SlideShare uma empresa Scribd logo

MENA IT Governance, Risk & Compliance 2010

S
Sudhakar_s

My Inaugural presentation on 3rd May 2010

1 de 9
Baixar para ler offline
MENA IT Governance, Risk & Compliance 2010 IT GRC in the Middle East: Are we there yet? Sudhakar Siddegowda, CISA Chief Information Officer M.H. Group of Companies 5/6/2010 Confidential 1
IT GRC in the Middle East: Are we there yet? Questions 1. Where are we today in comparison with the rest of the world? 2. Regional initiatives in promoting IT Governance, Risk and Compliance 3. Innovation in IT Governance, Risk and Compliance: Key issues and challenges 5/6/2010 Confidential 2
IT GRC in the Middle East: Are we there yet? What is IT GRC? Part of overall Corporate Governance having set of integrated processes to ensure the effective and efficient use of IT in enabling an organization to achieve its goals and attain Full Value Life Cycle Management maturity Full Value Life Cycle Business-IT Alignment Management Value Improve Focus on Core Centralize & IT Activities Standardize GRC Risk Cost Share Operational Risks Reduce/Control Operating Cost 5/6/2010 Confidential 3
IT GRC in the Middle East: Are we there yet? Where are we today? 1. Governance - Setting the Agenda  Business IT Strategy (Demand - Doing the Right Things)  Policies and Principles  Authority and Accountabilities  Business Case and Investments  IT Steering (Supply - Doing Things Right) 2. Risk - Expecting the Unexpected (Risk Register)  Identify  Analyse  Respond – Management (Line, Senior & Executive)  Likelihood – Uncertain to Certain  Impact – Insignificant to Extreme 3. Compliance - Adhering to Frameworks  Business Model for Information Security  Control Objectives for Information and related Technology  IT Assurance Framework  Risk IT  Val IT  Information Technology Infrastructure Library  Payment Card Industry Data Security Standard 5/6/2010 Confidential 4
IT GRC in the Middle East: Are we there yet? How do we achieve? 1. Strategize and Plan  Establish  Develop  Scope 2. Architect Solution  Define  Recommend  Communicate 3. Build  Processes  Charge back  Risk monitoring and management 5/6/2010 Confidential 5
IT GRC in the Middle East: Are we there yet? Initiatives 1. Public Sector 2. Private Sector? 5/6/2010 Confidential 6
IT GRC in the Middle East: Are we there yet? Key Issues & Challenges 1. Focus 2. Commitment 3. Integrating Frameworks and Standards 4. Cost Effective 5. Practical 6. Viable 7. Sustainable 8. People 5/6/2010 Confidential 7
IT GRC in the Middle East: Are we there yet? 5/6/2010 Confidential 8
MENA IT Governance, Risk & Compliance 2010 5/6/2010 Confidential 9

Recomendados

Cybersecurity It Audit Services Gt April2012
Cybersecurity It Audit Services Gt April2012Cybersecurity It Audit Services Gt April2012
Cybersecurity It Audit Services Gt April2012Danny Miller
 
Emerging Need of a Chief Information Security Officer (CISO)
Emerging Need of a Chief Information Security Officer (CISO)Emerging Need of a Chief Information Security Officer (CISO)
Emerging Need of a Chief Information Security Officer (CISO)Maurice Dawson
 
Developing Metrics for Information Security Governance
Developing Metrics for Information Security GovernanceDeveloping Metrics for Information Security Governance
Developing Metrics for Information Security Governancedigitallibrary
 
Is3 Capabilities Brief
Is3 Capabilities BriefIs3 Capabilities Brief
Is3 Capabilities Briefmageeb
 
Assocham conf grc sept 13
Assocham conf grc sept 13Assocham conf grc sept 13
Assocham conf grc sept 13subramanian K
 
Curtright Todd Resume 7Jan15
Curtright Todd Resume 7Jan15Curtright Todd Resume 7Jan15
Curtright Todd Resume 7Jan15Todd Curtright
 
ciso-platform-annual-summit-2013-ciso assessment exec summary _ibm
ciso-platform-annual-summit-2013-ciso assessment exec summary _ibmciso-platform-annual-summit-2013-ciso assessment exec summary _ibm
ciso-platform-annual-summit-2013-ciso assessment exec summary _ibmPriyanka Aash
 
Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Continuity and Resilience
 

Recomendados

Cybersecurity It Audit Services Gt April2012
Cybersecurity It Audit Services Gt April2012Cybersecurity It Audit Services Gt April2012
Cybersecurity It Audit Services Gt April2012Danny Miller
 
Emerging Need of a Chief Information Security Officer (CISO)
Emerging Need of a Chief Information Security Officer (CISO)Emerging Need of a Chief Information Security Officer (CISO)
Emerging Need of a Chief Information Security Officer (CISO)Maurice Dawson
 
Developing Metrics for Information Security Governance
Developing Metrics for Information Security GovernanceDeveloping Metrics for Information Security Governance
Developing Metrics for Information Security Governancedigitallibrary
 
Is3 Capabilities Brief
Is3 Capabilities BriefIs3 Capabilities Brief
Is3 Capabilities Briefmageeb
 
Assocham conf grc sept 13
Assocham conf grc sept 13Assocham conf grc sept 13
Assocham conf grc sept 13subramanian K
 
Curtright Todd Resume 7Jan15
Curtright Todd Resume 7Jan15Curtright Todd Resume 7Jan15
Curtright Todd Resume 7Jan15Todd Curtright
 
ciso-platform-annual-summit-2013-ciso assessment exec summary _ibm
ciso-platform-annual-summit-2013-ciso assessment exec summary _ibmciso-platform-annual-summit-2013-ciso assessment exec summary _ibm
ciso-platform-annual-summit-2013-ciso assessment exec summary _ibmPriyanka Aash
 
Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Continuity and Resilience
 
Qpr 8 Risk Management And Compliance Solution
Qpr 8 Risk Management And Compliance SolutionQpr 8 Risk Management And Compliance Solution
Qpr 8 Risk Management And Compliance SolutionIycon India
 
What Is It Governance Introduction
What Is It Governance IntroductionWhat Is It Governance Introduction
What Is It Governance Introductionnicxenos
 
The Near Future of CSS
The Near Future of CSSThe Near Future of CSS
The Near Future of CSSRachel Andrew
 
How to Battle Bad Reviews
How to Battle Bad ReviewsHow to Battle Bad Reviews
How to Battle Bad ReviewsGlassdoor
 
Classroom Management Tips for Kids and Adolescents
Classroom Management Tips for Kids and AdolescentsClassroom Management Tips for Kids and Adolescents
Classroom Management Tips for Kids and AdolescentsShelly Sanchez Terrell
 
The Buyer's Journey - by Chris Lema
The Buyer's Journey - by Chris LemaThe Buyer's Journey - by Chris Lema
The Buyer's Journey - by Chris LemaChris Lema
 
The Presentation Come-Back Kid
The Presentation Come-Back KidThe Presentation Come-Back Kid
The Presentation Come-Back KidEthos3
 
Agama Profile
Agama ProfileAgama Profile
Agama ProfileAgama Consulting
 
Agam Profile
Agam ProfileAgam Profile
Agam ProfileAgama Consulting
 
IT Outsourcing - The GM Way
IT Outsourcing - The GM WayIT Outsourcing - The GM Way
IT Outsourcing - The GM Wayuapippo
 
IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014ArmeniaFED
 
Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011subramanian K
 
Financial Risk Management: Integrated Solutions to Help Financial Institution...
Financial Risk Management: Integrated Solutions to Help Financial Institution...Financial Risk Management: Integrated Solutions to Help Financial Institution...
Financial Risk Management: Integrated Solutions to Help Financial Institution...IBM Banking
 
Indranil Guha - It transformation challenges & choices...
Indranil Guha - It transformation challenges & choices...Indranil Guha - It transformation challenges & choices...
Indranil Guha - It transformation challenges & choices...Global Business Events
 
Cobi t riskmanagementframework_iac
Cobi t riskmanagementframework_iacCobi t riskmanagementframework_iac
Cobi t riskmanagementframework_iacuniversity of sargodha
 
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...SilverStormSolutions
 
2011 2012 trends in business and it
2011 2012 trends in business and it2011 2012 trends in business and it
2011 2012 trends in business and itBarry Derksen
 
IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?Eryk Budi Pratama
 
White Paper: Mobile Security
White Paper: Mobile SecurityWhite Paper: Mobile Security
White Paper: Mobile SecurityRogers Communications
 
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...International Federation of Accountants
 
MIS Class Project
MIS Class ProjectMIS Class Project
MIS Class ProjectAhmad Taleb
 
Improve Efficiency & Reduce Costs through BI in Fertilizer Sector
Improve Efficiency & Reduce Costs through BI in Fertilizer SectorImprove Efficiency & Reduce Costs through BI in Fertilizer Sector
Improve Efficiency & Reduce Costs through BI in Fertilizer SectorDhiren Gala
 

Mais conteúdo relacionado

Destaque

Qpr 8 Risk Management And Compliance Solution
Qpr 8 Risk Management And Compliance SolutionQpr 8 Risk Management And Compliance Solution
Qpr 8 Risk Management And Compliance SolutionIycon India
 
What Is It Governance Introduction
What Is It Governance IntroductionWhat Is It Governance Introduction
What Is It Governance Introductionnicxenos
 
The Near Future of CSS
The Near Future of CSSThe Near Future of CSS
The Near Future of CSSRachel Andrew
 
How to Battle Bad Reviews
How to Battle Bad ReviewsHow to Battle Bad Reviews
How to Battle Bad ReviewsGlassdoor
 
Classroom Management Tips for Kids and Adolescents
Classroom Management Tips for Kids and AdolescentsClassroom Management Tips for Kids and Adolescents
Classroom Management Tips for Kids and AdolescentsShelly Sanchez Terrell
 
The Buyer's Journey - by Chris Lema
The Buyer's Journey - by Chris LemaThe Buyer's Journey - by Chris Lema
The Buyer's Journey - by Chris LemaChris Lema
 
The Presentation Come-Back Kid
The Presentation Come-Back KidThe Presentation Come-Back Kid
The Presentation Come-Back KidEthos3
 

Destaque (7)

Qpr 8 Risk Management And Compliance Solution
Qpr 8 Risk Management And Compliance SolutionQpr 8 Risk Management And Compliance Solution
Qpr 8 Risk Management And Compliance Solution
 
What Is It Governance Introduction
What Is It Governance IntroductionWhat Is It Governance Introduction
What Is It Governance Introduction
 
The Near Future of CSS
The Near Future of CSSThe Near Future of CSS
The Near Future of CSS
 
How to Battle Bad Reviews
How to Battle Bad ReviewsHow to Battle Bad Reviews
How to Battle Bad Reviews
 
Classroom Management Tips for Kids and Adolescents
Classroom Management Tips for Kids and AdolescentsClassroom Management Tips for Kids and Adolescents
Classroom Management Tips for Kids and Adolescents
 
The Buyer's Journey - by Chris Lema
The Buyer's Journey - by Chris LemaThe Buyer's Journey - by Chris Lema
The Buyer's Journey - by Chris Lema
 
The Presentation Come-Back Kid
The Presentation Come-Back KidThe Presentation Come-Back Kid
The Presentation Come-Back Kid
 

Semelhante a MENA IT Governance, Risk & Compliance 2010

IT Outsourcing - The GM Way
IT Outsourcing - The GM WayIT Outsourcing - The GM Way
IT Outsourcing - The GM Wayuapippo
 
IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014ArmeniaFED
 
Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011subramanian K
 
Financial Risk Management: Integrated Solutions to Help Financial Institution...
Financial Risk Management: Integrated Solutions to Help Financial Institution...Financial Risk Management: Integrated Solutions to Help Financial Institution...
Financial Risk Management: Integrated Solutions to Help Financial Institution...IBM Banking
 
Indranil Guha - It transformation challenges & choices...
Indranil Guha - It transformation challenges & choices...Indranil Guha - It transformation challenges & choices...
Indranil Guha - It transformation challenges & choices...Global Business Events
 
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...SilverStormSolutions
 
2011 2012 trends in business and it
2011 2012 trends in business and it2011 2012 trends in business and it
2011 2012 trends in business and itBarry Derksen
 
IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?Eryk Budi Pratama
 
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...International Federation of Accountants
 
MIS Class Project
MIS Class ProjectMIS Class Project
MIS Class ProjectAhmad Taleb
 
Improve Efficiency & Reduce Costs through BI in Fertilizer Sector
Improve Efficiency & Reduce Costs through BI in Fertilizer SectorImprove Efficiency & Reduce Costs through BI in Fertilizer Sector
Improve Efficiency & Reduce Costs through BI in Fertilizer SectorDhiren Gala
 
System Center 2012 - IT GRC
System Center 2012 - IT GRCSystem Center 2012 - IT GRC
System Center 2012 - IT GRCNorman Mayes
 
Green ict front presentation
Green ict front presentationGreen ict front presentation
Green ict front presentationTanguy Swinnen
 
Medical Clinic - Daragh O Brien
Medical Clinic - Daragh O BrienMedical Clinic - Daragh O Brien
Medical Clinic - Daragh O Brienhealthcareisi
 
Ibm data governance framework
Ibm data governance frameworkIbm data governance framework
Ibm data governance frameworkkaiyun7631
 

Semelhante a MENA IT Governance, Risk & Compliance 2010 (20)

Agama Profile
Agama ProfileAgama Profile
Agama Profile
 
Agam Profile
Agam ProfileAgam Profile
Agam Profile
 
IT Outsourcing - The GM Way
IT Outsourcing - The GM WayIT Outsourcing - The GM Way
IT Outsourcing - The GM Way
 
IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014IT Governance in Banks, May, 2014
IT Governance in Banks, May, 2014
 
Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011Security architecture rajagiri talk march 2011
Security architecture rajagiri talk march 2011
 
Financial Risk Management: Integrated Solutions to Help Financial Institution...
Financial Risk Management: Integrated Solutions to Help Financial Institution...Financial Risk Management: Integrated Solutions to Help Financial Institution...
Financial Risk Management: Integrated Solutions to Help Financial Institution...
 
Indranil Guha - It transformation challenges & choices...
Indranil Guha - It transformation challenges & choices...Indranil Guha - It transformation challenges & choices...
Indranil Guha - It transformation challenges & choices...
 
Cobi t riskmanagementframework_iac
Cobi t riskmanagementframework_iacCobi t riskmanagementframework_iac
Cobi t riskmanagementframework_iac
 
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
SilverStorm "Credibility and Collaboration to achieve excellence in IT Govern...
 
2011 2012 trends in business and it
2011 2012 trends in business and it2011 2012 trends in business and it
2011 2012 trends in business and it
 
IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?IT Governance - Governing IT: Do or Die?
IT Governance - Governing IT: Do or Die?
 
White Paper: Mobile Security
White Paper: Mobile SecurityWhite Paper: Mobile Security
White Paper: Mobile Security
 
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
Responding to Cybersecurity Threats: What SMEs and Professional Accountants N...
 
MIS Class Project
MIS Class ProjectMIS Class Project
MIS Class Project
 
Improve Efficiency & Reduce Costs through BI in Fertilizer Sector
Improve Efficiency & Reduce Costs through BI in Fertilizer SectorImprove Efficiency & Reduce Costs through BI in Fertilizer Sector
Improve Efficiency & Reduce Costs through BI in Fertilizer Sector
 
System Center 2012 - IT GRC
System Center 2012 - IT GRCSystem Center 2012 - IT GRC
System Center 2012 - IT GRC
 
Green ict front presentation
Green ict front presentationGreen ict front presentation
Green ict front presentation
 
Medical Clinic - Daragh O Brien
Medical Clinic - Daragh O BrienMedical Clinic - Daragh O Brien
Medical Clinic - Daragh O Brien
 
Preventive IT Audit Case Study
Preventive IT Audit Case StudyPreventive IT Audit Case Study
Preventive IT Audit Case Study
 
Ibm data governance framework
Ibm data governance frameworkIbm data governance framework
Ibm data governance framework
 

MENA IT Governance, Risk & Compliance 2010

  • 1. MENA IT Governance, Risk & Compliance 2010 IT GRC in the Middle East: Are we there yet? Sudhakar Siddegowda, CISA Chief Information Officer M.H. Group of Companies 5/6/2010 Confidential 1
  • 2. IT GRC in the Middle East: Are we there yet? Questions 1. Where are we today in comparison with the rest of the world? 2. Regional initiatives in promoting IT Governance, Risk and Compliance 3. Innovation in IT Governance, Risk and Compliance: Key issues and challenges 5/6/2010 Confidential 2
  • 3. IT GRC in the Middle East: Are we there yet? What is IT GRC? Part of overall Corporate Governance having set of integrated processes to ensure the effective and efficient use of IT in enabling an organization to achieve its goals and attain Full Value Life Cycle Management maturity Full Value Life Cycle Business-IT Alignment Management Value Improve Focus on Core Centralize & IT Activities Standardize GRC Risk Cost Share Operational Risks Reduce/Control Operating Cost 5/6/2010 Confidential 3
  • 4. IT GRC in the Middle East: Are we there yet? Where are we today? 1. Governance - Setting the Agenda  Business IT Strategy (Demand - Doing the Right Things)  Policies and Principles  Authority and Accountabilities  Business Case and Investments  IT Steering (Supply - Doing Things Right) 2. Risk - Expecting the Unexpected (Risk Register)  Identify  Analyse  Respond – Management (Line, Senior & Executive)  Likelihood – Uncertain to Certain  Impact – Insignificant to Extreme 3. Compliance - Adhering to Frameworks  Business Model for Information Security  Control Objectives for Information and related Technology  IT Assurance Framework  Risk IT  Val IT  Information Technology Infrastructure Library  Payment Card Industry Data Security Standard 5/6/2010 Confidential 4
  • 5. IT GRC in the Middle East: Are we there yet? How do we achieve? 1. Strategize and Plan  Establish  Develop  Scope 2. Architect Solution  Define  Recommend  Communicate 3. Build  Processes  Charge back  Risk monitoring and management 5/6/2010 Confidential 5
  • 6. IT GRC in the Middle East: Are we there yet? Initiatives 1. Public Sector 2. Private Sector? 5/6/2010 Confidential 6
  • 7. IT GRC in the Middle East: Are we there yet? Key Issues & Challenges 1. Focus 2. Commitment 3. Integrating Frameworks and Standards 4. Cost Effective 5. Practical 6. Viable 7. Sustainable 8. People 5/6/2010 Confidential 7
  • 8. IT GRC in the Middle East: Are we there yet? 5/6/2010 Confidential 8
  • 9. MENA IT Governance, Risk & Compliance 2010 5/6/2010 Confidential 9