3. 13.02.2024 | Page 3
Agenda
• COBIT 2019 Briefing
• Our Co's experience in implementing COBIT Framework in
Financial & Other sectors;
• Our staff strength in managing IT Governance Adoption
projects (like COBIT Certified staff, Project Mgt certified
etc);
• Duration for Implementation the COBIT 2019 Framework
Other relevant points related to the adoption of the
Governance Framework
5. 13.02.2024 | Page 5
What is IT Governance?
• IT Governance is the term that describe the governing and
managing of information technology within an organization.
• It is a framework that ensures your organisation's IT
infrastructure supports and enables the achievement of set
strategies and objectives.
• It differs from IT management in that IT governance is a
framework that ensures management is successful and risks
are identified and appropriately controlled.
• It links a organization’s objectives, goals and IT Management.
6. 13.02.2024 | Page 6
IT Governance has three main or primary objectives, which
can be achieved by implementing a structure responsible
for information, business processes, applications and
infrastructure. The use of information technology needs to:
• generate organization value;
• supervise management performance while ensuring
visibility; and
• alleviate the risk connected to information technology.
IT governance is the leverage of government resources
that support good governance.
6
8. 13.02.2024 | Page 8
Benefits of IT Governance
• Compliance, i.e. World
Bank’s, sponsors directives
• Service Efficiency & UX,CX
• Support of Organization
goals
• Growth and innovation
• Reduction of risk
9. 13.02.2024 | Page 9
Who is involved?
• Team leaders
• Managers
• Executives
• Board of Directors
• Stakeholders
10. 13.02.2024 | Page 10
IT Governance Framework (COBIT 2019)
Set Objectives
v IT is aligned with the business
v IT enables the business and
maximizes benefits
v IT resources are used responsibly
v IT-related risks managed
appropriately
Provide
Direction
Compare
Measure
Performance
IT Activities
v Increase automation (make the
business effective)
v Decrease cost (make enterprise
efficient)
v Manage risks (security reliability
and compliance)
11. 13.02.2024 | Page 11
Aligning IT and Government Strategic Objectives
• Government Digital Agenda (mission) –
Specific Goals – IT Strategic Plan
• Requires involvement from many
stakeholders, levels and activities
within the government.
• Lack of alignment leads to adverse
issues, the black hole.
• Strong IT Governance contributes
toward proper alignment, efficiency &
visibility.
12. 13.02.2024 | Page 12
IS Governance
• Consists of leadership,
organizational structures
and processes that
safeguard information.
• Security over information
assets.
• Benefits of IS Governance.
• Is a top-down process.
• Performance measurement
13. 13.02.2024 | Page 13
How will we do it?
Step
•STEP 1: UNDERSTAND THE ENTERPRISE CONTEXT AND STRATEGY
•STEP2: DETERMINE THE INITIAL SCOPE OF THE GOVERNANCE SYSTEM
•STEP 3: REFINE THE SCOPE OF THE GOVERNANCE SYSTEM
•STEP 4: RESOLVE CONFLICTS AND CONCLUDE THE GOVERNANCE SYSTEM DESIGN
• Understand
NIB Context
• Review the
NIB
Corporate
strategy
Step
1
• Determine
the initial
scope of the
GS
Step
2
• Refine the
scope of GS
Step
3
•Resolve
conflicts
and
conclude
the
governanc
e system
design
Step
4
Implementation
14. 13.02.2024 | Page 14
Duration
Phases I - 2 Months
• Conduct COBIT 2019 Awareness Training
• Evaluate Nib Strategic Object,
• Perform AS IS Assessment: Generate GAP Report & Capability
Maturity Score.
• Propose Nib-GSD.
Phases II – 3 Months
• Use GSD to Prioritize the Practices to be implemented.
• Create an Implementation Scope plan.
• Rollout the Nib-GSD Selected Practices.
• Create Implementation Calendar
Measuring IT Governance Performance
Measuring IT performance is a key concern as it demonstrates the effectiveness and added business value of IT.
Commonly seen as the IT “Black Hole” – costs continually rise without clear evidence of value derived from the IT function.
Traditional performance measurement methods require monetary values which are hard to apply to IT systems.