IT governance planning

Search the Internet for IT governance planning. Select a specific governance plan that exists at a company or a plan framework from an organization. Write a 2-page paper on three or four of the most important suggestions from the plan you select.

Expert Answer

Anonymous

Anonymous

answered this

IT governance planning:

IT governance is a framework that ensures your organisation’s IT infrastructure supports and enables the achievement of its corporate strategies and objectives.COBIT (Control Objectives for Information and Related Technologies) is a good-practice framework created by international professional association ISACA for information technology (IT) management and IT governance.

Governance also involves establishing measurement and control mechanisms to enable people to carry out their roles and responsibilities. Using this definition as a guideline, the goal of governance is to ensure the results of an organization’s business processes meet the strategic requirements of the organization.

Governance frameworks are the structure of a government and reflect the interrelated relationships, factors, and other influences upon the institution. Governance structure is often used interchangeably with governance framework as they both refer to the structure of the governance of the organization

COBIT (Control Objectives for Information and Related Technology) and ITIL (Information Technology Infrastructure Library) have been used by information technology professionals in the IT service management (ITSM) space for many years. … Generally speaking, COBIT is broader than ITIL in its scope of coverage.

Collaborate, contribute, consume and create knowledge around how to use COBIT within your enterprise or client base.

COBIT 4.1 is an IT governance framework and supporting toolset that allows managers to bridge the gap between control requirements, technical issues and business risks. COBIT enables clear policy development and good practice for IT control throughout organizations. COBIT emphasizes regulatory compliance, helps organizations to increase the value attained from IT, enables alignment and simplifies implementation of the enterprises’ IT governance and control framework.

COBIT was initially “Control Objectives for Information and Related Technologies,” though before the release of the framework people talked of “CobiT” as “Control Objectives for IT” or “Control Objectives for Information and Related Technology.” The framework defines a set of generic processes for the management of IT, with each process defined together with process inputs and outputs, key process-activities, process objectives, performance measures and an elementary maturity model. COBIT also provides a set of recommended best practices for governance and control process of information systems and technology with the essence of aligning IT with business. COBIT 5 consolidates COBIT 4.1, Val IT and Risk IT into a single framework acting as an enterprise framework aligned and interoperable with other frameworks and standards.

The business orientation of COBIT consists of linking business goals to IT goals, providing metrics and maturity models to measure their achievement, and identifying the associated responsibilities of business and IT process owners.

The process focus of COBIT is illustrated by a process model that subdivides IT into four domains (Plan and Organize; Acquire and Implement; Deliver and Support; and Monitor and Evaluate) and 34 processes inline with the responsibility areas of plan, build, run, and monitor. It is positioned at a high level and has been aligned and harmonized with other, more detailed IT standards and good practices such as COSO, ITIL, BiSL, ISO 27000, CMMI, TOGAF and PMBOK. COBIT acts as an integrator of these different guidance materials, summarizing key objectives under one umbrella framework that link the good practice models with governance and business requirements. COBIT 5 further consolidated and integrated the COBIT 4.1, Val IT 2.0 and Risk IT frameworks and drew from ISACA’s IT Assurance Framework (ITAF) and the Business Model for Information Security (BMIS).

The framework and its components can, when utilized well, also contribute to ensuring regulatory compliance. It can encourage less wasteful information management, improve retention schedules, increase business agility, and lower costs while better complying with data retention and management regulations.

COBIT components include:

Framework: Organizes IT governance objectives and good practices by IT domains and processes and link them to business requirements.

Process descriptions: A reference process model and common language for everyone in an organization. The processes map to responsibility areas of plan, build, run, and monitor.

Control objectives: Provides a complete set of high-level requirements to be considered by management for effective control of each IT process.

Management guidelines: Helps assign responsibility, agree on objectives, measure performance, and illustrate interrelationship with other processes.

Maturity models: Assesses maturity and capability per process and helps to address gaps

Why COBIT?

COBIT provided a useful supporting toolset for the enterprise to govern and manage the IT contribution to the enterprise.

COBIT harmonized the enterprise’s many existing frameworks.

A COBIT champion ensured that the organization could get really serious about improving governance and management of enterprise IT.

A COBIT-inspired model helped all groups see how their work fit under an overall umbrella and how their work related to each other’s work.

COBIT provided a useful supporting toolset for the enterprise to govern and manage the IT contribution to the enterprise.

COBIT harmonized the enterprise’s many existing frameworks.

A COBIT champion ensured that the organization could get really serious about improving governance and management of enterprise IT.

A COBIT-inspired model helped all groups see how their work fit under an overall umbrella and how their work related to each other’s work.

It Is the only internationally accepted framework to provide a complete model for governing and attaining value from investments in IT

Educated IT and business management regarding the value of IT governance.