do I ensure benefits are realized and IT risks are

mitigated? How can I prepare for upcoming Audit and/or

review activity?

“How do I better communicate the gaps in our

environment and achieve better funding?

Conference 2018

OAGBC General Computing Controls Report

http://www.bcauditor.com/sites/default/files/publications/reports/OAGBC%20General%20Computing%20Controls%20Report_FINAL.pdf

Conference 2018

COBIT Maturity

Conference 2018

COBIT Maturity

Conference 2018

Assessments

Conference 2018

Assessment vs Audit

Or is it really Gap Analysis vs. Internal Audit vs. Pre-Assessment

Conference 2018

Differences Between the COBIT 4.1 and the COBIT 5

APO12 Manage Risk

APO13 Manage Security

BAI06 Manage Changes

DSS02 Manage Service Requests and Incidents

Conference 2018

Assessment Methodology

Conference 2018

KEY AREA: RISK

a) Levelofriskacceptanceb) Riskreviewc) Riskapproval

KEY AREA: MANAGING SECURITY

Conference 2018

Risk Assessment Consequence Table

Conference 2018

KEY AREA: MANAGING CHANGE

a) Methods of assessing change and its risks

b) Approval process

KEY AREA: MANAGE SERVICE REQUESTS AND INCIDENTS

a) Problem trackingb) Evidence of reviewing Incidents and

Requests

Conference 2018

Self-Assessment

Conference 2018

Self-Assessmenthttp://www.isaca.org/COBIT/Pages/Self-Assessment-Guide.aspx

Conference 2018

Self-Assessmenthttp://www.isaca.org/COBIT/Pages/COBIT-5-PAM.aspx

Conference 2018

Info~Tech

Recommended

mengenai COBIT
Documents
Introduction to COBIT 5 - NUS STMI · Introduction to COBIT 5 About COBIT 5 This one-day “Introduction to COBIT 5” course provides an introduction to the COBIT 5 governance framework
Documents
COBIT® 5 Supplementary Guide for the COBIT 5 Process ...campus.itpreneurs.com/itpreneurs/LPEngine/Cobit/Foundation/English... · COBIT® 5 Supplementary Guide for the COBIT 5 Process
Documents
Cobit® 5 Comparação com Cobit® 4
Technology
Cybersecurity and COBIT - ISACA South Floridaisacasfl.org/wp-content/uploads/conference/grc2017/05_Implimenting... · §Identify the risk architecture §Use the COBIT 5 goals cascade
Documents
CyberWatch for COBIT · 2020. 9. 14. · CyberWatch for COBIT Compliance S With today’s prevalence of technology in the workplace, we can’t stress enough the importance of cybersecurity
Documents
COBIT 5 & COBIT 5 for Risk An overview - ISACA · • Cobit 5.0 SME Reviewer • Cobit for Risk development workshop and SME reviewer • Cobit for Risk Scenarios Guide Task Force
Documents
COBIT Overview
Documents
cobit artigo
Documents
Cobit v4.1
Technology
COBIT 5 ISACA MTY 2012 05 v1.3m.isaca.org/chapters7/Monterrey/Events/Documents/20120305 CobiT 5.pdf · V. Diferencias de COBIT 5 con COBIT 4.1 VI. Futuros productos COBIT. I. Introducción
Documents
Manual Cobit
Documents
COBIT Self-assessment Guide: Using COBIT 5
Documents
Assurance over Cybersecurity using COBIT 5 - isaca.org.hk HKG Assurance over Cybersecurity.pdf · •The COBIT 5 framework can be applied to any process, including Cybersecurity,
Documents
Exposicion COBIT
Documents
Comparing COBIT 4.1 and COBIT 5 Comparing COBIT 4.1 and COBIT 5 Presented by
Documents
CobiT CobiT CobiT CobiT CobiT CobiT CobiT CobiT , ITIL and
Documents
COBIT 5 Online Collaborative Environment - Glenfis · PDF fileCOBIT 5 Product Family Source: COBIT 5, figure 11 COBIT® 5 COBIT 5 Online Collaborative Environment COBIT 5 Enabler Guides
Documents
CobIT presentation
Technology
EXTERNAL DEPENDENCIES MANAGEMENT (EDM) · 2020. 7. 24. · NIST Cybersecurity Framework (CSF) to External Dependencies Management Assessment (EDM) Crosswalk ... COBIT 5 APO02.01,
Documents