Control Objectives for Information and related Technology
Image

The Control Objectives for Information and related Technology (COBIT) is a set of best practices (framework) for information technology (IT) management created by the Information Systems Audit and Control Association (ISACA), and the IT Governance Institute (ITGI).

The new COBIT 5 defines five Governance processes and four Management domains. Within each process, Evaluate, Direct and Monitor (EDM) practices are defined with the responsibility areas of Plan, Build, Run and Monitor (PBRM).

COBIT has evolved from an IT Audit and Control framework into an IT Management framework and now into an IT Governance framework. COBIT 5 is the only business framework for the governance and management of enterprise IT. The COBIT 5 framework builds and expands on COBIT 4.1 by integrating other major frameworks, standards and resources, including Val IT, Risk IT, ITIL and related standards from the International Organization for Standardization (ISO).

 

About this workshop

COBIT provides managers, auditors, and IT users with a set of generally accepted measures, indicators, processes and best practices to assist them in maximizing the benefits derived through the use of information technology and developing appropriate IT governance and control in a company.

COBIT has 34 high level processes that cover 210 control objectives categorized in four domains: Planning and Organization, Acquisition and Implementation, Delivery and Support, and Monitoring. This workshop will help participants prepare for the COBIT Foundation certification exam from ISACA.

Benefits

The COBIT Framework helps managers, IT users and auditors in more effective decision making by

  • Providing a foundation upon which IT related decisions and investments can be based
  • Defining a strategic IT plan
  • Defining the information architecture
  • Acquiring the necessary IT hardware and software to execute an IT strategy
  • Ensuring continuous service and monitoring the performance of the IT system

On completion of the workshop, participants will understand

  • The requirements for Governance of Enterprise IT
  • The differences between Management and Governance
  • The five basic Principles and the seven Governance and Management Enablers
  • Goals Cascade and the Process Reference Model
  • How to implement COBIT 5
  • The differences between COBIT 4.1 and COBIT 5

Who should attend

This workshop is meant for professionals responsible for Governance, Risk & Compliance in any organization

  • CEO / CFO / CIO / CTO / CISO
  • Finance Manager / Finance Controller
  • IS / IT Specialist / Analyst / Manager
  • IS / IT Auditor / Consultant
  • IS / IT Head / Director
  • IT Operations Manager / Head / Director
  • IT Compliance Manager / Head / Director
  • Process Associate / Consultant / Manager
  • Quality Assurance Professional
  • Risk & Compliance Professional
  • Business Analyst
  • IT Service Provider / Management Professional
  • Internal & External Audit Management team
  • Sarbanes-Oxley Implementation team
  • COBIT Implementation team
  • Key Business User

Anyone aspiring to understand the requirements of the COBIT Framework would benefit from this workshop. There are no pre-requisites for participating in this COBIT workshop. However, this workshop is restricted to participants who have some exposure to process, controls and risk management.

Workshop Outline

Introduction to COBIT Framework

  • Waterfall model adopted by COBIT
  • Reading of control objectives to processes
  • Mapping the controls to processes which are further linked to business objectives

COBIT to Other frameworks (Mapped)

  • Mapping of COBIT control objectives and processes to several international standards namely - CMMI / ITIL / ISO 20000 / ISO 27001

Case Study

  • UsingCOBIT for continual improvement of IT value and control
  • Application of COBIT
  • Implementation of COBIT

Implementing IT Governance using COBIT

  • Roadmap to guide an IT governance implementation using COBIT
  • ITGI’s approach to IT governance implementation
  • How COBIT and Val IT support each step of the implementation
  • Scope and plan IT governance initiatives based on COBIT and Val IT
  • Assess process capability using COBIT maturity models
  • Plan improvements using control objectives & practices
  • Create a performance measurement framework using COBIT metrics and the balanced scorecard
  • Practical implementation factors
  • COBIT implementation support from ISACA

Case Study

  • Adopt an IT governance framework to provide its operations with a uniformed platform to sustain growth and eliminate risks
  • IT Governance: Pan-regional strategy formation, uniformity
  • Cost-cutting: Trims repetition
  • Security: Managing regional customer data
  • Outsourcing: Proper liabilities for outsourcing partners
  • Communication: Easy to understand terminology
  • Business Growth: Safer, more coherent overall IT environment to help leaders focus on core business
  • Risk Assessment: Sets boundaries for decision-makers to understand what they can do

The case studies are designed to help participants understand governance and management of enterprise IT through

The five basic principles defined by COBIT 5

  • Principle 1 - Meeting Stakeholder Needs
  • Principle 2 - Covering the Enterprise End-to-End
  • Principle 3 - Applying a Single, Integrated Framework
  • Principle 4 - Enabling a Holistic Approach
  • Principle 5 - Separating Governance From Management 

The seven enablers defined by COBIT 5

  • Principles, Policies and Frameworks
  • Processes
  • Organizational Structures
  • Culture, Ethics and Behavior
  • Information
  • Services, Infrastructure and Applications
  • People, Skills and Competencies
Customer Feedback