Rating: 4 out of 5 stars
4/5
Ebook190 pages1 hour
Governance of Enterprise IT based on COBIT 5: A Management Guide
By Geoff Harmer and Malk Williams
Rating: 4.5 out of 5 stars
4.5/5
()
About this ebook
Written for IT service managers, consultants and other practitioners in IT governance, risk and compliance, this practical book discusses all the key concepts of COBIT®5, and explains how to direct the governance of enterprise IT (GEIT) using the COBIT®5 framework. The book also covers the main frameworks and standards supporting GEIT, discusses the ideas of enterprise and governance, and shows the path from corporate governance to the governance of enterprise IT.
Author
Geoff Harmer
Dr Geoff Harmer has 30 years' experience in the IT industry and has been awarded Chartered Engineer (CEng), Fellowship of the British Computer Society (FBCS), Chartered Information Technology Professional (CITP) and Certified in the Governance of Enterprise IT (CGEIT) status. Geoff has held licensed-lecturer status with ISACA for COBIT and has regularly presented official COBIT courses and IT governance workshops since 2006. He has an accredited-lecturer status with BCS (ISEB) and APMG for ITIL and since 2001 has regularly presented ITIL courses and ITSM workshops. Dr Harmer has been awarded accredited-trainer status with APMG (formerly itSMF) for ISO20000 and since 2006 has regularly presented advanced ISO 20000 courses for consultants and auditors. He is also an Associate Lecturer in Technology with the UK Open University, a post he has held since 1999.
Related to Governance of Enterprise IT based on COBIT 5
Related ebooks
IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT ISO/IEC 38500: The IT Governance Standard Rating: 5 out of 5 stars5/5ISO/IEC 38500: A pocket guide, second edition Rating: 4 out of 5 stars4/5Interfacing and Adopting ITIL and COBIT Rating: 0 out of 5 stars0 ratingsIT for Business (IT4B): From Genesis to Revolution, a business and IT approach to digital transformation Rating: 0 out of 5 stars0 ratingsTen Steps to ITSM Success: A Practitioner’s Guide to Enterprise IT Transformation Rating: 0 out of 5 stars0 ratingsIT Governance: Guidelines for Directors Rating: 0 out of 5 stars0 ratingsCollaborative Enterprise Architecture: Enriching EA with Lean, Agile, and Enterprise 2.0 practices Rating: 4 out of 5 stars4/5Practical IT Service Management: A concise guide for busy executives Rating: 0 out of 5 stars0 ratingsITIL Lifecycle Essentials: Your essential guide for the ITIL Foundation exam and beyond Rating: 0 out of 5 stars0 ratingsCMDB Systems: Making Change Work in the Age of Cloud and Agile Rating: 0 out of 5 stars0 ratingsITSM Value Streams: Transform opportunity into outcome Rating: 0 out of 5 stars0 ratingsService Integration and Management (SIAM™) Foundation Body of Knowledge (BoK), Second edition Rating: 0 out of 5 stars0 ratingsGovernance of IT: An executive guide to ISO/IEC 38500 Rating: 0 out of 5 stars0 ratingsAgile Business Architecture for Digital Transformation Rating: 5 out of 5 stars5/5The IT Leader's Manual Rating: 0 out of 5 stars0 ratingsCloud Security and Governance: Who's on your cloud? Rating: 1 out of 5 stars1/5Data Governance: Governing data for sustainable business Rating: 0 out of 5 stars0 ratingsPresentations on Classical ITIL Rating: 0 out of 5 stars0 ratingsImplementing Service Quality based on ISO/IEC 20000: A Management Guide Rating: 4 out of 5 stars4/5Developing Information Systems: Practical guidance for IT professionals Rating: 0 out of 5 stars0 ratingsCo-creating value in organisations with ITIL 4: A guide for consultants, executives and managers Rating: 0 out of 5 stars0 ratingsEnterprise Architecture: A Pocket Guide Rating: 4 out of 5 stars4/5A Modern Enterprise Architecture Approach: Enterprise Architecture Rating: 4 out of 5 stars4/5IT Governance to Drive High Performance: Lessons from Accenture Rating: 0 out of 5 stars0 ratingsChange Manager: Careers in IT service management Rating: 0 out of 5 stars0 ratingsITIL® 4 Direct, Plan and Improve (DPI): Your companion to the ITIL 4 Managing Professional and Strategic Leader DPI certification Rating: 0 out of 5 stars0 ratingsITIL® 4 Essentials: Your essential guide for the ITIL 4 Foundation exam and beyond, second edition Rating: 5 out of 5 stars5/5
Security For You
CompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5Network+ Study Guide & Practice Exams Rating: 4 out of 5 stars4/5CompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsMake Your Smartphone 007 Smart Rating: 4 out of 5 stars4/5Codes and Ciphers - A History of Cryptography Rating: 4 out of 5 stars4/5Hacking For Dummies Rating: 4 out of 5 stars4/5Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity Rating: 5 out of 5 stars5/5Wireless Hacking 101 Rating: 4 out of 5 stars4/5Cybersecurity For Dummies Rating: 4 out of 5 stars4/5Security+ Boot Camp Study Guide Rating: 5 out of 5 stars5/5Social Engineering: The Science of Human Hacking Rating: 3 out of 5 stars3/5Hacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking Rating: 5 out of 5 stars5/5Navigating the Cybersecurity Career Path Rating: 0 out of 5 stars0 ratingsCompTIA Network+ Practice Tests: Exam N10-008 Rating: 0 out of 5 stars0 ratingsRemote/WebCam Notarization : Basic Understanding Rating: 3 out of 5 stars3/5The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers Rating: 4 out of 5 stars4/5Practical Lock Picking: A Physical Penetration Tester's Training Guide Rating: 5 out of 5 stars5/5The Mathematics of Secrets: Cryptography from Caesar Ciphers to Digital Encryption Rating: 0 out of 5 stars0 ratingsHow to Become Anonymous, Secure and Free Online Rating: 5 out of 5 stars5/5Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Ultimate Guide for Being Anonymous: Hacking the Planet, #4 Rating: 5 out of 5 stars5/5How to Hack Like a Pornstar Rating: 5 out of 5 stars5/5The Art of Attack: Attacker Mindset for Security Professionals Rating: 0 out of 5 stars0 ratingsCompTIA CySA+ Cybersecurity Analyst Certification Passport (Exam CS0-002) Rating: 5 out of 5 stars5/5Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Handbook of Digital Forensics and Investigation Rating: 4 out of 5 stars4/5Cybersecurity for Beginners : Learn the Fundamentals of Cybersecurity in an Easy, Step-by-Step Guide: 1 Rating: 0 out of 5 stars0 ratings
Related podcast episodes
GitOps, Security and Modern CI/CD Pipelines 0% found this document useful52. A Practical Approach to Co-Creating Value Across the Organization, with David Barrow 0% found this document usefulData, Systems and ML for Visual Understanding with Cody Coleman - #660 0% found this document usefulBackstage & Internal Developer Portals 0% found this document useful[LIVE SESSION] - The Future of IT Service Management 0% found this document usefulA Cloud-First Look Ahead for 2021 0% found this document usefulA Transformation Look Ahead for 2021 0% found this document usefulCloud Observability with ELK and Grafana 0% found this document usefulPath to Becoming a CFO | Steve Sordello, SVP and CFO at LinkedIn Emeritus 0% found this document usefulChallenging the Assumptions of Innovation with William Kilmer 0% found this document usefulA "AI & ML" Look Ahead for 2020 0% found this document usefulWhy Great Leaders are Learners First - Global CIO Ascendion, Viral Tripathi 0% found this document useful
Related articles
The CIO Confront Enterprises Require a New Type of Technology Executive TechfastlyArticle
The CIO Confront Enterprises Require a New Type of Technology Executive
Mar 1, 2022
4 min readCyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL Inc.Article
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min readEditor’s Note TechfastlyArticle
Editor’s Note
Aug 2, 2021
Dear Readers We are delighted, once again, to bring you the August edition of Techfastly. We have focused on healthcare technologies for this edition. The advancement of healthcare technologies is helping the healthcare industry in various important
1 min read“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster” PC Pro MagazineArticle
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
Apr 10, 2022
6 min readIn an Era of Digital Everything, Is Lean Still Relevant? Rotman ManagementArticle
In an Era of Digital Everything, Is Lean Still Relevant?
Jan 1, 2024
6 min readCreating And Leading A Future Ready Enterprise The European Business ReviewArticle
Creating And Leading A Future Ready Enterprise
Apr 3, 2019
As we head deeper into the year ahead, we strive to highlight the essential strategies and latest research studies that will enlighten and equip companies and their leaders to keep abreast with the advancements and stay ahead of the curve amongst dis
2 min readFeature AdNewsArticle
Feature
May 22, 2022
4 min readIBM Boss: Big Companies Were Not Prepared For The Pandemic Evening StandardArticle
IBM Boss: Big Companies Were Not Prepared For The Pandemic
Sep 4, 2020
Sreeram Visvanathan is the new chief executive of IBM UK and Ireland. The 53 year-old is from Bangalore in India and previously led IBM’s global Public Sector team. In the middle of London Tech Week, he talked to the Evening Standard about the future
4 min readBusinesses Were Not Prepared For The Pandemic, Warns IBM Chief Executive Evening StandardArticle
Businesses Were Not Prepared For The Pandemic, Warns IBM Chief Executive
Sep 7, 2020
4 min readStay Ahead in Turbulent Times The European Business ReviewArticle
Stay Ahead in Turbulent Times
Aug 2, 2019
How do you stay ahead of your competition is a question we strive to answer in each edition of The European Business Review. In today’s fast-changing and hyper-competitive digital age, this question becomes more important than ever before. With the e
2 min readWinning the ‘20s: A Leadership Agenda for the Next Decade Rotman ManagementArticle
Winning the ‘20s: A Leadership Agenda for the Next Decade
Sep 1, 2019
9 min readPrabhu’s Journey Beyond The Professional Facility ManagementArticle
Prabhu’s Journey Beyond The Professional
Jun 27, 2019
6 min readThe Innovation Revolution ThinkSalesArticle
The Innovation Revolution
Jun 26, 2019
1 min readThe Good Thing: B Corp Certification Architectural Review Asia PacificArticle
The Good Thing: B Corp Certification
Feb 5, 2023
4 min readThe Good Thing: B Corp Certification Architectural Review Asia PacificArticle
The Good Thing: B Corp Certification
Feb 5, 2023
4 min readThe Digital Tsunami: How Boards Are Adjusting Rotman ManagementArticle
The Digital Tsunami: How Boards Are Adjusting
Jan 1, 2023
5 min readFIVE LEADERSHIP LESSONS THAT WILL Help you Boost Productivity The European Business ReviewArticle
FIVE LEADERSHIP LESSONS THAT WILL Help you Boost Productivity
May 22, 2018
6 min readCybersecurity Made Simple: Taming The Password The European Business ReviewArticle
Cybersecurity Made Simple: Taming The Password
Mar 1, 2022
8 min readFaster, Higher, Stronger Business TodayArticle
Faster, Higher, Stronger
Dec 12, 2019
3 min readLearning to Love What I Don’t Know Inc.Article
Learning to Love What I Don’t Know
Nov 1, 2017
LIKE MANY WHO HAVE made the leap into Startupland, I guessed from the outset that I had a lot to learn. I was right. Indeed, I jumped into the wormhole of blind spots and unknown unknowns. This has been especially true on matters technological. At Io
2 min readSnackable Learning Modules Coming Business TodayArticle
Snackable Learning Modules Coming
Jan 23, 2020
MD & CEO, Diageo India When I started working in the early 1980s, offices clattered with typewriters and papers were physically moved from one table to another. It was the pre-digital era. Desktops with floppy drives were just arriving. In fact, mill
5 min readINTRODUCING THE DIGITAL VERSION OF STRUCTURED ON-THE-JOB TRAINING: Illustrative Case Studies and Reflections on Organisational Change The European Business ReviewArticle
INTRODUCING THE DIGITAL VERSION OF STRUCTURED ON-THE-JOB TRAINING: Illustrative Case Studies and Reflections on Organisational Change
Feb 25, 2021
11 min readARE YOU JUST ‘Doing Agile’ OR ‘Being Agile’ TechfastlyArticle
ARE YOU JUST ‘Doing Agile’ OR ‘Being Agile’
Mar 3, 2021
4 min readLeadership Forum: Investing in Disruption Rotman ManagementArticle
Leadership Forum: Investing in Disruption
Jan 1, 2019
10 min readRaising The Bar Business TodayArticle
Raising The Bar
Dec 24, 2020
4 min read“Be Global But Act Local because Each Economy Is Unique” Business TodayArticle
“Be Global But Act Local because Each Economy Is Unique”
Dec 8, 2023
6 min readGoodbye Digital Age, Hello Fusion Era HWM SingaporeArticle
Goodbye Digital Age, Hello Fusion Era
Jan 7, 2022
4 min readDigital Trust Is On The Horizon The European Business ReviewArticle
Digital Trust Is On The Horizon
Mar 1, 2022
11 min read“The Dramatic Reprioritisation Of AI Is Our Big Opportunity” Business TodayArticle
“The Dramatic Reprioritisation Of AI Is Our Big Opportunity”
Mar 29, 2024
3 min readOracles Of Inc. Inc.Article
Oracles Of Inc.
Oct 20, 2020
AT INC., WE TOO ARE IN the soothsaying business. Five years ago, for example, we wrote that more of us would be working from home in 2020. Well, we got that right-though nobody guessed that all of us would be working from home in 2020. Anticipating t
2 min read
Reviews for Governance of Enterprise IT based on COBIT 5
Rating: 4.666666666666667 out of 5 stars
4.5/5
3 ratings0 reviews
Book preview
Governance of Enterprise IT based on COBIT 5 - Geoff Harmer
Governance of Enterprise
IT based on COBIT®5
A management guide
Governance of Enterprise
IT based on COBIT®5
A management guide
GEOFF HARMER
Every possible effort has been made to ensure that the information contained in this book is accurate at the time of going to press, and the publisher and the author cannot accept responsibility for any errors or omissions, however caused. Any opinions expressed in this book are those of the author, not the publisher. Websites identified are for reference only, not endorsement, and any website visits are at the reader's own risk. No responsibility for loss or damage occasioned to any person acting, or refraining from action, as a result of the material in this publication can be accepted by the publisher or the author.
This product includes COBIT®5 ©2012 ISACA® used by permission of ISACA®. All rights reserved.
COBIT®5 is a registered trademark of the ISACA®.
Views and guidance presented here reflect those of the author and not those of ISACA, the author of COBIT 5.
Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted under the Copyright, Designs and Patents Act 1988, this publication may only be reproduced, stored or transmitted, in any form, or by any means, with the prior permission in writing of the publisher or, in the case of reprographic reproduction, in accordance with the terms of licences issued by the Copyright Licensing Agency. Enquiries concerning reproduction outside those terms should be sent to the publisher at the following address:
IT Governance Publishing
IT Governance Limited
Unit 3, Clive Court
Bartholomew’s Walk
Cambridgeshire Business Park
Ely, Cambridgeshire
CB7 4EA
United Kingdom
www.itgovernance.co.uk
© Geoff Harmer 2013
The author has asserted the rights of the author under the Copyright, Designs and Patents Act, 1988, to be identified as the author of this work.
First published in the United Kingdom in 2013
by IT Governance Publishing.
ISBN 978-1-84928-520-9
ABOUT THE AUTHOR
Geoff Harmer lives in the UK and is the Director of Maat Consulting Ltd, an independent provider of education and consultancy on best practices for IT governance and IT service management.
He has more than 30 years’ experience in the IT industry and is a Chartered Engineer (CEng), Fellow of the British Computer Society (FBCS), Chartered Information Technology Professional (CITP) and is Certified in the Governance of Enterprise IT (CGEIT®).
After gaining a PhD in neutron physics at the University of Sheffield and conducting programming for scientific research in optical design at the University of Reading, he worked for Digital Equipment Company (DEC), a major computer vendor, for 13 years then moved to several consultancy houses specialising in IT strategy and IT service management for a further ten years before setting up Maat Consulting in 2004.
Since 2001, he has specialised in communicating and developing ideas and approaches around standards and frameworks for information technology through courses, workshops, public lectures, consultancy and writing blog columns. He regularly presents a wide range of courses that include certification exams – COBIT®, CGEIT®, ISO20000 and ITIL®.
He has been an Associate Lecturer in Technology with the UK Open University since 1999.
As a physicist he is very interested in the linking of quantum mechanics to computing and so is currently studying Quantum Computation.
ACKNOWLEDGEMENTS
I first discovered COBIT® in 2004 when Gary Hardy (father of COBIT®
) visited the company I worked for in Reading, UK to discuss COBIT® and to explain that ISACA® was about to plan a COBIT® Foundation course. Unfortunately, as I was teaching an ITIL® course that day, I didn’t get a chance to meet him, but I immediately downloaded COBIT®3 and was surprised to discover it had 34 processes compared to ITIL V2, which had just 10 processes. Gary had asked my manager, Sue Kilford, if someone who was an ITIL trainer with experience of Foundation course syllabi could attend a meeting at the University of Antwerp Management School (UAMS) to discuss the syllabus for a COBIT® Foundation Certification Course that ISACA® wished to create as an online course. I was delighted to be asked to attend that meeting.
At the two-day meeting, I met Erik Guldentops (grandfather of COBIT®
), Gary Hardy (father of COBIT®
) and I was also introduced to Professor Wim van Grembergen, Chair of Information Systems Management at UAMS, a leading academic researcher in the field of IT governance whose textbooks written with Associate Professor Steven de Haes would later enlighten me. That meeting was when I became an IT governance enthusiast and I participated in further meetings to help define the COBIT® Foundation Certificate syllabus that came to life with an ISACA® online course and online exam in 2005.
I’d like to thank Sue Kilford for inviting me to get involved in COBIT® with its enthusiastic leaders Erik Guldentops and Gary Hardy, who have certainly educated me continually about COBIT®. Another COBIT® expert who has helped me considerably is Roger Southgate, who not only regularly presented about COBIT® at ISACA® meetings I attended in London, but also with Gary Hardy taught an Implementing COBIT® Certificate course that I attended at an ISACA® conference in London in 2006, enabling me to become an ISACA® accredited trainer for COBIT® in 2006 when classroom-based courses started.
Key to my success in the area of COBIT® training and consultancy has been Alan Calder, CEO of IT Governance Ltd, Ely, UK who in 2007 agreed to schedule COBIT® Foundation and COBIT® Implementation training courses using my company, Maat Consulting, and created opportunities for me to develop and teach other IT governance courses including CGEIT®. I also thank IT Governance staff Donna Garner for organising and managing training events for COBIT® and Elizabeth Quashie for setting up my accreditations with APMG for COBIT® and keeping me informed of the continually changing world of APMG/ISACA® qualifications.
I was delighted to be contacted by Vicki Utting of IT Governance Publishing (ITGP) with a request to write this textbook, and I thank her and her team for their advice, waiting a long time for me to complete it and for their editorial reviews. I would like to thank the following reviewers for their helpful suggestions: Brian Johnson, CA; Mark Thomas CGEIT, President, Escoute Consulting and S. D. Van Hove, Ed.D., FSM® SED-IT, CEO & Founder.
I thank my mother, Connie, and my late father, Frank, for their continual encouragement while supporting me at school and university and Nigel Kermode who persuaded me to become an IT professional instead of a physicist by recruiting me to Digital Equipment Company (DEC) in 1982.
CONTENTS
Introduction
Chapter 1: Governance
Enterprise and Governance
Emergence of Governance Codes
When did IT Governance emerge?
Chapter 2: Key Frameworks and Standards Supporting Governance of Enterprise IT
IT Governance
ISO/IEC 38500: 2008 Corporate Governance of Information Technology
IT Service Management
IT Infrastructure Library (ITIL) 2011 Edition
ISO/IEC 20000: 2011 Information technology service management system
Project Management
PRINCE2 2009 Edition
PMBOK®
Risk Management
Value Delivery
Information Security
Enterprise Architecture (EA)
Quality
Maturity Assessment
CMM®
CMMI®
ISO15504 Process Capability Model
Internal Controls
COSO
Sarbanes-Oxley Act
Basel III Framework
Cultural Change Enablement
Semiotic Framework
Business Continuity Management
Chapter 3: COBIT – From IT Audit to GEIT
Enjoying the preview?
Page 1 of 1