Title: Practical Application of COBIT by Leveraging Multiple Frameworks

Duration: One Day (9am to 5pm), 8 CPE

Learning Objectives: After completing this session, the participant will be able to:

  • Recognize the various framework altitudes in the GEIT ecosystem and how they can be collectively used to align with enterprise needs using COBIT as the core.
  • Understand a model to synchronize various frameworks and standards such as COBIT, ITIL, TOGAF, PRINCE2, PMBOK, NIST, ISO38500, ISO27000, ISO20000, ISO31000, and many more.
  • Gain practical advice on how to implement, modify, manage and control processes using the COBIT implementation model.

General Description: In the IT Governance environment there are multiple frameworks, models and standards to choose from. A challenge for most organizations is simply understanding what all of these are, and which ones are applicable or appropriate for them. Some common questions include:If we’re using ITIL, should we consider COBIT? How do ISO standards fit into my model? Should I be using Project Management models if I already use COBIT? In this insightful presentation on frameworks and standards integration, explore the many models that are available today: what they are, how they fit, and why choose them.Most importantly, we will learn how integrate several frameworks to create a more holistic approach to leveraging multiple best practices under a single model.

High Level Agenda:

  1. Introduction and Overview
  2. Governance of Enterprise IT
  3. Value Creation
  4. Separation of Governance and Management
  5. Providing Value through Services
  6. The Framework Ecosystem
  7. The Performance and Conformance Model
  8. Short Review of Applicable Frameworks (i.e. COBIT, ITIL, TOGAF, ISO Standards, NIST)
  9. How Frameworks Fit Together in the Ecosystem
  10. COBIT Relationships with Standards and Good Practices
  11. COBIT Primer
  12. ISO Standards
  13. Frameworks
  14. Bodies of Knowledge
  15. Process Risk Management
  16. Definitions
  17. Risk Identification, Analysis, Response, Monitoring
  18. Creating Risk Scenarios
  19. Maintaining Risk Register
  20. Class Discussion: Risk Scenarios
  21. Process Audit and Compliance
  22. Documentation and Preparation
  23. COBIT5 Audit and Assurance Programs
  24. Process Assessment
  25. Types of Assessments
  26. Techniques
  27. Class discussion: Sample Assessment
  28. Adoption Best Practices
  29. Challenges and Critical Success Factors
  30. Continuous Improvement Models
  31. People, Skills and Competencies
  32. Questions, Closing

Speaker Bio:

As a nationally known governance expert in the areas of Information Controls, Risk, Cybersecurity, and Service Management, Mark’s background spans leadership roles from CIO to Management and IT Consulting. With over 25 years of professional experience Mark has led large teams in outsourced IT arrangements, conducted Portfolio, Service Management and information governance activities for major project teams, managed enterprise applications implementations, and implemented governance processes across multiple industries. Additionally, Mark holds the CRISC, CGEIT, COBIT, PRINCE2 and ITIL Expert certifications. Mark has presented at multiple global ISACA events and was awarded the ISACA John Kuyers award for Best Speaker/Conference contributor in 2016.