Cobit 2019 Foundation
Cobit 2019 Foundation
Cobit 2019 Foundation
Foundation
For Whom is this Course?
COBIT 2019 Foundation exam
Introduction to COBIT
Governance Solution
● Management
○ Plan, build, run and monitor activities
○ Align with the direction of Governance body
○ Achieve enterprise objectives
What is COBIT ? (2)
● COBIT defines six components to build and sustain a governance system
● COBIT defines design factors
● COBIT groups components into governance and management objectives
● Business partners
○ Helps ensure operations are secure and compliant
● IT vendors
○ Helps ensure operations are secure and compliant
The six COBIT principles of Governance System
● 1. Provide Stakeholder Value
○ Generate value from IT
○ Balance among benefits, risks and resources
● 2. Holistic Approach
○ Components work together in holistic way
● Prescriptive Application
● Performance Management of IT
○ Better alignment with CMMI
Governance and Management Objectives
● A Governance or management objective relates to one process
● A governance objective relates to a governance process
● A management objective relates to a management process
● Board & executive management accountable for Governance processes
● Senior & middle management accountable for Management processes
Governance and Management Objectives (2)
One Domain of Governance Objectives
○ culture and behavior; skills and competencies; and services, infrastructure and applications.
Components of the Governance System (2)
● Processes
○ Set of practices
○ Produces a set of outputs
○ Support IT related goals
● Organizational Structures
○ Decision making entities
● Variant component
○ Based on generic components
○ Tailored for a specific area
○ Example of area : information security, DevOps, a regulation
Design Factors
Enterprise Strategy Factor
● Growth/Acquisition
● Innovation/Differentiation
● Cost Leadership
● Client Service/Stability
Example : Cost Leadership as a Focus Area
Example of Mc-Donald’s
High importance of
● Documentation (information)
● Procedures and policies
● Some roles (organizational structures)
Role of IT
Support : not crucial for business, nor for innovation
Turnaround : driver for innovation not critical for running the business
● Understanding of business by IT
4. Flexible
● Processes
Maturity
● Focus Areas
Capability Levels for Processes
Rating Process Activities
Formal methods : Pass/Fail
Culture and behaviors are defined for Governance and Management objectives
Example :
Example :
Example :
DevOps
● Few IT resources
● Shorter reporting lines
Stages and Steps in Design Process
COBIT Implementation
● Not possible to separate Business from I&T
● Governance and Management of I&T part of Enterprise Governance
● Governance System Implementation fails because it is not implemented as
programs
● Sponsorship of governance programs by executive management
● Implementation based on
○ Empowering business and IT stakeholders
○ Enabling change
COBIT Implementation Approach
Phase 1 : What are the Drivers?
● Change drivers
● Business case
● Initiate a program
Phase 2 : Where Are We Now?
● Align I&T with strategy
● Gap Analysis
● Quick Wins
● Define Roadmap
● Communicate outcome
Phase 4 : What Needs To Be Done?
● Plan program
● Build improvements
Phase 5 : How Do We Get There?
● Execute a plan
● Implement solutions
● Implement improvements
● Realize benefits
● Sustain transition
● Review effectiveness
● Sustain