8 Questions
What is the purpose of an IT control objective?
To monitor and assess system performance
Which COBIT principle emphasizes the need for a governance system to be tailored to enterprise needs?
Tailored to enterprise needs
What is the main focus of the COBIT 2019 key points regarding governance system principles?
Provide stakeholder value
In the SBS Information System Operation and Maintenance, what do design factors include?
Strategic, contextual, and tactical factors
What does a managed assurance objective in IT governance primarily focus on?
Assurance activities
Which principle from COBIT 2019 emphasizes the importance of a dynamic governance system?
Dynamic governance system
How are IT professionals advised to prioritize objectives according to the text?
Based on strategic, contextual, and tactical factors
What is the goal cascade meant to define in IT governance?
Business goals and requirements alignment
Study Notes
ISO 38500: The International IT Governance Standard
- ISO/IEC 38500:2015 is the international standard for corporate governance of IT, providing principles, definitions, and a high-level framework for organizations to align their use of IT with organizational decisions and meet legal, regulatory, and ethical obligations.
IT Governance Frameworks
- COBIT: a framework for IT governance and management, released in 2012, helping organizations meet business challenges in regulatory compliance, risk management, and aligning IT strategy with organizational goals.
- FAIR: a risk management framework by the Open Group, enabling organizations to analyze, measure, and understand risk.
- ITIL: a set of detailed practices for IT Service Management, focusing on aligning IT services with business needs.
- CMMI: a process and behavioral model, helping organizations streamline process improvement and encourage productive, efficient behavior.
- COSO: a system used to establish internal controls to be integrated into business processes.
IT Governance Benefits
- Helps in IT and business strategy alignment.
- Facilitates IT strategic planning and conversion of strategic goals into IT projects.
- Assists in project management, compliance, and governance.
- Manages IT risks.
IT Governance Process
- Evaluating: reviewing past business performance, future imperatives, and current and future operating models and environment.
- Directing: establishing strategies, policies, and controls.
- Monitoring: performance and compliance against agreed-on directions, regulations, and objectives.
Key Governance Roles and Responsibilities
- Board of Directors: responsible for the organization's governance, including IT architecture governance, IT process governance, and IT control objectives.
COBIT 2019 Principles
- Six principles for a governance system:
- Meet stakeholder needs.
- Holistic approach.
- Dynamic governance system.
- Distinct governance from management.
- Tailored to enterprise needs.
- End-to-end governance system.
COBIT 2019 Key Points
- Provide stakeholder value.
- Holistic approach.
- Dynamic governance system.
- Governance distinct from management.
- Tailored to enterprise needs.
- End-to-end governance system.
SBS Information System Operation and Maintenance
- Objectives: IT professionals can prioritize or ignore objectives based on stakeholders' needs.
- Design factors: include strategic, contextual, and tactical factors that help define an organization's requirements.
- Domains: objectives are categorized into specific domains that map to various business processes.
- Goals cascade: defines the connection between business goals and requirements.
Test your knowledge about ISO/IEC 38500-2015, the international standard for corporate governance of IT. Learn about the principles, definitions, and framework that organizations can use to align their IT use with organizational decisions and meet legal, regulatory, and ethical obligations.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free
