Evidence Management for the COBIT 5 Assessment Programme By Jorge E. Barrera N., CISA, CGEIT, CRISC, COBIT (F), ITIL V3F, PMP

Size: px
Start display at page:

Download "Evidence Management for the COBIT 5 Assessment Programme By Jorge E. Barrera N., CISA, CGEIT, CRISC, COBIT (F), ITIL V3F, PMP"

Transcription

1 Volume 3, July 2013 Come join the discussion! Jorge E. Barrera N. will respond to questions in the discussion area of the COBIT 5 Use It Effectively topic beginning 22 July Evidence Management for the COBIT 5 Assessment Programme By Jorge E. Barrera N., CISA, CGEIT, CRISC, COBIT (F), ITIL V3F, PMP This article presents a proposal based on the COBIT 5 Assessment Programme 1, 2, 3, 4 for a quick and consistent start to the implementation of COBIT 5 in any IT environment, whether currently based on COBIT 4.1 or not. From a conceptual point of view, COBIT 5 is fascinating for its incorporated principles and its generic model of enablers. 5 Besides that, its assessment program helps IT leaders provide a business view of IT s ability to create value and support enterprise goals through effective IT processes. The results of this program provide a determination of process capability and can be used for: Delivering value to the business. This is viewed as an incremental achievement of strategic goals and a clear realization of business benefits through effective and innovative use of IT. Developing IT process improvement. Periodic measurement of IT processes supports the definition of effective governance of enterprise IT (GEIT) road maps to drive continuous improvement. Measuring the achievement of business goals. Each business goal can be evaluated every time the related GEIT processes are evaluated. To do so, one can use COBIT 5 s matrix with relationships between business goals and GEIT processes. Generating consistent reports. Reports on the state of the organization s GEIT are derived from the assessment process, which is supported by the COBIT Assessment Programme methodology and tools, using the COBIT Process Assessment Model (PAM): Using COBIT 5 (COBIT 5 PAM) and COBIT 5: Assessor Guide, makes the results consistent and reliable. Ensuring organizational compliance. All kinds of laws and regulations, which can affect the organization s GEIT, fall under the definition of inputs of the COBIT 5 framework and PAM for facilitating their compliance. Benchmarking. Periodic measurement of GEIT process capabilities allows for constructive and ongoing comparison between businesses employing the same or equivalent industry best practices. In addition to these benefits generated by the implementation of the COBIT 5 Assessment Programme, this article adds the following short-term benefits: Substantial improvement of GEIT understanding in practice Consolidated understanding of the need to use COBIT 5 as a GEIT umbrella Integrated and effective use of GEIT frames and standards through the alignment provided by COBIT 5 as the umbrella framework Appropriate support to the natural complexity of managing all work products related to the COBIT 5 framework and PAM Standardized treatment of all former GEIT achievements by transitioning them to a COBIT 5 environment in practice, as a result of the first assessment The magnitude of these benefits greatly depends on the mode with which evaluations are made. A measurement can be based on personal judgments, judgments based on formal guidance or judgments based on formal guidance with defined evidence requirements. Measurements based on judgments alone may suffer from a high degree of uncertainty that applies to the business case and action plans derived from it. These drawbacks can be obviated if assessments based on judgments are considered, as posed in COBIT Self-assessment Guide: Using COBIT 5, as a precursor to more rigorous evaluations based on evidence.

2 The evidence management model presented in this article therefore responds to a real need; its main parts are: Taxonomy of the evidence management Relationships between elements of the COBIT 5 PAM Alignment and integration of the frameworks for GEIT around COBIT 5 GEIT artifacts baseline or GEIT evidence baseline A method for qualifying the level/degree of evidence Life Cycle of Evidence Management Model The primary objective of this article is to motivate readers to decide to initiate or improve their GEIT implementations using COBIT 5 as the umbrella framework. Assessing the IT environment of the organization based on PAM and an evidence management model, such as the one presented in this article, provides a good foundation for this purpose. Taxonomy of Evidence Management The predominant entities for managing evidence are grouped as: Elements of the COBIT 5 PAM Model: IT process, capability level, attribute, result, work product, generic work product, generic practice, outcome, content, base practice, output, input and rating level. The definition of these terms is in section 1.7 of the COBIT 5 PAM. Derived elements from GEIT frameworks: Called artifacts, the elements of this group can be distinguished in the following 12 categories: - Cat01 Inputs from outside of COBIT 5 - Cat02 Outputs or work products of COBIT 5 processes - Cat03 Outputs of ITIL V3 processes and other aligned frameworks - Cat04 Outputs of auditing and monitoring frames - Cat05 Guides and other documents derived from COBIT 5 processes - Cat06 Guides and other documents derived from aligned frameworks - Cat07 Guides and other documents derived from monitoring frames - Cat08 Guides derived from COBIT 5 Implementation - Cat09 Deliverables generated by continual improvement projects - Cat10 Artifacts related with deliverables - Cat11 Support bibliography - Cat12 Guides and other documents derived from the controlled evolution of the proposal presented in this article (G2eTIC Project) The elements of these 12 artifact categories generally correspond to frameworks specific topic documents. These documents are related among them. The elements of output categories may also correspond to services or other results. Frameworks that can be aligned to COBIT 5 by the proposal of this article are ITIL V3, ISO 2700X, The Open Group Architecture Framework (TOGAF), ArchiMate, the Project Management Body of Knowledge (PMBOK), the Capability Maturity Model Integration (CMMI), Microsoft Operations Framework (MOF) and ad hoc regulatory frameworks for monitoring and control. Relationships Among Elements of COBIT 5 PAM An analysis of the figures and contents of COBIT 5 PAM results in the following semantic relationships: Each process has its specific outcomes. Level 1 of each process must be evaluated according to the current state of its outcomes. Levels 2 to 5 of each process have two attributes each. For levels 2 to 5, each attribute defines several results. Each result requires a single generic practice. The generic practices apply to levels 2 to 5 of all COBIT processes. The generic practices apply equally to the results of the attributes of the levels of each COBIT process and the generic work products (GWP). The COBIT 5 PAM base practices are the same governance and management practices defined in COBIT 5: Enabling Processes. The COBIT 5 PAM work products are the same outputs that are defined in COBIT 5: Enabling Processes, in which they are defined for each governance and management practice of the process. The inputs are defined in the same manner. Volume 2, April 2013 Page 2

3 COBIT 5 PAM relates the outcomes of each process with the base practices and the inputs and outputs of each process. COBIT 5 PAM relates the GWP of the processes directly with the capability levels of the processes; therefore, it is not possible to evaluate the capability levels of the attributes based on GWP. However, a useful perspective is to assess directly the capability level of the process by the GWP concept. These semantic considerations help in understanding COBIT 5 PAM and are the foundation of its practical application. Alignment and Integration of GEIT Frameworks Around COBIT 5 Figure 1 presents the role of COBIT 5 as the umbrella framework that defines the conceptual spectrum of GEIT; the other frameworks/standards operate as contributors. For example, ITIL V3 covers just under 30 percent of GEIT and ISO/IEC covers just under another 15 percent. 6 As figure 1 illustrates, the scopes of ITIL V3 and ISO are part of the larger GEIT picture focusing on them in isolation when addressing the overall GEIT picture raises a risk that relationships with the rest of the GEIT spectrum cannot be optimally understood or justified. As such, a major part of the GEIT spectrum would remain outside the respective business case of the organization. It is necessary to take into account in an integrated way COBIT 5, ITIL V3, ISO/IEC and other related standards and Figure 1 COBIT 5 Coverage of Other Standards and Frameworks Source: ISACA, COBIT 5, 2012, figure 25 frameworks in implementing GEIT. The following structure of activities and results defines a strategy for alignment and integration between frameworks: Stage one Domains of COBIT, ITIL V3 books, ISO domains, core and phases of TOGAF, and domains of other frameworks Stage two Processes of COBIT, ITIL V3 book chapters, control objectives of ISO 27001, artifact categories of TOGAF Volume 2, April 2013 Page 3

4 and second stages of other frameworks, such as CMMI constellations Stage three COBIT governance practices, processes/functions/activities of ITIL, ISO controls and processes of other frameworks. This stage includes the diagrams, catalogs and TOGAF matrices. Stage four Outputs of COBIT governance practices and of processes of aligned frameworks. This stage also includes defined activities or tasks of different frameworks. The proposed alignment and integration of this article, based on COBIT 5 as the umbrella framework and GEIT at the hypocenter of the third and the fourth stages of the structure, is grounded on the following statements: The GEIT implementation unit is the governance or management practice of COBIT 5. In terms of PMBOK, this is to say, as a general guide, that each work package of IT projects is a governance practice of COBIT 5 to be implemented or improved with its respective outputs. Processes of aligned frameworks are selected for implementation with their own identity when they generate outputs equivalent to COBIT 5 work products. This amounts to saying that the selected process makes a primary contribution to GEIT. Detailed analysis concluded that all processes, functions and activities of ITIL V3 and 112 controls of ISO/IEC deserve implementation with proper identity. This represents less than 50 percent of GEIT. The remaining 21 controls of ISO/IEC make secondary contributions to GEIT. Processes of other frameworks, such as TOGAF, PMBOK, CMMI and MOF, that generate outputs equivalent to the work products of COBIT 5 and are not covered by ITIL V3 and ISO/IEC can be implemented with their own identities. Governance and management practices of COBIT 5 that are not represented by processes of other frameworks should be implemented directly with their own identities. This should draw upon the secondary contributions from other frameworks. All catalogs, matrices and diagrams proposed by TOGAF are considered elements that must be taken into account by processes of COBIT 5 and processes of aligned frameworks that are being implemented. The more than 440 outputs of governance practices defined by COBIT 5 and the 208 outputs defined by COBIT 5 for Information Security should be treated in an integrated manner by each governance and management practice. This statement also applies for the outputs defined in the future by forthcoming COBIT 5 guides. The GEIT contribution that an element of the aligned framework makes is considered primary when it is sufficient to optimally support the functionality covered by its scope. Otherwise, this contribution, if it exists, is considered secondary. An ITIL V3 process is implemented, then oriented, to determine each work product of COBIT 5 that applies to it. The definition of activities; inputs; outputs; the Responsible, Accountable, Consulted and Informed (RACI) matrix; goals; and metrics should be guided by the architecture of COBIT 5 processes. However, this definition must use and leverage the ITIL V3 contribution. The same applies for any ISO control and any process of aligned frameworks that was chosen for implementation. The alignment and integration strategy proposed in this article allows, for example, for the initial use of TOGAF by mapping to the catalogs, matrices and diagrams proposed. These elements are generated from the umbrella of COBIT 5 without the need to understand the whole philosophy of TOGAF in order to achieve its benefits. This initial use without preamble of TOGAF opens the doors to TOGAF s ArchiMate ally, which is a standard that facilitates the management of elements defining enterprise architectures and the relationships among these elements. The use of COBIT, ITIL, ISO/IEC standards, TOGAF, ArchiMate and PMBOK elements, as well as those of other GEIT frameworks and standards, must apply intellectual property rights defined by each of the respective owners. GEIT Artifacts Baseline or GEIT Evidence Baseline All elements of GEIT frameworks implemented in the organization the 12 artifact categories defined previously constitute the evidence to support the assessment of COBIT 5 processes at the beginning of the GEIT program and in its entire existence in the organization. Registering GEIT artifacts that are operating is performed in the baseline of GEIT artifacts of the organization. This baseline must support the release management and the distribution management of the organization s artifacts. In the management of this baseline of artifacts, the following four recording aspects are distinguished: Single record of artifacts The use of the alignment and integration structure of frameworks, described previously, enables the definition of a single identification code structure of artifacts with the following stages of GEIT: 1. Category of artifacts 2. Framework that is valid in the category Volume 2, April 2013 Page 4

5 3. Domains of the framework 4. Processes for COBIT 5 (or identifier level for other frameworks) 5. Governance or management practices for COBIT 5 (or process for other frameworks) 6. Outputs or work products for COBIT 5 (or process activity for other frameworks) 7. Version of work products or activities 8. Repetitions for outputs for COBIT 5 (or improvements for other frameworks) When the third stage is set to 000, all lower stages take the same value 000 to indicate that the artifact applies, in a generalized way, its content to that stage and to the dependent stages. Relationships of COBIT 5 PAM model elements These elements were listed in the definition of the taxonomy of the evidence management described previously. This article emphasizes the following relationships among GEIT work products and: - Outcomes of each COBIT 5 process - Results of attributes at each capability level of the COBIT 5 processes - Generic work products of each COBIT 5 process The first two items give support to evidence-based assessments using the COBIT 5 PAM as illustrated in figure 2. The third item supports the evaluation, also with evidence, of the state of the generic work products of each COBIT 5 process. Figure 2 Link Between the Evidence Model and PAM Process s Outcomes Evidence per Each Outcome Results per Each Attribute Evidence per Each Result The process attributes provide the measurable characteristics of process capability. GEIT Artifacts Records Volume 2, April 2013 Page 5

6 Umbrella-type relationships Other frameworks/standards correspond based on the governance and management practices in COBIT 5 that are defined for alignment of the frameworks: - To and from elements derived from the application of frameworks aligned like ITIL V3, ISO and others - To and from elements derived from the application of frameworks oriented to verification and monitoring - To and from elements derived from the application of regulations specific to the organization and its environment Several benefits can be realized from this mapping, such as: - A gap analysis between the implemented GEIT framework and the COBIT 5 framework guidance - A quality assessment of the implemented artifacts - A statement of applicability for each governance and management practice, with due justification for its inclusion or exclusion - A gap analysis of the implemented governance and management practices and those that are rigorously necessary - Road maps at the governance and management practices and processes levels of COBIT 5 for the short, medium and long term Other relationships for assessment purposes Relationships among the following fall into this category: - Inputs and outputs defined by the continual improvement life cycle approach for each of its phases 7 - Enablers defined in COBIT 5 - Enterprise goals and their metrics - IT-related goals and their metrics - Goals of COBIT 5 processes and their metrics - All other metrics proposed by COBIT 5 and adopted by the organization Therefore, this GEIT artifacts baseline supports the record of all work products related to the COBIT 5 PAM and the management among them of relationships that are required by its assessment processes. Method for Qualifying the Level/Degree of Evidence The method for qualifying the level/degree of evidence is based on figure 2, which includes figure 4 of the COBIT 5 PAM and the fragment of the evidence model s entity relationship diagram with which it is paired. From the single record of artifacts described previously, the steps for evaluating the capability level of each COBIT 5 process selected for assessment follow. Step 1: Use the respective Microsoft Excel spreadsheets provided in the COBIT 5 Implementation tool kit and customize Figure 3 Assessment of Level 1 LEVEL ATTRIBUTE OUTCOME EVIDENCE CALCULATION: LEVEL 1 ONLY CALCULATION: ATTRIBUTE OUTCOME OUTCOME OUTCOME AS them with the changes illustrated in figures 3 and 4. Figure 3 illustrates the macro diagram of the matrix used for the evaluation of specific outcomes of each COBIT 5 process. Figure 4 illustrates the macro diagram of the matrix used for the assessment of levels 2 to 5 of the process. For a record of the evidence of every outcome and every result, one needs to insert two columns with the following registration purposes: - ART: For codes of artifacts that represent evaluation criteria. This column of figure 3 corresponds to the Evidence per Each Outcome entity of figure 2. In figure 4, this column corresponds to the Evidence per Each Result entity of figure 2. - JUST: For justification of the assigned percent Step 2: For each outcome, one must identify the documentary artifacts that represent it in reality and therefore constitute its Figure 4 Assessment of Levels 2 to 5 LEVEL ATTRIBUTE RESULTS EVIDENCE AS CALCULATION: LEVEL CALCULATION: ATTRIBUTE RESULT RESULT CALCULATION: ATTRIBUTE RESULT RESULT CALCULATION: LEVEL Volume 2, April 2013 Page 6

7 evidence. Evaluate the percent of quality and completeness that this support provides to the outcome. To do so, enter the respective codes of artifacts in the ART column, analyze the evidence that these documents provide to the outcome, and then enter in the AS column the percent value that one assigns to the outcome. After that, enter in the JUST column the concrete justification based on evidence about the assigned percent value. The Excel sheet should calculate the average percent corresponding to attribute and level 1. The allocation of the percent should be in accordance with the rating levels that are indicated in figure 4 of the COBIT 5 PAM. Step 3: For each attribute s result of the process, one must proceed equivalently as done in step 2. The Excel spreadsheet shall provide the calculations of the average percent corresponding to the attributes of levels 2 to 5 of the process, and it shall calculate the average percent of these levels, as well. Step 4: For allocating the process capability level, one should proceed as is indicated in Figure 5 Levels and Necessary Ratings of COBIT Self-assessment Guide: Using COBIT 5. As an additional advantage of semantic relationships of the COBIT 5 PAM, which are described previously, further evaluation of the 2-5 capability levels based on the GWP is proposed. Figures 5 and 6 illustrate the macro diagrams of the respective matrices. In columns marked in figure 5, one should proceed in an equivalent manner as one did for these columns in figure 3. The Excel sheet of figure 5 should calculate the percent value for each GWP. One must bring all GWPs percent values from figure 5 to figure 6. The Excel sheet of figure 6 will calculate the percent values for levels 2 to 5. One should note that the calculation of average percent by the Excel sheet in figure 6 for each capability level does not consider attributes. The outcome of this assessment should be consistent with the assessment of levels 2 to 5, as shown in figure 4. Life Cycle of Evidence Management Model The following steps are proposed as part of the actual and effective beginning of GEIT implementation in an organization: 1. Inventory current GEIT documentation It employs a matrix with the following columns: ID code of the document, version, name, description, format, owner area, responsible person, stakeholders and frameworks. The inventory should cover all actual documents related with IT management in the organization, even those not formally authorized but in operation. Special care must be taken with artifacts related with documents that come from outside of COBIT 5 and are defined in COBIT 5 for Information Security. 2. Categorize documents Each document identified in the inventory must be mapped to the 12 categories of artifacts of frameworks proposed in this article. The same matrix from step 1 can be used, adding 12 columns, or a new and specific matrix can be developed for this purpose. 3. Map COBIT 5 processes Several relationships among documents or artifacts and the GEIT processes should be documented in a matrix. This exercise reinforces the knowledge of COBIT 5 and must be supported by the COBIT 5 Enabling Processes guide. 4. Complete nonrigorous evaluation of COBIT 5 processes COBIT Assessment Programme Tool Kit: Using COBIT 5 should be used to evaluate COBIT 5 processes and the matrices of the previous steps. The respective assessment reports should be prepared and distributed as established by the organization in order to gain approbation and encouragement for the next steps. 5. Map outputs to the documents The outputs or work products of COBIT 5 processes could be taken from figure 7 and GWP Figure 5 Assessment of GWPs CALCULATION: GWP CALCULATION: GWP EVIDENCE AS Figure 6 Direct Assessment of Levels 2 to 5 LEVEL GWP AS CALCULATION: LEVEL GWP GWP CALCULATION: LEVEL GWP GWP Volume 2, April 2013 Page 7

8 appendix B.2 of the COBIT 5 PAM, but it is more useful to pick them from the level of governance practice in COBIT 5: Enabling Processes and COBIT 5 for Information Security. The work products are located in the rows of the matrix to be used for mapping, and for each of them, the related documents should be identified. Several benefits can be derived from this mapping, such as those enumerated previously in this article regarding the umbrella type relationship. 6. Complete first version of the baseline of GEIT artifacts The categories of artifacts CAT02, CAT03 and CAT04 represent work products. All documents recorded in the inventory of the 12 categories defined should be modularized in terms of work products, either by direct conversion or by mapping matrices. This exercise does not involve redoing, but decomposing into parts the artifacts that are in operation. It can be done in parallel with step 5. As part of the exercise, it also standardizes and allocates codes to the modularized artifacts. This new registration of standardized artifacts and their relationships is the first version of the baseline of GEIT artifacts. 7. Complete standard evaluation using evidence support The baseline of GEIT artifacts constitutes the adequate evidence for the COBIT 5 Assessment Programme. The method outlined previously in this article for each selected process to be evaluated should be followed. The respective assessment reports should be prepared and distributed as established by the organization. These reports can then be categorized and recorded in the baseline of GEIT artifacts because they are, by themselves, implementation evidence of some work products of COBIT 5 processes. 8. Complete business case and project development Evaluations proposed in this article support the precise definition of the GEIT business case and its respective definition of projects. See sample of business cases in COBIT 5 Implementation. 9. Update the baseline of GEIT artifacts This baseline is updated by: Laws and other regulations that affect the GEIT of the organization The operation of GEIT every day. This refers to categories of artifacts: - Outputs of COBIT 5 processes that are in operation - Outputs of aligned frameworks that are in operation - Outputs from monitoring and control frameworks Results from GEIT projects, always oriented to continual improvement. They are artifacts of the other nine categories. 10. Return to step 7. This sequence of steps corresponds to an evidence management perspective in measuring capability levels of processes. The implementation of this life cycle should be adapted depending on the orientation that each organization takes from COBIT 5 Implementation and COBIT Assessor Guide: Using COBIT 5. A self-learning exercise is suggested in the business case sample presented in COBIT 5 Implementation, and the evaluation of GEIT processes should be supported by the tools defined in the appendices of COBIT Assessor Guide and its critical success factors. Expectations and Conclusions The potential of mappings that are supported by the baseline of GEIT artifacts opens the doors to an effective implementation, as it generates knowledge and confidence to stakeholders and, thus, facilitates the obtaining of necessary management support. The mappings from artifacts to COBIT 5 processes, combined with the mapping of IT process goals to IT-related goals and on to enterprise goals, provide the necessary support to make bottom-up assessments on the cascade of COBIT 5 goals. This mapping supports a positive effect on the management of the GEIT balanced scorecard of the organization linking IT process capability improvement opportunities directly with enterprise goals. It is estimated that the first record with total quality of the GEIT evidence and an initial evaluation of COBIT 5 processes may take no more than three months, depending on the size and location of the organization, the defined scope, and the resources allocated to this purpose. Acknowledgment The content of this article is the result of work done by the G2eTIC Project, which was conceived with an academic and business orientation. References to documents of COBIT 5 and the use of its content are made in accordance with the respective license agreement between ISACA and the author of this article. G2eTIC has the conceptual bracket, methodological tools and complementary tools corresponding to the proposal presented in this article. Jorge E. Barrera N., CISA, CGEIT, CRISC, COBIT (F), ITIL V3F, PMP Volume 2, April 2013 Page 8

9 Is an independent consultant in governance and management of IT in the enterprise and author of the Project G2eTIC, which develops a set of seminars and tools for practical learning and integrated use of COBIT 5. Barrera can be reached at jorgeebarrera@yahoo.com. Endnotes 1 ISACA, COBIT Process Assessment Model (PAM): Using COBIT 5, ISACA, COBIT Assessor Guide: Using COBIT 5, ISACA, COBIT Self-assessment Guide: Using COBIT 5, ISACA, COBIT Assessment Programme Tool Kit: Using COBIT 5, ISACA, COBIT 5: A Business Framework for the Governance and Management of Enterprise IT, Ibid. 7 ISACA, COBIT 5 Implementation, ISACA. All rights reserved. Volume 2, April 2013 Page 9

Call for Articles. By Sudarsan Jayaraman, CISA, CISM, BS LA, COBIT (F), ITIL V3 Expert, ISO LA, ISO LA, ISO 9001 LA

Call for Articles. By Sudarsan Jayaraman, CISA, CISM, BS LA, COBIT (F), ITIL V3 Expert, ISO LA, ISO LA, ISO 9001 LA Volume 3, July 2013 In This Issue: Why, When and How to Migrate to COBIT 5 COBIT 5 for Assurance Available Now Risk Assessment Management Using COBIT 5 Top 5 Reasons COBIT 5 Training Is Critical Evidence

More information

If It s not a Business Initiative, It s not COBIT 5

If It s not a Business Initiative, It s not COBIT 5 If It s not a Business Initiative, It s not COBIT 5 Steve Romero CISSP PMP CPM Romero Consulting Core Competencies C22 CRISC CGEIT CISM CISA 1 9/13/2013 1 COBIT Page 11 COBIT 5 product family 2 COBIT Page

More information

Portfolio, Program and Project Management Using COBIT 5

Portfolio, Program and Project Management Using COBIT 5 DISCUSS THIS ARTICLE Portfolio, Program and Project Using COBIT 5 By Sunil Bakshi, CISA, CRISC, CISM, CGEIT, ABCI, AMIIB, BS 25999 LI, CEH, CISSP, ISO 27001 LA, MCA, PMP COBIT Focus 11 September 2017 Many

More information

COBIT 5: IT is complicated. IT governance does not have to be

COBIT 5: IT is complicated. IT governance does not have to be COBIT 5: IT is complicated. IT governance does not have to be ค ณวรางคณา ม ส กะส งข - นายกสมาคมผ ตรวจสอบและควบค มระบบสารสนเทศภาคพ น กร งเทพฯ และ Director, Assurance RCS PricewaterhouseCoopers ABAS Ltd.

More information

Passit4Sure.OG Questions. TOGAF 9 Combined Part 1 and Part 2

Passit4Sure.OG Questions. TOGAF 9 Combined Part 1 and Part 2 Passit4Sure.OG0-093.221Questions Number: OG0-093 Passing Score: 800 Time Limit: 120 min File Version: 7.1 TOGAF 9 Combined Part 1 and Part 2 One of the great thing about pass4sure is that is saves our

More information

Translate stakeholder needs into strategy. Governance is about negotiating and deciding amongst different stakeholders value interests.

Translate stakeholder needs into strategy. Governance is about negotiating and deciding amongst different stakeholders value interests. Principles Principle 1 - Meeting stakeholder needs The governing body is ultimately responsible for setting the direction of the organisation and needs to account to stakeholders specifically owners or

More information

Selftestengine COBIT5 36q

Selftestengine COBIT5 36q Selftestengine COBIT5 36q Number: COBIT5 Passing Score: 800 Time Limit: 120 min File Version: 16.5 http://www.gratisexam.com/ Isaca COBIT 5 COBIT 5 Foundation I have correct many of questions answers.

More information

Braindumps COBIT5 50q

Braindumps COBIT5 50q Braindumps COBIT5 50q Number: COBIT5 Passing Score: 800 Time Limit: 120 min File Version: 16.5 http://www.gratisexam.com/ Isaca COBIT 5 COBIT 5 Foundation I have correct many of questions answers. If there

More information

Welcome! ITSM Academy

Welcome! ITSM Academy Welcome! 1 About ITSM Academy Accredited Education Certified Process Design Engineer (CPDE) ITIL Foundation ITIL Capability (OSA PPO RCV SOA) ITIL Lifecycle (SS SD ST SO CSI) ITIL Managing Across the Lifecycle

More information

PART 1: INTRODUCTION. Purpose of the BIZBOK Guide. What is Business Architecture?

PART 1: INTRODUCTION. Purpose of the BIZBOK Guide. What is Business Architecture? PART 1: INTRODUCTION Purpose of the BIZBOK Guide A Guide to the Business Architecture Body of Knowledge (BIZBOK Guide) provides an industry standard framework for business architecture practitioners and

More information

Education Quality Development for Excellence Performance with Higher Education by Using COBIT 5

Education Quality Development for Excellence Performance with Higher Education by Using COBIT 5 Education Quality Development for Excellence Performance with Higher Education by Using COBIT 5 Kemkanit Sanyanunthana Abstract The purpose of this research is to study the management system of information

More information

ISACA. The recognized global leader in IT governance, control, security and assurance

ISACA. The recognized global leader in IT governance, control, security and assurance ISACA The recognized global leader in IT governance, control, security and assurance High-level session overview 1. CRISC background information 2. Part I The Big Picture CRISC Background information About

More information

GOVERNANCE ANALYSIS USING ENTERPRISE ARCHITECTURE

GOVERNANCE ANALYSIS USING ENTERPRISE ARCHITECTURE GOVERNANCE ANALYSIS USING ENTERPRISE ARCHITECTURE By Clive Finkelstein, Managing Director Information Engineering Services Pty Ltd A Practical Approach for Rapid Enterprise Compliance with Sarbanes-Oxley

More information

Successful Delivery of Change How Managing Benefits is helping Dubai Customs optimize its return on investment

Successful Delivery of Change How Managing Benefits is helping Dubai Customs optimize its return on investment Successful Delivery of Change How Managing Benefits is helping Dubai Customs optimize its return on investment By Stephen Jenner, Author & Chief Examiner of Managing Benefits with Mohammad Rashed Bin Hashim

More information

INFORMATION TECHNOLOGY PROJECT MANAGEMENT. Fourth Edition. International Student Version. Jack T. Marchewka WILEY. John Wiley & Sons, Inc.

INFORMATION TECHNOLOGY PROJECT MANAGEMENT. Fourth Edition. International Student Version. Jack T. Marchewka WILEY. John Wiley & Sons, Inc. INFORMATION TECHNOLOGY PROJECT MANAGEMENT Fourth Edition International Student Version Jack T. Marchewka WILEY John Wiley & Sons, Inc. PREFACE xvii ABOUT THE AUTHOR xxiii CHAPTER 1 An Overview of IT Project

More information

Correlation matrices between ISO 9001:2008 and ISO 9001:2015

Correlation matrices between ISO 9001:2008 and ISO 9001:2015 Correlation matrices between ISO 9001:2008 and ISO 9001:2015 ISO 9001:2015 ISO 9001:2008 1 Scope 1 Scope 1.1 General 4 Context of the organization 4 Quality management system 4.1 Understanding the organization

More information

Applying Integrated Assurance Management Scenarios for Governance Capability Assessment

Applying Integrated Assurance Management Scenarios for Governance Capability Assessment Applying Integrated Assurance Management Scenarios for Governance Capability Assessment János Ivanyos Trusted Business Partners Ltd, Budapest, Hungary, ivanyos@trusted.hu Abstract. The well established

More information

TOGAF 9.1 in Pictures

TOGAF 9.1 in Pictures TOGAF 9. in Pictures The TOGAF ADM Cycle Stage Set up an EA team and make sure it can do its work The ADM is about understanding existing architectures and working out the best way to change and improve

More information

Enterprise Architecture Methodologies and Comparisons 1. The Zachman Framework for Enterprise Architectures

Enterprise Architecture Methodologies and Comparisons 1. The Zachman Framework for Enterprise Architectures 1. The Zachman Framework for Enterprise Architectures The first thing we need to understand about the Zachman Framework is that it isn't a framework. The Zachman "Framework" is actually a taxonomy for

More information

MBA BADM559 Enterprise IT Governance 12/15/2008. Enterprise Architecture is a holistic view of an enterprise s processes, information and

MBA BADM559 Enterprise IT Governance 12/15/2008. Enterprise Architecture is a holistic view of an enterprise s processes, information and Enterprise Architecture is a holistic view of an enterprise s processes, information and information technology assets as a vehicle for aligning business and IT in a structured, more efficient and sustainable

More information

Project Management Professional (PMP)

Project Management Professional (PMP) Project Management Professional (PMP) E X A M I N AT I O N CO N T E N T O U T L I N E Project Management Institute Project Management Professional (PMP) Examination Content Outline June 2015 Published

More information

The SOA Working Group

The SOA Working Group The SOA Working Group San Francisco Thursday, January 31, 2008 Tony Carrato, SOA WG Co-Chair The SOA Working Group The mission of The Open Group SOA Working Group is to develop and foster common understanding

More information

Enterprise Architecture and COBIT

Enterprise Architecture and COBIT Enterprise and COBIT The Open Group October 22, 2003 www.realirm.co.za reducing risk, adding value, driving change Agenda 2 Introduction Case Study Enterprise and IT Governance Conclusion Business Orientation

More information

Changes Reviewed by Date. JO Technology Manager - Samer Huwwari JO Manager, Risk & Control Technology: Issa Laty. CIO, Jordan- Mohammad Aburoub

Changes Reviewed by Date. JO Technology Manager - Samer Huwwari JO Manager, Risk & Control Technology: Issa Laty. CIO, Jordan- Mohammad Aburoub Governance and Management of Information and Related Technologies Guide 2017 Revision History Changes Reviewed by Date Version Author JO Technology Manager - Samer Huwwari JO Manager, Risk & Control Technology:

More information

PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3)

PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3) PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3) 3.1 IV&V Methodology and Work Plan 3.1.1 NTT DATA IV&V Framework We believe that successful IV&V is more than just verification that the processes

More information

A META-MODEL FOR THE SPATIAL CAPABILITY ARCHITECTURE

A META-MODEL FOR THE SPATIAL CAPABILITY ARCHITECTURE A META-MODEL FOR THE SPATIAL CAPABILITY ARCHITECTURE JOSEF MIKLOŠ Software AG Institute of Geoinformatics, VŠB - Technical University of Ostrava E-mail: josef.miklos@centrum.cz ABSTRACT It is observed

More information

Improving the RFP and Contracts Process With COBIT 5

Improving the RFP and Contracts Process With COBIT 5 DISCUSS THIS ARTICLE Improving the RFP and Contracts Process With COBIT 5 By Przemek Tomczak, CISA, CA, CPA COBIT Focus 22 September 2014 English Spanish Russian Changing IT service providers is never

More information

Project Management Professional (PMP) Examination Content Outline

Project Management Professional (PMP) Examination Content Outline Project Management Professional (PMP) Examination Content Outline Project Management Institute Project Management Professional (PMP) Examination Content Outline April 2015 Published by: Project Management

More information

Quality Management System Guidance. ISO 9001:2015 Clause-by-clause Interpretation

Quality Management System Guidance. ISO 9001:2015 Clause-by-clause Interpretation Quality Management System Guidance ISO 9001:2015 Clause-by-clause Interpretation Table of Contents 1 INTRODUCTION... 4 1.1 IMPLEMENTATION & DEVELOPMENT... 5 1.2 MANAGING THE CHANGE... 5 1.3 TOP MANAGEMENT

More information

Project Management Session 6.2. Project Initiation Phase Integration Management

Project Management Session 6.2. Project Initiation Phase Integration Management Project Management Session 6.2 Project Initiation Phase Integration Management 1 Project Phases & Knowledge Areas 1. Integration 2. Scope Management 3. Time Management 4. Cost Management 5. Quality Management

More information

Administration. Welcome to the Eastwood Harris Pty Ltd MICROSOFT PROJECT AND PMBOK GUIDE FOURTH EDITION training course presented by.

Administration. Welcome to the Eastwood Harris Pty Ltd MICROSOFT PROJECT AND PMBOK GUIDE FOURTH EDITION training course presented by. Welcome to the Eastwood Harris Pty Ltd MICROSOFT PROJECT AND PMBOK GUIDE FOURTH EDITION training course presented by Paul E Harris Administration Evacuation Timings, meals and facilities Mobile phones

More information

Copyright protected. Use is for Single Users only via a VHP Approved License. For information and printed versions please see

Copyright protected. Use is for Single Users only via a VHP Approved License. For information and printed versions please see Business Analysis - Based on BABOK Guide Version 2 A Pocket Guide Other publications by Van Haren Publishing Van Haren Publishing (VHP) specializes in titles on Best Practices, methods and standards within

More information

Quadrant I. Module 25: Balanced Scorecard

Quadrant I. Module 25: Balanced Scorecard Quadrant I Module 25: Balanced Scorecard 1. Learning Outcomes 2. Introduction 3. Balanced Scorecard Framework 4. Balanced Scorecard 5. Organisational Effectiveness 6. Balanced Scorecard & Organisational

More information

Technology Innovation A Reference Model for Decision-Making Processes

Technology Innovation A Reference Model for Decision-Making Processes Technology Innovation A Reference Model for Decision-Making Processes Lía Molinari 1, Elsa Estevez 2 and Francisco Javier Díaz 1 1 Laboratorio de Investigación en Nuevas Tecnologías de la Información (LINTI)

More information

Business and IT Transformation Suite. Manage, Govern, and Visualize Enterprise Transformation.

Business and IT Transformation Suite. Manage, Govern, and Visualize Enterprise Transformation. Business and IT Transformation Suite Manage, Govern, and Visualize Enterprise Transformation www.orbussoftware.com Contents iserver Business and IT Transformation Suite 4 Why is the iserver Collaboration

More information

Project Management Institute (PMI) Practice Standard for Configuration Management

Project Management Institute (PMI) Practice Standard for Configuration Management Project Configuration Management Project Management Institute (PMI) Practice Standard for Configuration Management Project Configuration Management What we will cover: Introduction Relationship with other

More information

PM Architecture Design as a Critical Success Factor in CMMI Model Implementation

PM Architecture Design as a Critical Success Factor in CMMI Model Implementation PM Architecture Design as a Critical Success Factor in CMMI Model Implementation November, 2007 Christen M. MacMillan, PMP Implementing CMMI into Your Organization Most CMMI efforts begin with noble intentions

More information

Managing Information Security Complexity

Managing Information Security Complexity Edith Cowan University Research Online Australian Information Security Management Conference Conferences, Symposia and Campus Events 2006 Managing Information Security Complexity Murray Brand Edith Cowan

More information

EVALUATION OF INFRASTRUCTURE INFORMATION TECHNOLOGY GOVERNANCE USING COBIT 4.1 FRAMEWORK

EVALUATION OF INFRASTRUCTURE INFORMATION TECHNOLOGY GOVERNANCE USING COBIT 4.1 FRAMEWORK International Conference on Information Systems for Business Competitiveness (ICISBC 2013) 20 EVALUATION OF INFRASTRUCTURE INFORMATION TECHNOLOGY GOVERNANCE USING COBIT 4.1 FRAMEWORK Rusmala Santi 1) Syahril

More information

Program Management Professional (PgMP)

Program Management Professional (PgMP) Program Management Professional (PgMP) E X A M I N AT I O N CO N T E N T O U T L I N E Project Management Institute Program Management Professional (PgMP ) Examination Content Outline April 2011 Published

More information

ISO INTERNATIONAL STANDARD. Risk management Principles and guidelines. Management du risque Principes et lignes directrices

ISO INTERNATIONAL STANDARD. Risk management Principles and guidelines. Management du risque Principes et lignes directrices INTERNATIONAL STANDARD ISO 31000 First edition 2009-11-15 Risk management Principles and guidelines Management du risque Principes et lignes directrices http://mahdi.hashemitabar.com Reference number ISO

More information

The SAM Optimization Model. Control. Optimize. Grow SAM SOFTWARE ASSET MANAGEMENT

The SAM Optimization Model. Control. Optimize. Grow SAM SOFTWARE ASSET MANAGEMENT The Optimization Model Control. Optimize. Grow The Optimization Model In an ever-changing global marketplace, your company is looking for every opportunity to gain a competitive advantage and simultaneously

More information

APPLICATION OF BPMN FOR THE PMBOK STANDARD MODELLING TO SCALE PROJECT MANAGEMENT EFFORTS IN IT ENTERPRISES

APPLICATION OF BPMN FOR THE PMBOK STANDARD MODELLING TO SCALE PROJECT MANAGEMENT EFFORTS IN IT ENTERPRISES Key words: PMBOK, BPMN, project management Tomasz KRUŻEL Jan WEREWKA* APPLICATION OF BPMN FOR THE PMBOK STANDARD MODELLING TO SCALE PROJECT MANAGEMENT EFFORTS IN IT ENTERPRISES The project management scaling

More information

CMMI Project Management Refresher Training

CMMI Project Management Refresher Training CMMI Project Management Refresher Training Classifica(on 2: Foxhole Technology Employees Only RMD 032 Project Management Refresher Training Course September 21, 2017 Version 1.0 The Process Approach The

More information

INFORMATION FOR PROJECT MANAGEMENT PROFESSIONALS (PMPs)

INFORMATION FOR PROJECT MANAGEMENT PROFESSIONALS (PMPs) INFORMATION FOR PROJECT MANAGEMENT PROFESSIONALS (PMPs) Pink Elephant is a global Registered Education Provider with the Project Management Institute (PMI). As such, we are able to issue Category Three

More information

2012 ISACA Webinar Program. ISACA All rights reserved.

2012 ISACA Webinar Program. ISACA All rights reserved. Today s Webinar Text in questions using the Ask A Question button All audio is streamed over your computer Having technical issues? Click the? button Download the slide deck from the Event Home Page Go

More information

Methodology for evaluating usage and comparison of risk assessment and risk management items

Methodology for evaluating usage and comparison of risk assessment and risk management items ENISA ad hoc working group on risk assessment and risk management Methodology for evaluating usage and comparison of risk assessment and risk management items Deliverable Version Date: 6/4/7 Index of Contents

More information

Enterprise Architecture: an ideal discipline for use in Supply Chain Management

Enterprise Architecture: an ideal discipline for use in Supply Chain Management Enterprise Architecture: an ideal discipline for use in Supply Chain Management Richard Freggi Senior Supply Chain Architect (TOGAF 9.1 certified level 2) HP Inc. Content Understanding Supply Chain Management

More information

Presentation. Jane Varnus Navdeep Panaich 20 th July, 2009

Presentation. Jane Varnus Navdeep Panaich 20 th July, 2009 TOGAF 9 Survey Results Presentation Jane Varnus Navdeep Panaich 2 th July, 29 Contents Organization Demographics Scope & Mandate Drivers & Benefits EA Frameworks EA Practice Capability & Maturity The Open

More information

Pan Metron Ariston Dr. S. Kaplanis, D. Nanousi, MPhil. TEI PATRA, GREECE,

Pan Metron Ariston Dr. S. Kaplanis, D. Nanousi, MPhil. TEI PATRA, GREECE, 1 Pan Metron Ariston Dr. S. Kaplanis, D. Nanousi, MPhil. TEI PATRA, GREECE, Abstract: This paper analyses the potential mobility schemes in Education and/or Training streamlined along with CATS. The need

More information

Working Draft Version 0.7 July 30, 2014 Developed by

Working Draft Version 0.7 July 30, 2014 Developed by Data Management Capability Assessment Model (DCAM) Working Draft Version 0.7 July 30, 2014 Developed by Enterprise Data Management Council 2014 Published: July 30, 2014 EDM Council WORKING DRAFT Version

More information

17/12/1437. Lecture. Project Scope Management. Lecture 4. Project Management Knowledge Areas Section 3 Chapter 5. Project Scope Management.

17/12/1437. Lecture. Project Scope Management. Lecture 4. Project Management Knowledge Areas Section 3 Chapter 5. Project Scope Management. 17/12/137 Project Management Knowledge Areas Section 3 Chapter 5 Project Scope Management 2 of 33 1 17/12/137 Quick Re-cab Plan Scope Management Collect Requirement Define Scope Create WBS Validate Scope

More information

The Art of Agile Practice

The Art of Agile Practice The Art of Agile Practice A Composite Approach for Projects and Organizations Bhuvan Unhelkar Lap) CRC Press VV^ ^^-""^ J Taylor & Francis Group Boca Raton London New York CRC Press is an imprint of the

More information

Alignment of Business and IT

Alignment of Business and IT Master of Science Business Information Systems Alignment of Business and IT Knut Hinkelmann Literature This chapter is based on the following literature: Hanschke, Inge. (2010). Strategic IT Management,

More information

Enhancing Audit Committee Excellences through Internal Audit. 21 November 2017

Enhancing Audit Committee Excellences through Internal Audit. 21 November 2017 Enhancing Audit Committee Excellences through Internal Audit 21 November 2017 Sharpen and Strengthen Excellences of Audit Committee Recent Trends and Emerging Challenges Global and Emerging Trends Roles

More information

PAYIQ METHODOLOGY RELEASE INTRODUCTION TO QA & SOFTWARE TESTING GUIDE. iq Payments Oy

PAYIQ METHODOLOGY RELEASE INTRODUCTION TO QA & SOFTWARE TESTING GUIDE. iq Payments Oy PAYIQ METHODOLOGY RELEASE 1.0.0.0 INTRODUCTION TO QA & SOFTWARE TESTING GUIDE D O C U M E N T A T I O N L I C E N S E This documentation, as well as the software described in it, is furnished under license

More information

World Class EA. Global Trends: Multinational architecture deployments

World Class EA. Global Trends: Multinational architecture deployments World Class EA Global Trends: Multinational architecture deployments Introduction Application Services Mick Adams Capgemini UK M +44 (870) 905 3351 mick.adams@capgemini.com www.capgemini.com 2006 Capgemini

More information

COBIT 5 Foundation Exam

COBIT 5 Foundation Exam COBIT 5 Foundation Exam Sample Paper Multiple Choice Instructions 1. All 50 questions should be attempted. 2. All answers are to be marked on the answer sheet provided. 3. Please use a pencil and NOT ink

More information

Ensuring BD Success With Metrics-Based Management

Ensuring BD Success With Metrics-Based Management Ensuring BD Success With Metrics-Based Management Presented by Vicki Griesinger, Director of Operations 16th Annual APMP Conference and Exhibits June 9, 2005 Capability Maturity Model and CMM are registered

More information

GUIDE TO THE CHANGES IN PMP simpl learn i

GUIDE TO THE CHANGES IN PMP simpl learn i GUIDE TO THE CHANGES IN PMP- 2015 simpl learn i Table of contents Introduction the purpose of this manual 1 New Tasks: Initiating 3 New Tasks: Planning 4 New Tasks: Executing 6 New Tasks: Monitoring and

More information

Risk modeling by custom extensions to Archimate Experimental extensions towards a complete EA framework

Risk modeling by custom extensions to Archimate Experimental extensions towards a complete EA framework Risk modeling by custom extensions to Archimate Experimental extensions towards a complete EA framework Erik Hagen June 2014 Contact: erik.hagen@entercard.com EnterCard delivers smart payment and financing

More information

Feature. IT Governance and Business-IT Alignment in SMEs

Feature. IT Governance and Business-IT Alignment in SMEs Feature Steven De Haes, Ph.D., is professor of information systems management at the Antwerp Management School and the University of Antwerp (Belgium) and a managing director of the Information Technology

More information

Quality Assessments of Statistical Production Processes in Eurostat Pierre Ecochard and Małgorzata Szczęsna, Eurostat

Quality Assessments of Statistical Production Processes in Eurostat Pierre Ecochard and Małgorzata Szczęsna, Eurostat Quality Assessments of Statistical Production Processes in Eurostat Pierre Ecochard and Małgorzata Szczęsna, Eurostat Since 1994, Eurostat has developed its own approach for the measurement of the quality

More information

Practical CSI getting started with continual service improvement

Practical CSI getting started with continual service improvement Practical CSI getting started with continual service improvement @StuartRance Agenda What is CSI The CSI Register The CSI Approach Summary What is CSI? A stage in the service lifecycle? A process? A model?

More information

Competency Area: Business Continuity and Information Assurance

Competency Area: Business Continuity and Information Assurance Competency Area: Business Continuity and Information Assurance Area Description: Business Continuity and Information Assurance competency area mainly concerns the continuity, auditing and assurance of

More information

TenStep Project Management Process Summary

TenStep Project Management Process Summary TenStep Project Management Process Summary Project management refers to the definition and planning, and then the subsequent management, control, and conclusion of a project. It is important to recognize

More information

2014 Kent State University Catalog - Fall 2014 Course Descriptions Page 940

2014 Kent State University Catalog - Fall 2014 Course Descriptions Page 940 Schedule Types: Practicum or Internship Regional College Department Course Attributes: Experiential Learning Requirem 2014 Kent State University Catalog - Fall 2014 Course Descriptions Page 940 IAKM 41096

More information

A Guide to the Business Analysis Body of Knowledge (BABOK Guide), Version 2.0 Skillport

A Guide to the Business Analysis Body of Knowledge (BABOK Guide), Version 2.0 Skillport A Guide to the Business Analysis Body of Knowledge (BABOK Guide), Version 2.0 by The International Institute of Business Analysis (IIBA) International Institute of Business Analysis. (c) 2009. Copying

More information

EA Best Practice Workshop Developing an assessment and improvement framework for managing an EA Program

EA Best Practice Workshop Developing an assessment and improvement framework for managing an EA Program EA Best Practice Workshop Developing an assessment and improvement framework for managing an EA Program The Open Group Conference Washington DC, 18 July 2012 EA Best Practice : 18 July 2012 Slide 1 Aims

More information

McKinsey BPR Approach

McKinsey BPR Approach McKinsey BPR Approach Kai A. Simon Viktora Institute 1General aspects Also McKinsey uses a set of basic guiding principles, or prerequisites, which must be satisfied in order to achieve reengineering success.

More information

TOGAF ADM/MDA Synergy Project

TOGAF ADM/MDA Synergy Project TOGAF ADM/MDA Synergy Project Joint Report A White Paper by The Synergy Project Team November 2007 Copyright 2007 The Open Group All rights reserved. No part of this publication may be reproduced, stored

More information

E-vote SSA-V Appendix 2 Contractor Solution Specification Project: E-vote 2011

E-vote SSA-V Appendix 2 Contractor Solution Specification Project: E-vote 2011 E-vote 2011 SSA-V Appendix 2 Contractor Solution Specification Project: E-vote 2011 Change log Version Date Author Description/changes 0.1 26.10.09 First version Page 1 CONTENT 1. SERVICE MODEL 3 1.1.

More information

ITIL CSI Intermediate. How to pass the exam

ITIL CSI Intermediate. How to pass the exam ITIL CSI Intermediate How to pass the exam CSI Objectives 1. Review, analyse and make recommendations on improvement opportunities in each lifecycle phase: Service Strategy, Service Design, Service Transition

More information

PROJECT MANAGEMENT BODY OF KNOWLEDGE

PROJECT MANAGEMENT BODY OF KNOWLEDGE A Guide to the PROJECT MANAGEMENT BODY OF KNOWLEDGE Third Edition (PMBOK Guide) Project Management Institute A Guide to the Project Management Body of Knowledge Third Edition (PMBOK Guide) an American

More information

Developing a Successful Product

Developing a Successful Product Developing a Successful Product What is the appropriate level of governance? Kelly Cusick, Deloitte Consulting LLP March 30, 2014 Antitrust Notice The Casualty Actuarial Society is committed to adhering

More information

This resource is associated with the following paper: Assessing the maturity of software testing services using CMMI-SVC: an industrial case study

This resource is associated with the following paper: Assessing the maturity of software testing services using CMMI-SVC: an industrial case study RESOURCE: MATURITY LEVELS OF THE CUSTOMIZED CMMI-SVC FOR TESTING SERVICES AND THEIR PROCESS AREAS This resource is associated with the following paper: Assessing the maturity of software testing services

More information

Assessor Training Syllabus

Assessor Training Syllabus The Assessor Training Syllabus in independently maintained outside of the Scheme The main headings in this syllabus address the key themes of ISO/IEC 15504 Overview of the Standard The Introduction to

More information

agilesem an agile System Development Method at Siemens in CEE Eva Kišoňová, Ralph Miarka SW Quality Days Vienna January 2012

agilesem an agile System Development Method at Siemens in CEE Eva Kišoňová, Ralph Miarka SW Quality Days Vienna January 2012 agilesem an agile System Development Method at Siemens in CEE Eva Kišoňová, Ralph Miarka SW Quality Days Vienna January 2012 January 2012 Copyright Siemens AG 2011. All rights reserved. Apollo bridge of

More information

Quizzes for 1 st Study Group Session

Quizzes for 1 st Study Group Session Quizzes for 1 st Study Group Session General 1. Business analysis is performed: a. Sequentially and in order. b. According to logical relationships (dependencies). c. Iteratively or simultaneously. d.

More information

Software Quality Engineering where to find it in Software Engineering Body of Knowledge (SWEBOK)

Software Quality Engineering where to find it in Software Engineering Body of Knowledge (SWEBOK) Software Quality Engineering where to find it in Software Engineering Body of Knowledge (SWEBOK) Witold Suryn 1, Anabel Stambollian 2, Jean-Charles Dormeux 3, Luc Bégnoche 4 1 Software and Information

More information

CMMI-DEV V1.3 CMMI for Development Version 1.3 Quick Reference Guide

CMMI-DEV V1.3 CMMI for Development Version 1.3 Quick Reference Guide processlabs CMMI-DEV V1.3 CMMI for Development Version 1.3 Quick Reference Guide CMMI-DEV V1.3 Process Areas Alphabetically by Process Area Acronym processlabs CAR - Causal Analysis and Resolution...

More information

Asset Management Maturity

Asset Management Maturity Asset Management Maturity A Position Statement First Edition English Version ISBN 978-0-9870602-4-2 Published October 2015 www.gfmam.org Forward With the publication of the ISO 55000 series of standards,

More information

MATURITY LEVEL AT UNIVERSITY ACADEMIC INFORMATION SYSTEM LINKING IT GOALS AND BUSINESS GOAL BASED ON COBIT 4.1

MATURITY LEVEL AT UNIVERSITY ACADEMIC INFORMATION SYSTEM LINKING IT GOALS AND BUSINESS GOAL BASED ON COBIT 4.1 MATURITY LEVEL AT UNIVERSITY ACADEMIC INFORMATION SYSTEM LINKING IT GOALS AND BUSINESS GOAL BASED ON COBIT 4.1 Siti Mukaromah 1, Agung Brastama Putra 2 1, 2 University of Pembangunan Nasional "Veteran"

More information

Information Technology. Project Management, Sixth Edition

Information Technology. Project Management, Sixth Edition Solutions to Accompany Information Technology Project Management, Sixth Edition ISBN-10: 0324786921 ISBN-13: 9780324786927 Course Technology MIS Series Companion Web Site: www.cengage.com/mis/schwalbe

More information

Information Technology. Project Management, Seventh Edition

Information Technology. Project Management, Seventh Edition Solutions to Accompany Information Technology Project Management, Seventh Edition ISBN-10: 1133526853 ISBN-13: 978-1133526858 Course Technology MIS Series Kathy Schwalbe, Ph.D., PMP Created November 27,

More information

Page 1 / 11. Version 0 June 2014

Page 1 / 11. Version 0 June 2014 Page 1 / 11 CORRESPONDENCE MATRIX NQSA NSQ-100 version 0 NUCLEAR SAFETY AND QUALITY MANAGEMENT SYSTEM REQUIREMENTS Model for quality management in design & development, manufacturing, erection, commissioning

More information

Safety Perception / Cultural Surveys

Safety Perception / Cultural Surveys Safety Perception / Cultural Surveys believes in incorporating safety, health, environmental and system management principles that address total integration, thus ensuring continuous improvement, equal

More information

Get the most from your requirements with Modelio WEB Analyst. Web Analyst is a very innovative requirement analysis tool that allows you to obtain

Get the most from your requirements with Modelio WEB Analyst. Web Analyst is a very innovative requirement analysis tool that allows you to obtain Get the most from your requirements with Modelio WEB Analyst. Web Analyst is a very innovative requirement analysis tool that allows you to obtain the maximum added value from your requirements. 1 Modeliosoft

More information

PMBOK Guide Fifth Edition Pre Release Version October 10, 2012

PMBOK Guide Fifth Edition Pre Release Version October 10, 2012 5.3.1 Define Scope: Inputs PMBOK Guide Fifth Edition 5.3.1.1 Scope Management Plan Described in Section 5.1.3.1.The scope management plan is a component of the project management plan that establishes

More information

Enterprise Architecture as competitive advantage

Enterprise Architecture as competitive advantage Enterprise Architecture as competitive advantage Stuart Macgregor Johannesburg - March 2011 www.realirm.com TOGAF is a registered trademark of The Open Group. An expert is a person who has made all the

More information

ISO/IEC INTERNATIONAL STANDARD. Systems and software engineering System life cycle processes IEEE

ISO/IEC INTERNATIONAL STANDARD. Systems and software engineering System life cycle processes IEEE INTERNATIONAL STANDARD ISO/IEC 15288 IEEE Std 15288-2008 Second edition 2008-02-01 Systems and software engineering System life cycle processes Ingénierie des systèmes et du logiciel Processus du cycle

More information

Agile Project Management Certificate Program

Agile Project Management Certificate Program Information Technologies Programs Agile Project Management Certificate Program Accelerate Your Career ce.uci.edu/agile CHARTER MEMBER REP#1043 Project Management Institute The PMI Registered Education

More information

Project Management Professional (PMP) Boot Camp

Project Management Professional (PMP) Boot Camp Project Management Professional (PMP) Boot Camp According to the Project Management Institute, the world's leading association for the project management profession: "PMP Certification is the profession's

More information

TIME SAVING TIPS AND TECHNIQUES TO PREPARE FOR CMMI APPRAISAL

TIME SAVING TIPS AND TECHNIQUES TO PREPARE FOR CMMI APPRAISAL TIME SAVING TIPS AND TECHNIQUES TO PREPARE FOR CMMI APPRAISAL PAM SCHOPPERT PMP, CMQ-OE DIRECTOR OF QUALITY PROGRAMS CITIZANT COMPANY HIGHLIGHTS Over 18+ years providing forward-thinking business and technology

More information

Requirements for an MDM Solution

Requirements for an MDM Solution Requirements for an MDM Solution A proven approach for how to gather, document, and manage requirements for a Master Data Management solution from Inception through Implementation by Vicki McCracken Copyright

More information

Managing Successful Programmes 2011 Glossary of Terms and Definitions

Managing Successful Programmes 2011 Glossary of Terms and Definitions Version 2, November 2011 This glossary: is subject to terms and conditions agreed to by downloading the glossary, uses international English which has been adopted to reflect and facilitate the international

More information

Professional Development Academic Honesty University Academic Integrity Policy

Professional Development Academic Honesty University Academic Integrity Policy HR Strategy IV: Designing and Implementing Human Capital Strategies in an Era of Change 38:533:690:02 Spring 2018 Room: 006 Janice H. Levin Building Wednesdays 4:30 7:10 p.m. Professor: Bill Castellano

More information

Enterprise Architecture Development of Mercu Buana University Based on TOGAF: An Introduction

Enterprise Architecture Development of Mercu Buana University Based on TOGAF: An Introduction Enterprise Architecture Development of Mercu Buana University Based on TOGAF: An Introduction Harwikarya * Raka Yusuf Department of Informatics Mercu Buana University Department of Informatics Mercu Buana

More information

Governance in a Multi-Supplier Environment

Governance in a Multi-Supplier Environment Governance in a Multi-Supplier Environment This paper provides advice and guidance for organisations faced with governing a multi-supplier environment. 1. The Need for Governance ISACA, the global IT governance

More information

Useful EAM-Standards and Best-Practice Frameworks

Useful EAM-Standards and Best-Practice Frameworks Useful EAM-Standards and Best-Practice Frameworks 29.06.2016, Prof. Dr. Florian Matthes Software Engineering für betriebliche Informationssysteme (sebis) Fakultät für Informatik Technische Universität

More information