1 / 9

COBIT

COBIT. Control Objectives for Information a n d related Technology. Apa itu Cobit …?. Cobit dirancang sebagai alat pengu-asaan IT yang membantu dalam pe-mahaman dan memanage resiko , manfaat serta evaluasi yang berhubungan dengan IT. C OBI T: An IT Control Framework. COBIT’s Vision.

alamea
Télécharger la présentation

COBIT

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. COBIT Control Objectives for Information and related Technology

  2. ApaituCobit…? • Cobitdirancangsebagaialatpengu-asaan IT yang membantudalampe-mahamandanmemanageresiko, manfaatsertaevaluasi yang berhubungandengan IT

  3. COBIT: An IT Control Framework COBIT’s Vision Sebagai model untukpenguasaan IT Melakukanpenelitian, pengembangan, publikasidanpromositerhadap control objective dariteknologiinformasi yang secaraumumditerimadilingkunganinternasionaluntukpemakaiansehari-harioleh manager dan auditor COBIT’s Mission

  4. COBIT Framework Bagaimanahubungannya? Business Requirements IT Resources IT Processes • Effectiveness(efektifitas) • Efficiency (Efisiensi) • Confidentiality (Rahasia) • Integrity (Integritas) • Availability (Ketersediaan) • Compliance (Pemenuhan) • Information Reliability (KehandalanInformasi) • Data • Information Systems • Technology • Facilities • Human Resources • Plan and Organise (Perencanaan & Org.) • Acquire and Implement (Pengadaan & Implementasi) • Deliver and Support (Pengantaran & dukungan) • Monitor and Evaluate (Pengawasan &Evaluasi)

  5. COBIT Framework Bagaimana IT diorganisirutkbereaksithdsuatukebutuhan Tersedianyasumberdaya IT Apa yang stakeholders harapkan dari IT How do they relate? Business Requirements IT Resources IT Processes • Data • Information Systems • Technology • Facilities • Human Resources • Planning and organisation • Acquire and Implement • Delivery and Support • Monitoring • Effectiveness • Efficiency • Confidentiality • Integrity • Availability • Compliance • Information Reliability

  6. COBIT Framework Topics • Strategidantaktik • MerencanakanVisi • Organisasi and infrastruktur Questions • Apakah IT danstrategibisnissudahditetapkan? • Apakahperusahaansudahmenggunakansecaramaksimumsumberdayanya? • Apakahsemuaorangdidlm org. sudahmemahamisasaran IT? • Apakahresiko IT sudahdipahami & diatur? • Apakahmutusistem IT sudahsesuaidgnkebutuhanbisnis? Domains Plan and Organise Acquire and Implement Topics • IT solutions • PerubahandanPemeliharaan Questions • Apakahproyekbarudapatmemberikansolusiterhadapkebutuhanbisnis? • Apakahproyekbarudapatselesaitepatwaktudansesuaianggaran? • Apakahsistemkerjaygbarubisaditerapkandgnbaik? • Apakahperubahanygdibuattdkmerepotkankegiatanbisnisygberjalan?

  7. COBIT Domains Topics • Layananpengantaran& dukungan • Dukunganprosespenyusunan • Pengolahansistemaplikasi Questions • Apakahlayanan IT ygdiberikansesuaidgnprioritasbisnis? • Apakahbiaya IT dapatdioptimalkan? • Apakahpekerjamampumenggunakansistem IT lebihproduktifdanaman? • Apakahkeamanan, integritasdanketersediaansudahpadatempatnya? Domains Deliver and Support Monitor and Evaluate Topics • Penilaianover time, jaminanpengiriman • Sistempengendalianmanajemenkesalahan • Pengukuranpekerjaan Questions • Dapatkan IT mendeteksisuatupermasalahansebelumsemuanyaterlambat? • Apakahjaminankemandirianygdiperlukandptmemastikan bidang2 kritisbisaberoperasisesuaidgnygdiharapkan?

  8. COBIT Framework Waterfall Model The control of (kendali) which satisfy (yang mencakupi) IT Processes is enabled by (dimungkinkan) Business Requirements Considering (mempertimbangkan) Control Statements Control Practices

  9. Criteria • Effectiveness • Efficiency • Confidentiality • Integrity • Availability • Compliance • Reliability IT RESOURCES • Data • Application systems • Technology • Facilities • People PLAN AND ORGANISE MONITOR AND EVALUATE ACQUIRE AND IMPLEMENT DELIVER AND SUPPORT Business Objectives COBIT Framework • PO1 Define a strategic IT plan (menggambarkan) • PO2 Define the information architecture • PO3 Determine the technological direction (menentukan) • PO4 Define the IT organisation and relationships • PO5 Manage the IT investment • PO6 Communicate management aims and direction • PO7 Manage human resources • PO8 Ensure compliance with external requirements (memastikan) • PO9 Assess risks (menilai) • PO10 Manage projects • PO11 Manage quality • M1 Monitor the process • M2 Assess internal control adequacy • M3 Obtain independent assurance • M4 Provide for independent audit • DS1 Define service levels • DS2 Manage third-party services • DS3 Manage performance and capacity • DS4 Ensure continuous service • DS5 Ensure systems security • DS6 Identify and attribute costs • DS7 Educate and train users • DS8 Assist and advise IT customers • DS9 Manage the configuration • DS10 Manage problems and incidents • DS11 Manage data • DS12 Manage facilities • DS13 Manage operations • AI1 Identify automated solutions • AI2 Acquire and maintain application software • AI3 Acquire and maintain technology infrastructure • AI4 Develop and maintain IT procedures • AI5 Install and accredit systems • AI6 Manage changes

More Related