Click here to load reader

prev
next
of 29

Framework COBIT

  • Upload
    rika

  • View
    38

  • Download
    2

Tags:

Embed Size (px)

DESCRIPTION

framework

Citation preview

Framework COBIT

Pertemuan Minggu ke -6 Framework COBITAgenda2Cobit Context Cobit Principle Bussiness Focused Process Control Oriented IT Resources Performance Measurement Overall Cobit Interrelationship

Cobit Context Dasar-Dasar Audit SIIT is an important factor in achieving success in the information economy and central to an entitys operational and financial management. enterprise governance and IT governance can no longer be considered separate and distinct disciplinesIT governance : the structure that links IT processes, IT resources and information to enterprise strategies and objectives. integrates and institutionalises optimal ways of planning and organising, acquiring and implementing, delivering and supporting, and monitoring and evaluating IT performance. assuring efficient and effective measurable improvements in related enterprise processes. enables the enterprise to take full advantage of its information, thereby maximising benefits, capitalising on opportunities and gaining competitive advantage.Cobit Context Dasar-Dasar Audit SI

IT Governance Lifecycle Dasar-Dasar Audit SI

Cobit Audience Dasar-Dasar Audit SICOBIT is designed to be used by three distinct audiences:ManagementTo help them balance risk and control investment in an often unpredictable IT environmentUsersTo obtain assurance on the security and controls of IT services provided by internal or third partiesAuditorsTo provide a framework to assist them to come to an opinion on the level of assurance on the particular subject matter being audited and/or provide advice to management on internal controlsPrinciple Dasar-Dasar Audit SICobit Framework Principle:Bussiness Focussed Process Control Oriented IT resources Measurement-drivenTo provide the information that the enterprise requires to achieve its objectives, the enterprise needs to invest in and manage and control IT resources using a structured set of processes to provide the services that deliver the required Cobit

Principle Dasar-Dasar Audit SI

Basic Cobit Principles Cobit Principle- Bussiness Focus: Dasar-Dasar Audit SIInformation Criteria To satisfy business objectives, information needs to conform to certain control criteria : Quality, Fiduciary, Security Bussiness Goal & IT GoalBasis for establishing business requirements and developing the metrics that allow measurement against these goals.A clear ownership and direction of the requirements by the business (the customer) and a clear understanding of what needs to be delivered, and how, by IT (the provider).Principle- Bussiness Focus: Dasar-Dasar Audit SIInformation Criteria :Quality :Effectiveness.EfficiencySecurity ConfidentialityIntegrity.Availability Fiduciary Compliance Reliable Control measures over the IT processes will not necessarily satisfy all the different business requirements indicated using primary (P), secondary (S) or blank indicators:Principle- Bussiness Focus: Dasar-Dasar Audit SI

Principle Process Control Oriented Dasar-Dasar Audit SI Process Oriented :COBIT defines IT activities in a generic process model within four domains: Plan and Organise (PO) - Provides direction to solution delivery (AI) and service delivery (DS)Acquire and Implement (AI) - Provides the solutions and passes them to be turned into servicesDeliver and Support (DS)Receives the solutions and makes them usable for end usersMonitor and Evaluate (ME)Monitors all processes to ensure that the direction provided is followedPrinciple Process Control Oriented Dasar-Dasar Audit SI

Principle Process Control Oriented Dasar-Dasar Audit SIRaci Chart :ResponsibleThose who do the work to achieve the task.AccountableThose who are ultimately accountable for the correct and thorough completion of the deliverable or task.ConsultedThose whose opinions are sought; and with whom there is two-way communication.InformedThose who are kept up-to-date on progress, often only on completion of the task or deliverable and with whom there is just one-way communication. Principle Process Control Oriented Dasar-Dasar Audit SI

Principle IT Resources Dasar-Dasar Audit SIIT Resources :To respond to the business requirements for IT, the enterprise needs to invest in the resources required : Applications InformationInfrastructurePeople

Principle IT ResourcesDasar-Dasar Audit SI

Defining IT Goals and Enterprise Architecture For IT Cobit Navigation Dasar-Dasar Audit SI

High Level Control Objective Domain process Information CriteriaIT Governance ComponentIT Resources Principle Measurement DrivenDasar-Dasar Audit SIMaturity Model :Using the maturity models developed for each of Cobit 34 IT processes, management can identify:The actual performance of the enterpriseWhere the enterprise is todayThe current status of the industryThe comparisonThe enterprises target for improvementWhere the enterprise wants to beThe required growth path between as-is and to-bePrinciple Measurement DrivenDasar-Dasar Audit SI

Principle Measurement DrivenDasar-Dasar Audit SIMaturity Model :are built up starting from the generic qualitative model to which principles from the following attributes :Awareness and communicationPolicies, plans and proceduresTools and automationSkills and expertiseResponsibility and accountabilityGoal setting and measurementPrinciple Measurement DrivenDasar-Dasar Audit SI

Principle Measurement DrivenDasar-Dasar Audit SIGoals and metrics are defined in COBIT at three levels:IT goals and metrics : what the business expects from IT and how to measure itProcess goals and metrics : what the IT process must deliver to support ITs objectives and how to measure itActivity goals and metrics : what needs to happen inside the process to achieve the required performance and how to measure itPrinciple Measurement DrivenDasar-Dasar Audit SI

Principle Measurement DrivenDasar-Dasar Audit SITwo kind of metric : Outcome measure, previously key goal indicators (KGIs)indicate whether the goals have been met. These can be measured only after the fact - lag indicatorsPerformance indicatorspreviously key performance indicators (KPIs), indicate whether goals are likely to be met. They can be measured before the outcome is clear - lead indicators.Principle Measurement DrivenDasar-Dasar Audit SI

Outcome Measurement - Lag Indicator

Performance Metric - Lead Indicator Overall Cobit Principle Dasar-Dasar Audit SI

Cobit Cube Overall Cobit Framework Dasar-Dasar Audit SI

Interrelationship Between Cobit ComponentDasar-Dasar Audit SI


Governance and Management Objectives - m.isaca.orgm.isaca.org/Knowledge-Center/Research/Documents/COBIT-2019-Framework... · COBIT® 2019 FRAMEWORK: GOVERNANCE AND MANAGEMENT OBJECTIVES

Governance and Management Objectives - m.isaca.orgm.isaca.org/Knowledge-Center/Research/Documents/COBIT-2019-Framework... · COBIT® 2019 FRAMEWORK: GOVERNANCE AND MANAGEMENT OBJECTIVES

Documents
Enterprise IT Governance With ITGI's CobIT V4(r) Framework - Free

Enterprise IT Governance With ITGI's CobIT V4(r) Framework - Free

Documents
Construcción de un framework que facilite la ... · i) Meycor CobiT, which is a complete comprehensive and intuitive tool for implementing the CobiT framework for Governance, Management

Construcción de un framework que facilite la ... · i) Meycor CobiT, which is a complete comprehensive and intuitive tool for implementing the CobiT framework for Governance, Management

Documents
Cobit as IT Management Best Practice Framework

Cobit as IT Management Best Practice Framework

Technology
Cobit 5 Framework

Cobit 5 Framework

Documents
COBIT 5 as IT Governance Framework and Implementation ...merode.econ.kuleuven.be/.../2017/poem/PoEM_2017_IndustryTrack3… · COBIT 5 as IT Governance Framework and Implementation

COBIT 5 as IT Governance Framework and Implementation ...merode.econ.kuleuven.be/.../2017/poem/PoEM_2017_IndustryTrack3… · COBIT 5 as IT Governance Framework and Implementation

Documents
IT Governance Framework and Implementation … IT Governance Framework and implementation roadmap ... The COBIT framework ... approach ensured that this IT Governance Framework and

IT Governance Framework and Implementation … IT Governance Framework and implementation roadmap ... The COBIT framework ... approach ensured that this IT Governance Framework and

Documents
Challenges of CoBIT 5 IT Governance Framework … COBIT 5 IT Governance framework CoBIT 5 is an enterprise level ITGF that applies to business from an executive, strategic, managerial

Challenges of CoBIT 5 IT Governance Framework … COBIT 5 IT Governance framework CoBIT 5 is an enterprise level ITGF that applies to business from an executive, strategic, managerial

Documents
Governance of virtual private networks using COBIT as ... · The purpose of this assignment is to ascertain whether the COBIT framework is an adequate framework to assist in the governance

Governance of virtual private networks using COBIT as ... · The purpose of this assignment is to ascertain whether the COBIT framework is an adequate framework to assist in the governance

Documents
METAMODEL OF THE IT GOVERNANCE FRAMEWORK COBIT

METAMODEL OF THE IT GOVERNANCE FRAMEWORK COBIT

Documents
COBIT Defining Information Security Governance...COBIT Control Objectives for Information and Related Technology • COBIT is a framework for IT management & governance. It is a set

COBIT Defining Information Security Governance...COBIT Control Objectives for Information and Related Technology • COBIT is a framework for IT management & governance. It is a set

Documents
KARELIA UNIVERSITY OF APPLIED SCIENCES Degree Programme … · CoBIT is a framework for IT and IT governance (CoBIT, 2017). Co-BIT is more a management level framework than ITIL

KARELIA UNIVERSITY OF APPLIED SCIENCES Degree Programme … · CoBIT is a framework for IT and IT governance (CoBIT, 2017). Co-BIT is more a management level framework than ITIL

Documents
AIIM - Framework for Information Governance - Framework for Information... · A Framework for Information Governance ... e.g. COBIT, tech ... Intermediate Technology Development Group–

AIIM - Framework for Information Governance - Framework for Information... · A Framework for Information Governance ... e.g. COBIT, tech ... Intermediate Technology Development Group–

Documents
Introduction to COBIT 5 - NUS STMI · Introduction to COBIT 5 About COBIT 5 This one-day “Introduction to COBIT 5” course provides an introduction to the COBIT 5 governance framework

Introduction to COBIT 5 - NUS STMI · Introduction to COBIT 5 About COBIT 5 This one-day “Introduction to COBIT 5” course provides an introduction to the COBIT 5 governance framework

Documents
Appropriate Processes For Using The COBIT 5 Framework For

Appropriate Processes For Using The COBIT 5 Framework For

Documents
frc.govmu.orgfrc.govmu.org/English/corgovernance/Documents/The... · COBIT Control Objectives for Information and Related Technology (COBIT) is a framework created by ISACA for information

frc.govmu.orgfrc.govmu.org/English/corgovernance/Documents/The... · COBIT Control Objectives for Information and Related Technology (COBIT) is a framework created by ISACA for information

Documents
COBIT 5 Framework - Koenig-solutions.com

COBIT 5 Framework - Koenig-solutions.com

Documents
COBIT 5 ISACA's new Framework for IT Governance, Risk ...cobit.nl/itmg-wp-content//Het COBIT 5.0 Framework.pdf · COBIT 5© ISACA • COBIT 5 is a comprehensive framework that helps

COBIT 5 ISACA's new Framework for IT Governance, Risk ...cobit.nl/itmg-wp-content//Het COBIT 5.0 Framework.pdf · COBIT 5© ISACA • COBIT 5 is a comprehensive framework that helps

Documents
Use of COBIT as a Risk Management & Audit Framework for Access Compliance

Use of COBIT as a Risk Management & Audit Framework for Access Compliance

Documents
COBIT 5 Framework Patrick Soenen

COBIT 5 Framework Patrick Soenen

Documents
COBIT 2019 as EGIT Framework for Internal Control and Audit · COBIT 2019 as EGIT Framework for Internal Control and Audit Andrei Drozdov, KPMG Moscow, Associate Director, IT Advisory

COBIT 2019 as EGIT Framework for Internal Control and Audit · COBIT 2019 as EGIT Framework for Internal Control and Audit Andrei Drozdov, KPMG Moscow, Associate Director, IT Advisory

Documents
COBIT Executive Summary and Framework

COBIT Executive Summary and Framework

Documents
Personal Copy of: Dr. Sarwono · PDF fileMapping COBIT 5 to Val IT and Risk IT ... existing ISACA publication COBIT® 5 for Information Security and the COBIT 5 framework itself

Personal Copy of: Dr. Sarwono · PDF fileMapping COBIT 5 to Val IT and Risk IT ... existing ISACA publication COBIT® 5 for Information Security and the COBIT 5 framework itself

Documents
Qecb Glc Cobit 5 Isaca s New Framework 201303

Qecb Glc Cobit 5 Isaca s New Framework 201303

Documents
What is the history of the COBIT framework?

What is the history of the COBIT framework?

Documents
COBIT as Framework for Leading Change and Transformation

COBIT as Framework for Leading Change and Transformation

Technology
COBIT 2019 - Cybiant · 2020. 1. 9. · COBIT® 2019 is the latest version of the globally recognized COBIT Framework, the leader in ensuring effective and strategic enterprise governance

COBIT 2019 - Cybiant · 2020. 1. 9. · COBIT® 2019 is the latest version of the globally recognized COBIT Framework, the leader in ensuring effective and strategic enterprise governance

Documents
CobiT CobiT CobiT CobiT CobiT CobiT CobiT CobiT , ITIL and

CobiT CobiT CobiT CobiT CobiT CobiT CobiT CobiT , ITIL and

Documents
S23 COBIT Framework Access Compliance

S23 COBIT Framework Access Compliance

Documents
IT GOVERNANCE EVALUATION: ADAPTING AND ADOPTING THE COBIT …eprints.qut.edu.au/98551/4/Loai_Al_Omari_Thesis.pdf · IT GOVERNANCE EVALUATION: ADAPTING AND ADOPTING THE COBIT FRAMEWORK

IT GOVERNANCE EVALUATION: ADAPTING AND ADOPTING THE COBIT …eprints.qut.edu.au/98551/4/Loai_Al_Omari_Thesis.pdf · IT GOVERNANCE EVALUATION: ADAPTING AND ADOPTING THE COBIT FRAMEWORK

Documents