Title: Practical Application of COBIT by Leveraging Multiple Frameworks
Duration: One Day (9am to 5pm), 8 CPE
Learning Objectives: After completing this session, the participant will be able to:
- Recognize the various framework altitudes in the GEIT ecosystem and how they can be collectively used to align with enterprise needs using COBIT as the core.
- Understand a model to synchronize various frameworks and standards such as COBIT, ITIL, TOGAF, PRINCE2, PMBOK, NIST, ISO38500, ISO27000, ISO20000, ISO31000, and many more.
- Gain practical advice on how to implement, modify, manage and control processes using the COBIT implementation model.
General Description: In the IT Governance environment there are multiple frameworks, models and standards to choose from. A challenge for most organizations is simply understanding what all of these are, and which ones are applicable or appropriate for them. Some common questions include:If we’re using ITIL, should we consider COBIT? How do ISO standards fit into my model? Should I be using Project Management models if I already use COBIT? In this insightful presentation on frameworks and standards integration, explore the many models that are available today: what they are, how they fit, and why choose them.Most importantly, we will learn how integrate several frameworks to create a more holistic approach to leveraging multiple best practices under a single model.
High Level Agenda:
- Introduction and Overview
- Governance of Enterprise IT
- Value Creation
- Separation of Governance and Management
- Providing Value through Services
- The Framework Ecosystem
- The Performance and Conformance Model
- Short Review of Applicable Frameworks (i.e. COBIT, ITIL, TOGAF, ISO Standards, NIST)
- How Frameworks Fit Together in the Ecosystem
- COBIT Relationships with Standards and Good Practices
- COBIT Primer
- ISO Standards
- Frameworks
- Bodies of Knowledge
- Process Risk Management
- Definitions
- Risk Identification, Analysis, Response, Monitoring
- Creating Risk Scenarios
- Maintaining Risk Register
- Class Discussion: Risk Scenarios
- Process Audit and Compliance
- Documentation and Preparation
- COBIT5 Audit and Assurance Programs
- Process Assessment
- Types of Assessments
- Techniques
- Class discussion: Sample Assessment
- Adoption Best Practices
- Challenges and Critical Success Factors
- Continuous Improvement Models
- People, Skills and Competencies
- Questions, Closing
Speaker Bio:
As a nationally known governance expert in the areas of Information Controls, Risk, Cybersecurity, and Service Management, Mark’s background spans leadership roles from CIO to Management and IT Consulting. With over 25 years of professional experience Mark has led large teams in outsourced IT arrangements, conducted Portfolio, Service Management and information governance activities for major project teams, managed enterprise applications implementations, and implemented governance processes across multiple industries. Additionally, Mark holds the CRISC, CGEIT, COBIT, PRINCE2 and ITIL Expert certifications. Mark has presented at multiple global ISACA events and was awarded the ISACA John Kuyers award for Best Speaker/Conference contributor in 2016.