SlideShare une entreprise Scribd logo

COBIT 2019 Executive Summary_v1.1 .pdf

D
DiegoIvanAlvaradoVel

Guía COBIT

Direction et management
1  sur  19
Télécharger pour lire hors ligne
© 2018 ISACA. All rights reserved. INTRODUCING Executive Summary November 2018
© 2018 ISACA. All rights reserved. COBIT® 2019 The globally recognized COBIT Framework, which helps ensure effective enterprise governance of information and technology, has been updated with new information and guidance, facilitating easier, tailored implementation— strengthening COBIT’s continuing role as an important driver of innovation and business transformation. This document sets the scene for the upcoming release of COBIT® 2019 guidance.
© 2018 ISACA. All rights reserved. Remembering John Lainhart • In dedication to John Lainhart, who was there from COBIT day -1 in 1995 until his passing in September 2018. • John was the relentless support behind many COBIT related projects, including COBIT 2019 . • ISACA is extremely grateful for John and his vision, and COBIT 2019 (and its progeny) are his legacy. Picture provided courtesy of Dirk Steuperaert
© 2018 ISACA. All rights reserved. COBIT 2019 DRIVERS AND BENEFITS
© 2018 ISACA. All rights reserved. COBIT 2019 UPDATE DRIVERS COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT 5 limitations
© 2018 ISACA. All rights reserved. COBIT 2019 OPTIMIZING I&T GOVERNANCE Enterprise Governance of I&T Business/IT Alignment Value Creation IT - used to refer to the organizational department with main responsibility for technology – versus I&T – all the information the enterprise generates, processes and uses to achieve its goals, as well as the technology to support that throughout the enterprise. COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections
© 2018 ISACA. All rights reserved. COBIT 2019 STAYING RELEVANT IN A CHANGED ENVIRONMENT • COBIT 5 was published in 2012, making it almost 7 years old • New technology and business trends in the use of IT (e.g. digitization) have not been incorporated into COBIT, requiring re-alignment • The need for the integration of new insights from practitioners, science and academia in the domain of I&T governance creation • Other standards have evolved, resulting in a different standards/frameworks landscape, requiring a re-alignment • More fluid and frequent updates of COBIT required COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections
© 2018 ISACA. All rights reserved. COBIT 2019 STAYING RELEVANT IN A CHANGED ENVIRONMENT COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections • US National Institute of Standards and Technology (NIST) standards: –NIST Cybersecurity Framework v1.1 –NIST SP 800 53 Rev 5 –NIST SP 800 37 Rev 2 (Risk Management Framework) • ISO/IEC 20000 • ISO/IEC 27000 family: –ISO/IEC 27001 –ISO/IEC 27002 –ISO/IEC 27004 –ISO/IEC 27005 • ISO/IEC 31000:2018 • ISO/IEC 38500 • ISO/IEC 38502 • A Guide to the Project Management Book of Knowledge: PMBOK® Guide, Sixth Edition, 2017 • The TOGAF® Standard, The Open Group • The Open Group IT4IT™ Reference Architecture, version 2.0 • CIS ® Critical Security Controls, Center for Internet Security • King IV Report on Corporate Governance™, 2016 • Scaled Agile Framework (SAFe®) • Cloud standards and good practices: • Amazon Web Services (AWS®) • Security Considerations for Cloud Computing, ISACA • Controls and Assurance in the Cloud: Using COBIT ® 5, ISACA • Enterprise Risk Management (ERM)— Integrated Framework, Committee of Sponsoring Organizations of the Treadway Commission (COSO), June 2017 • The TBM Taxonomy, The TBM Council • “Options for Transforming the IT Function Using Bimodal IT,” MIS Quarterly Executive (white paper) • ITIL V3 • HITRUST ® Common Security Framework, version 9, September 2017 • Change Management Methodology, Prosci • Skills Framework for the Information Age (SFIA® ) V6 • The Standard of Good Practice for Information Security, Information Security Forum (ISF), 2016 • CMMI V2.0 • The CMMI Cybermaturity Platform, 2018 • The Data Management Maturity Model, CMMI Institute, 2014 The COBIT 2019 development team looked at following standards/frameworks to align COBIT 2019 with:
© 2018 ISACA. All rights reserved. STRENGTHS • COBIT is a unique overarching IT Governance framework • COBIT process guidance has matured and has reached its best quality level yet • COBIT’s business perspective on IT brings a unique opportunity to further expand its impact OPPORTUNITIES • The current (target) audience for COBIT is still very much IT- and Assurance oriented • There is an opportunity to re-discover or re-launch some of COBIT hidden gems • More prescriptive implementation guidance such as incorporating specific design factors COBIT 2019 BUILDING ON COBIT STRENGTHS AND IDENTIFYING OPPORTUNITIES COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Buildng on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections
© 2018 ISACA. All rights reserved. • COBIT users find it hard to locate relevant contents for their needs • Perceived as complex and challenging to apply in practice • The enabler model is incomplete in terms of development and guidance, and thus often ignored • A challenging process capability model and general lack of support of performance management for other enablers • The perceived reputation of IT Governance itself as an inhibitor of change and (administrative) overhead – not per se a COBIT weakness but an IT Governance problem at large COBIT 2019 ADDRESSING COBIT 5 LIMITATIONS COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 limitations
© 2018 ISACA. All rights reserved. INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION & TECHNOLOGY (EGIT) AND THE NATURE OF COBIT
© 2018 ISACA. All rights reserved. In the light of digital transformation, information and technology (I&T) have become crucial in the support, sustainability and growth of enterprises. • Previously, governing boards and senior management could delegate, ignore or avoid I&T-related decisions • In most sectors and industries, such attitudes are now ill advised • Digitized enterprises are increasingly dependent on I&T for survival and growth • Stakeholder value creation is often driven by a high degree of digitization in new business models, efficient processes, successful innovation, etc. INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION AND TECHNOLOGY (EGIT)
© 2018 ISACA. All rights reserved. Given the centrality of I&T for enterprise risk management and value generation, a specific focus on enterprise governance of information and technology (EGIT) has arisen over the last two decades. EGIT is an integral part of corporate governance • Exercised by the board that oversees the definition and implementation of processes, structures and relational mechanisms • Enables both business and IT people to execute their responsibilities in support of business/IT alignment • Enables creation of business value from I&T-enabled business investments INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION AND TECHNOLOGY (EGIT)
© 2018 ISACA. All rights reserved. Fundamentally, EGIT is concerned with value delivery from digital transformation and the mitigation of business risk that results from digital transformation. More specifically, three main outcomes can be expected after successful adoption of EGIT. INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION AND TECHNOLOGY (EGIT) Benefits Realization Risk Optimization Resource Optimization
© 2018 ISACA. All rights reserved. COBIT is a framework for the governance and management of enterprise information and technology, aimed at the whole enterprise. • Enterprise I&T means all the technology and information processing the enterprise puts in place to achieve its goals, regardless of where this happens in the enterprise • Enterprise I&T is not limited to the IT department of an organization, but certainly includes it INTRODUCTION COBIT AS AN INFORMATION & TECHNOLOGY (I&T) FRAMEWORK
© 2018 ISACA. All rights reserved. Governance (Board Level) Management (Executive Level) INTRODUCTION GOVERNANCE AND MANAGEMENT DEFINED • Plans, builds, runs and monitors activities, in alignment with the direction set by the governance body, to achieve the enterprise objectives • Ensure stakeholder needs, conditions and options are evaluated to determine enterprise objectives • Ensure direction is set through prioritization and decision making • Ensure performance and compliance are monitored against objectives
© 2018 ISACA. All rights reserved. INTRODUCTION WHAT IS COBIT AND WHAT IT IS NOT: SETTING THE RIGHT EXPECTATIONS COBIT IS • A framework for the governance and management of enterprise I&T • COBIT defines the components to build and sustain a governance system • COBIT defines the design factors that should be considered by the enterprise to build a best fit governance system • COBIT is flexible and allows guidance on new topics to be added COBIT IS NOT • A full description of the whole IT environment of an enterprise • A framework to organize business processes • An (IT-) technical framework to manage all technology • COBIT does not make or prescribe any IT-related decisions
© 2018 ISACA. All rights reserved. APPENDIX
© 2018 ISACA. All rights reserved. ABOUT ISACA Nearing its 50th year, ISACA® (isaca.org) is a global association helping individuals and enterprises achieve the positive potential of technology. Today’s world is powered by technology, and ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations. ISACA leverages the expertise of its 450,000 engaged professionals in information and cyber security, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI® Institute, to help advance innovation through technology. ISACA has a presence in 188 countries, including 217 chapters worldwide and offices in both the United States and China.

Recommandé

Cobit 2019 foundation study material
Cobit 2019 foundation study materialCobit 2019 foundation study material
Cobit 2019 foundation study materialAnees Shaikh
 
COBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdfCOBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdfMartinPatrici
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACAMDFazlaRabbiAbir
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementChristian F. Nissen
 
COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT
COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise ITCOBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT
COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise ITMark Constable
 
An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019Gregor Polančič
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveSayyed Zakir Ali Rizwe
 
AXELOS - ITIL® Foundation
AXELOS - ITIL® FoundationAXELOS - ITIL® Foundation
AXELOS - ITIL® FoundationMirosław Dąbrowski C-level IT manager, CEO, Agile, ICF Coach, Speaker
 

Recommandé

Cobit 2019 foundation study material
Cobit 2019 foundation study materialCobit 2019 foundation study material
Cobit 2019 foundation study materialAnees Shaikh
 
COBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdfCOBIT 2019 Overview_v1.1.pdf
COBIT 2019 Overview_v1.1.pdfMartinPatrici
 
Cobit 2019 framework by ISACA
Cobit 2019 framework by ISACACobit 2019 framework by ISACA
Cobit 2019 framework by ISACAMDFazlaRabbiAbir
 
Introduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementIntroduction to COBIT 2019 and IT management
Introduction to COBIT 2019 and IT managementChristian F. Nissen
 
COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT
COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise ITCOBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise IT
COBIT 2019 webinar Use Cases: Tailoring Governance of Your Enterprise ITMark Constable
 
An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019An Introduction to IT Management with COBIT 2019
An Introduction to IT Management with COBIT 2019Gregor Polančič
 
IT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveIT Governance - COBIT Perspective
IT Governance - COBIT PerspectiveSayyed Zakir Ali Rizwe
 
AXELOS - ITIL® Foundation
AXELOS - ITIL® FoundationAXELOS - ITIL® Foundation
AXELOS - ITIL® FoundationMirosław Dąbrowski C-level IT manager, CEO, Agile, ICF Coach, Speaker
 
Introduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementIntroduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementChristian F. Nissen
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdfmohammed539963
 
Using ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherUsing ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherRob Akershoek
 
Cobit 5 - An Overview
Cobit 5 - An OverviewCobit 5 - An Overview
Cobit 5 - An OverviewAnurag Purohit
 
Introduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingIntroduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingMark Edmead
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance FrameworkSherri Booher
 
COBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an IntroductionCOBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an Introductionaqel aqel
 
Cobit_5_Checklist.pdf
Cobit_5_Checklist.pdfCobit_5_Checklist.pdf
Cobit_5_Checklist.pdfAmeur BENTOUTA
 
Cobit5 owerwiev and implementation proposal
Cobit5 owerwiev and implementation proposalCobit5 owerwiev and implementation proposal
Cobit5 owerwiev and implementation proposalEmilio Gratton
 
IT4IT BCS
IT4IT BCSIT4IT BCS
IT4IT BCSTony Price
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGoutama Bachtiar
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfitSMF Belgium
 
Align IT Strategy with Business Strategy
Align IT Strategy with Business StrategyAlign IT Strategy with Business Strategy
Align IT Strategy with Business StrategyMauly Chandra
 
IT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITIT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITThe Open Group SA
 
It strategic-plan-2018-2020
It strategic-plan-2018-2020It strategic-plan-2018-2020
It strategic-plan-2018-2020Chandra Shekhar (Kumar)
 
Modern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaModern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaEryk Budi Pratama
 
IT Governance
IT GovernanceIT Governance
IT GovernanceCarlos Chalico
 
ITIL management practices.pdf
ITIL management practices.pdfITIL management practices.pdf
ITIL management practices.pdfSSGC
 
IT Governance - COBIT 5 Capability Assessment
IT Governance - COBIT 5 Capability AssessmentIT Governance - COBIT 5 Capability Assessment
IT Governance - COBIT 5 Capability AssessmentEryk Budi Pratama
 
Developing IT strategy
Developing IT strategyDeveloping IT strategy
Developing IT strategyAnurag Purohit
 
COBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptxCOBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptxtonydwisusanto2
 
Cobi t 4.1-brochure
Cobi t 4.1-brochureCobi t 4.1-brochure
Cobi t 4.1-brochureDeloitte
 

Contenu connexe

Tendances

Introduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementIntroduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementChristian F. Nissen
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdfmohammed539963
 
Using ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherUsing ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherRob Akershoek
 
Introduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingIntroduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingMark Edmead
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance FrameworkSherri Booher
 
COBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an IntroductionCOBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an Introductionaqel aqel
 
Cobit5 owerwiev and implementation proposal
Cobit5 owerwiev and implementation proposalCobit5 owerwiev and implementation proposal
Cobit5 owerwiev and implementation proposalEmilio Gratton
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGoutama Bachtiar
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfitSMF Belgium
 
Align IT Strategy with Business Strategy
Align IT Strategy with Business StrategyAlign IT Strategy with Business Strategy
Align IT Strategy with Business StrategyMauly Chandra
 
IT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITIT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITThe Open Group SA
 
Modern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaModern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaEryk Budi Pratama
 
ITIL management practices.pdf
ITIL management practices.pdfITIL management practices.pdf
ITIL management practices.pdfSSGC
 
IT Governance - COBIT 5 Capability Assessment
IT Governance - COBIT 5 Capability AssessmentIT Governance - COBIT 5 Capability Assessment
IT Governance - COBIT 5 Capability AssessmentEryk Budi Pratama
 
Developing IT strategy
Developing IT strategyDeveloping IT strategy
Developing IT strategyAnurag Purohit
 

Tendances (20)

Introduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT managementIntroduction to COBIT 5 and IT management
Introduction to COBIT 5 and IT management
 
cobit 2019 presentation.pdf
cobit 2019 presentation.pdfcobit 2019 presentation.pdf
cobit 2019 presentation.pdf
 
Using ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT togetherUsing ITIL 4 and IT4IT together
Using ITIL 4 and IT4IT together
 
Cobit 5 - An Overview
Cobit 5 - An OverviewCobit 5 - An Overview
Cobit 5 - An Overview
 
Introduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and TrainingIntroduction to COBIT 2019 Certification and Training
Introduction to COBIT 2019 Certification and Training
 
IT Governance Framework
IT Governance FrameworkIT Governance Framework
IT Governance Framework
 
COBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an IntroductionCOBIT 5 IT Governance Model: an Introduction
COBIT 5 IT Governance Model: an Introduction
 
Cobit_5_Checklist.pdf
Cobit_5_Checklist.pdfCobit_5_Checklist.pdf
Cobit_5_Checklist.pdf
 
Cobit5 owerwiev and implementation proposal
Cobit5 owerwiev and implementation proposalCobit5 owerwiev and implementation proposal
Cobit5 owerwiev and implementation proposal
 
IT4IT BCS
IT4IT BCSIT4IT BCS
IT4IT BCS
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 Framework
 
IT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdfIT4IT - Manage the Digital Enterprise.pdf
IT4IT - Manage the Digital Enterprise.pdf
 
Align IT Strategy with Business Strategy
Align IT Strategy with Business StrategyAlign IT Strategy with Business Strategy
Align IT Strategy with Business Strategy
 
IT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of ITIT4IT™ - Managing the Business of IT
IT4IT™ - Managing the Business of IT
 
It strategic-plan-2018-2020
It strategic-plan-2018-2020It strategic-plan-2018-2020
It strategic-plan-2018-2020
 
Modern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL IndonesiaModern IT Service Management Transformation - ITIL Indonesia
Modern IT Service Management Transformation - ITIL Indonesia
 
IT Governance
IT GovernanceIT Governance
IT Governance
 
ITIL management practices.pdf
ITIL management practices.pdfITIL management practices.pdf
ITIL management practices.pdf
 
IT Governance - COBIT 5 Capability Assessment
IT Governance - COBIT 5 Capability AssessmentIT Governance - COBIT 5 Capability Assessment
IT Governance - COBIT 5 Capability Assessment
 
Developing IT strategy
Developing IT strategyDeveloping IT strategy
Developing IT strategy
 

Similaire à COBIT 2019 Executive Summary_v1.1 .pdf

COBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptxCOBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptxtonydwisusanto2
 
Cobi t 4.1-brochure
Cobi t 4.1-brochureCobi t 4.1-brochure
Cobi t 4.1-brochureDeloitte
 
Comparación de CobiT 5 con CobiT 4.1
Comparación de CobiT 5 con CobiT 4.1Comparación de CobiT 5 con CobiT 4.1
Comparación de CobiT 5 con CobiT 4.1Slime Argentina
 
Frameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyFrameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyJohn Halliday
 
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB
 
COBIT® Presentation Package.ppt
COBIT® Presentation Package.pptCOBIT® Presentation Package.ppt
COBIT® Presentation Package.pptEmmacuet
 
Cobit 4.1 ivooktavianti
Cobit 4.1 ivooktaviantiCobit 4.1 ivooktavianti
Cobit 4.1 ivooktaviantiIvo Oktavianti
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing worldPECB
 
Cobit5 introduction
Cobit5 introductionCobit5 introduction
Cobit5 introductionsuhaskokate
 

Similaire à COBIT 2019 Executive Summary_v1.1 .pdf (20)

COBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptxCOBIT-2019-Executive-Summary_v1.0.pptx
COBIT-2019-Executive-Summary_v1.0.pptx
 
Cobi t 4.1-brochure
Cobi t 4.1-brochureCobi t 4.1-brochure
Cobi t 4.1-brochure
 
Comparación de CobiT 5 con CobiT 4.1
Comparación de CobiT 5 con CobiT 4.1Comparación de CobiT 5 con CobiT 4.1
Comparación de CobiT 5 con CobiT 4.1
 
COBIT 5 FAQ
COBIT 5 FAQCOBIT 5 FAQ
COBIT 5 FAQ
 
Frameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information TechnologyFrameworks to drive value from your investment in Information Technology
Frameworks to drive value from your investment in Information Technology
 
Cobit overview
Cobit overviewCobit overview
Cobit overview
 
Cobit 4.1 indri
Cobit 4.1 indriCobit 4.1 indri
Cobit 4.1 indri
 
COBIT Intor.pptx
COBIT Intor.pptxCOBIT Intor.pptx
COBIT Intor.pptx
 
Darmin ritonga 11353205418
Darmin ritonga 11353205418Darmin ritonga 11353205418
Darmin ritonga 11353205418
 
cobit 2019 -current-user - ISACA Publication
cobit 2019 -current-user - ISACA Publicationcobit 2019 -current-user - ISACA Publication
cobit 2019 -current-user - ISACA Publication
 
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
PECB Webinar: Aligning COBIT 5.0 and ISO/IEC 38500
 
Lailatul izzati
Lailatul izzatiLailatul izzati
Lailatul izzati
 
CobiT Foundation Free Training
CobiT Foundation Free TrainingCobiT Foundation Free Training
CobiT Foundation Free Training
 
Cobit5 introduction
Cobit5 introductionCobit5 introduction
Cobit5 introduction
 
COBIT® Presentation Package.ppt
COBIT® Presentation Package.pptCOBIT® Presentation Package.ppt
COBIT® Presentation Package.ppt
 
Cobit 4.1 ivo oktavianti
Cobit 4.1 ivo oktaviantiCobit 4.1 ivo oktavianti
Cobit 4.1 ivo oktavianti
 
Cobit 4.1 ivooktavianti
Cobit 4.1 ivooktaviantiCobit 4.1 ivooktavianti
Cobit 4.1 ivooktavianti
 
Cobit 4.1 ivo oktavianti
Cobit 4.1 ivo oktaviantiCobit 4.1 ivo oktavianti
Cobit 4.1 ivo oktavianti
 
IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world IT Governance – The missing compass in a technology changing world
IT Governance – The missing compass in a technology changing world
 
Cobit5 introduction
Cobit5 introductionCobit5 introduction
Cobit5 introduction
 

Dernier

operational plan ppt.pptx nursing management
operational plan ppt.pptx nursing managementoperational plan ppt.pptx nursing management
operational plan ppt.pptx nursing managementTulsiDhidhi1
 
Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...Hedda Bird
 
Agile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptxAgile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptxalinstan901
 
Day 0- Bootcamp Roadmap for PLC Bootcamp
Day 0- Bootcamp Roadmap for PLC BootcampDay 0- Bootcamp Roadmap for PLC Bootcamp
Day 0- Bootcamp Roadmap for PLC BootcampPLCLeadershipDevelop
 
Does Leadership Possible Without a Vision.pptx
Does Leadership Possible Without a Vision.pptxDoes Leadership Possible Without a Vision.pptx
Does Leadership Possible Without a Vision.pptxSaqib Mansoor Ahmed
 
Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...
Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...
Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...Pooja Nehwal
 
Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...
Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...
Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...Pooja Nehwal
 
situational leadership theory by Misba Fathima S
situational leadership theory by Misba Fathima Ssituational leadership theory by Misba Fathima S
situational leadership theory by Misba Fathima Smisbafathima9940
 
VIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call GirlVIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call Girladitipandeya
 
BDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort ServiceDelhi Call girls
 

Dernier (20)

Empowering Local Government Frontline Services - Mo Baines.pdf
Empowering Local Government Frontline Services - Mo Baines.pdfEmpowering Local Government Frontline Services - Mo Baines.pdf
Empowering Local Government Frontline Services - Mo Baines.pdf
 
Unlocking the Future - Dr Max Blumberg, Founder of Blumberg Partnership
Unlocking the Future - Dr Max Blumberg, Founder of Blumberg PartnershipUnlocking the Future - Dr Max Blumberg, Founder of Blumberg Partnership
Unlocking the Future - Dr Max Blumberg, Founder of Blumberg Partnership
 
Becoming an Inclusive Leader - Bernadette Thompson
Becoming an Inclusive Leader - Bernadette ThompsonBecoming an Inclusive Leader - Bernadette Thompson
Becoming an Inclusive Leader - Bernadette Thompson
 
operational plan ppt.pptx nursing management
operational plan ppt.pptx nursing managementoperational plan ppt.pptx nursing management
operational plan ppt.pptx nursing management
 
Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...
 
Imagine - Creating Healthy Workplaces - Anthony Montgomery.pdf
Imagine - Creating Healthy Workplaces - Anthony Montgomery.pdfImagine - Creating Healthy Workplaces - Anthony Montgomery.pdf
Imagine - Creating Healthy Workplaces - Anthony Montgomery.pdf
 
Agile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptxAgile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptx
 
LoveLocalGov - Chris Twigg, Inner Circle
LoveLocalGov - Chris Twigg, Inner CircleLoveLocalGov - Chris Twigg, Inner Circle
LoveLocalGov - Chris Twigg, Inner Circle
 
Day 0- Bootcamp Roadmap for PLC Bootcamp
Day 0- Bootcamp Roadmap for PLC BootcampDay 0- Bootcamp Roadmap for PLC Bootcamp
Day 0- Bootcamp Roadmap for PLC Bootcamp
 
Does Leadership Possible Without a Vision.pptx
Does Leadership Possible Without a Vision.pptxDoes Leadership Possible Without a Vision.pptx
Does Leadership Possible Without a Vision.pptx
 
Rohini Sector 16 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 16 Call Girls Delhi 9999965857 @Sabina Saikh No AdvanceRohini Sector 16 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 16 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
 
Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...
Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...
Call Now Pooja Mehta : 7738631006 Door Step Call Girls Rate 100% Satisfactio...
 
Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...
Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...
Call now : 9892124323 Nalasopara Beautiful Call Girls Vasai virar Best Call G...
 
Intro_University_Ranking_Introduction.pptx
Intro_University_Ranking_Introduction.pptxIntro_University_Ranking_Introduction.pptx
Intro_University_Ranking_Introduction.pptx
 
Call Girls Service Tilak Nagar @9999965857 Delhi 🫦 No Advance VVIP 🍎 SERVICE
Call Girls Service Tilak Nagar @9999965857 Delhi 🫦 No Advance VVIP 🍎 SERVICECall Girls Service Tilak Nagar @9999965857 Delhi 🫦 No Advance VVIP 🍎 SERVICE
Call Girls Service Tilak Nagar @9999965857 Delhi 🫦 No Advance VVIP 🍎 SERVICE
 
situational leadership theory by Misba Fathima S
situational leadership theory by Misba Fathima Ssituational leadership theory by Misba Fathima S
situational leadership theory by Misba Fathima S
 
VIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call GirlVIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls Ameerpet high-profile Call Girl
 
BDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort ServiceBDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 99 Noida Escorts >༒8448380779 Escort Service
 
Disrupt or be Disrupted - Kirk Vallis.pdf
Disrupt or be Disrupted - Kirk Vallis.pdfDisrupt or be Disrupted - Kirk Vallis.pdf
Disrupt or be Disrupted - Kirk Vallis.pdf
 
Discover -CQ Master Class - Rikita Wadhwa.pdf
Discover -CQ Master Class - Rikita Wadhwa.pdfDiscover -CQ Master Class - Rikita Wadhwa.pdf
Discover -CQ Master Class - Rikita Wadhwa.pdf
 

COBIT 2019 Executive Summary_v1.1 .pdf

  • 1. © 2018 ISACA. All rights reserved. INTRODUCING Executive Summary November 2018
  • 2. © 2018 ISACA. All rights reserved. COBIT® 2019 The globally recognized COBIT Framework, which helps ensure effective enterprise governance of information and technology, has been updated with new information and guidance, facilitating easier, tailored implementation— strengthening COBIT’s continuing role as an important driver of innovation and business transformation. This document sets the scene for the upcoming release of COBIT® 2019 guidance.
  • 3. © 2018 ISACA. All rights reserved. Remembering John Lainhart • In dedication to John Lainhart, who was there from COBIT day -1 in 1995 until his passing in September 2018. • John was the relentless support behind many COBIT related projects, including COBIT 2019 . • ISACA is extremely grateful for John and his vision, and COBIT 2019 (and its progeny) are his legacy. Picture provided courtesy of Dirk Steuperaert
  • 4. © 2018 ISACA. All rights reserved. COBIT 2019 DRIVERS AND BENEFITS
  • 5. © 2018 ISACA. All rights reserved. COBIT 2019 UPDATE DRIVERS COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT 5 limitations
  • 6. © 2018 ISACA. All rights reserved. COBIT 2019 OPTIMIZING I&T GOVERNANCE Enterprise Governance of I&T Business/IT Alignment Value Creation IT - used to refer to the organizational department with main responsibility for technology – versus I&T – all the information the enterprise generates, processes and uses to achieve its goals, as well as the technology to support that throughout the enterprise. COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections
  • 7. © 2018 ISACA. All rights reserved. COBIT 2019 STAYING RELEVANT IN A CHANGED ENVIRONMENT • COBIT 5 was published in 2012, making it almost 7 years old • New technology and business trends in the use of IT (e.g. digitization) have not been incorporated into COBIT, requiring re-alignment • The need for the integration of new insights from practitioners, science and academia in the domain of I&T governance creation • Other standards have evolved, resulting in a different standards/frameworks landscape, requiring a re-alignment • More fluid and frequent updates of COBIT required COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections
  • 8. © 2018 ISACA. All rights reserved. COBIT 2019 STAYING RELEVANT IN A CHANGED ENVIRONMENT COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections • US National Institute of Standards and Technology (NIST) standards: –NIST Cybersecurity Framework v1.1 –NIST SP 800 53 Rev 5 –NIST SP 800 37 Rev 2 (Risk Management Framework) • ISO/IEC 20000 • ISO/IEC 27000 family: –ISO/IEC 27001 –ISO/IEC 27002 –ISO/IEC 27004 –ISO/IEC 27005 • ISO/IEC 31000:2018 • ISO/IEC 38500 • ISO/IEC 38502 • A Guide to the Project Management Book of Knowledge: PMBOK® Guide, Sixth Edition, 2017 • The TOGAF® Standard, The Open Group • The Open Group IT4IT™ Reference Architecture, version 2.0 • CIS ® Critical Security Controls, Center for Internet Security • King IV Report on Corporate Governance™, 2016 • Scaled Agile Framework (SAFe®) • Cloud standards and good practices: • Amazon Web Services (AWS®) • Security Considerations for Cloud Computing, ISACA • Controls and Assurance in the Cloud: Using COBIT ® 5, ISACA • Enterprise Risk Management (ERM)— Integrated Framework, Committee of Sponsoring Organizations of the Treadway Commission (COSO), June 2017 • The TBM Taxonomy, The TBM Council • “Options for Transforming the IT Function Using Bimodal IT,” MIS Quarterly Executive (white paper) • ITIL V3 • HITRUST ® Common Security Framework, version 9, September 2017 • Change Management Methodology, Prosci • Skills Framework for the Information Age (SFIA® ) V6 • The Standard of Good Practice for Information Security, Information Security Forum (ISF), 2016 • CMMI V2.0 • The CMMI Cybermaturity Platform, 2018 • The Data Management Maturity Model, CMMI Institute, 2014 The COBIT 2019 development team looked at following standards/frameworks to align COBIT 2019 with:
  • 9. © 2018 ISACA. All rights reserved. STRENGTHS • COBIT is a unique overarching IT Governance framework • COBIT process guidance has matured and has reached its best quality level yet • COBIT’s business perspective on IT brings a unique opportunity to further expand its impact OPPORTUNITIES • The current (target) audience for COBIT is still very much IT- and Assurance oriented • There is an opportunity to re-discover or re-launch some of COBIT hidden gems • More prescriptive implementation guidance such as incorporating specific design factors COBIT 2019 BUILDING ON COBIT STRENGTHS AND IDENTIFYING OPPORTUNITIES COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Buildng on COBIT strengths and identifying opportunities Addressing COBIT5 imperfections
  • 10. © 2018 ISACA. All rights reserved. • COBIT users find it hard to locate relevant contents for their needs • Perceived as complex and challenging to apply in practice • The enabler model is incomplete in terms of development and guidance, and thus often ignored • A challenging process capability model and general lack of support of performance management for other enablers • The perceived reputation of IT Governance itself as an inhibitor of change and (administrative) overhead – not per se a COBIT weakness but an IT Governance problem at large COBIT 2019 ADDRESSING COBIT 5 LIMITATIONS COBIT 2019 Optimizing I&T Governance Staying relevant in a changed environment Building on COBIT strengths and identifying opportunities Addressing COBIT5 limitations
  • 11. © 2018 ISACA. All rights reserved. INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION & TECHNOLOGY (EGIT) AND THE NATURE OF COBIT
  • 12. © 2018 ISACA. All rights reserved. In the light of digital transformation, information and technology (I&T) have become crucial in the support, sustainability and growth of enterprises. • Previously, governing boards and senior management could delegate, ignore or avoid I&T-related decisions • In most sectors and industries, such attitudes are now ill advised • Digitized enterprises are increasingly dependent on I&T for survival and growth • Stakeholder value creation is often driven by a high degree of digitization in new business models, efficient processes, successful innovation, etc. INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION AND TECHNOLOGY (EGIT)
  • 13. © 2018 ISACA. All rights reserved. Given the centrality of I&T for enterprise risk management and value generation, a specific focus on enterprise governance of information and technology (EGIT) has arisen over the last two decades. EGIT is an integral part of corporate governance • Exercised by the board that oversees the definition and implementation of processes, structures and relational mechanisms • Enables both business and IT people to execute their responsibilities in support of business/IT alignment • Enables creation of business value from I&T-enabled business investments INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION AND TECHNOLOGY (EGIT)
  • 14. © 2018 ISACA. All rights reserved. Fundamentally, EGIT is concerned with value delivery from digital transformation and the mitigation of business risk that results from digital transformation. More specifically, three main outcomes can be expected after successful adoption of EGIT. INTRODUCTION ENTERPRISE GOVERNANCE OF INFORMATION AND TECHNOLOGY (EGIT) Benefits Realization Risk Optimization Resource Optimization
  • 15. © 2018 ISACA. All rights reserved. COBIT is a framework for the governance and management of enterprise information and technology, aimed at the whole enterprise. • Enterprise I&T means all the technology and information processing the enterprise puts in place to achieve its goals, regardless of where this happens in the enterprise • Enterprise I&T is not limited to the IT department of an organization, but certainly includes it INTRODUCTION COBIT AS AN INFORMATION & TECHNOLOGY (I&T) FRAMEWORK
  • 16. © 2018 ISACA. All rights reserved. Governance (Board Level) Management (Executive Level) INTRODUCTION GOVERNANCE AND MANAGEMENT DEFINED • Plans, builds, runs and monitors activities, in alignment with the direction set by the governance body, to achieve the enterprise objectives • Ensure stakeholder needs, conditions and options are evaluated to determine enterprise objectives • Ensure direction is set through prioritization and decision making • Ensure performance and compliance are monitored against objectives
  • 17. © 2018 ISACA. All rights reserved. INTRODUCTION WHAT IS COBIT AND WHAT IT IS NOT: SETTING THE RIGHT EXPECTATIONS COBIT IS • A framework for the governance and management of enterprise I&T • COBIT defines the components to build and sustain a governance system • COBIT defines the design factors that should be considered by the enterprise to build a best fit governance system • COBIT is flexible and allows guidance on new topics to be added COBIT IS NOT • A full description of the whole IT environment of an enterprise • A framework to organize business processes • An (IT-) technical framework to manage all technology • COBIT does not make or prescribe any IT-related decisions
  • 18. © 2018 ISACA. All rights reserved. APPENDIX
  • 19. © 2018 ISACA. All rights reserved. ABOUT ISACA Nearing its 50th year, ISACA® (isaca.org) is a global association helping individuals and enterprises achieve the positive potential of technology. Today’s world is powered by technology, and ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations. ISACA leverages the expertise of its 450,000 engaged professionals in information and cyber security, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI® Institute, to help advance innovation through technology. ISACA has a presence in 188 countries, including 217 chapters worldwide and offices in both the United States and China.