5IT Governance

Framework MappingKelompok 5

5207100062 Nuraisa Novia H5207100084 Umi Salama5207100112 Gemala Yanuarita5207100114 Fitri Linawati5208100081 Siti Mariatul5208100707 Fia Mahanani

Overview

• COBIT (PO, AI, DS, ME)• ITIL V3 (SS, SD, ST, SO, CSI)• ISO 38500 (Principle 1-6)

ISO 38500 VS ITIL V3 Mapping 1

5

RESPONSIBILITYAssigning and understanding responsibilities

ITIL V3

SERVICE STRATEGY• Strategy Generation• IT Financial Management

SERVICE DESIGN• Service Catalogue Mgmt.• Service Level Mgmt.• Avalibility Mgmt.• Capacity Mgmt.• IT Service Continuity Mgmt.• Information Security Mgmt.• Supplier Mgmt.

ITIL V3

SERVICE TRANSITION• Transition Planning &

Support• Change Mgmt.• Service Asset &

Configuration Mgmt• Release & Deployment

Mgmt• Service Validation & Testing• Evaluation• Knowledge Mgmt

ISO 38500 Vs ITIL V3 Umi Vs Novi

ITIL V3 ITIL V3

SERVICE OPERATION• Incident Mgmt• Problem Mgmt

CSI• Service Reporting• Service Measuremen &

Control• ROI on CSI

RESPONSIBILITYAssigning and understanding responsibilities

ISO 38500 Vs ITIL V3 Umi Vs Novi

ITIL V3

SERVICE STRATEGY• Strategy Generation• IT Financial Mgmt.• Service Portofolio Mgmt.• Demand Mgmt.

STRATEGYSatisfying the organization’s Business strategy

ITIL V3

SERVICE DESIGN• Service Catalogue Mgmt.• Service Level Mgmt.• Avalibility Mgmt.• Capacity Mgmt.• IT Service Continuity Mgmt.• Information Security Mgmt.

ISO 38500 Vs ITIL V3 Umi Vs Novi

ITIL V3 ITIL V3SERVICE TRANSITION• Transition Planning &

Support• Change Mgmt.• Release & Deployment

Mgmt• Service Validation & Testing• Evaluation

SERVICE OPERATION• Problem Mgmt

STRATEGYSatisfying the organization’s Business strategy

ISO 38500 Vs ITIL V3 Umi Vs Novi

ITIL V3 ITIL V3

SERVICE STRATEGY• Strategy Generation• IT Financial Mgmt.• Service Portofolio Mgmt.• Demand Mgmt.

ACQUISITIONIT acquisition and investation

SERVICE DESIGN• Service Catalogue Mgmt.• Service Level Mgmt.• Avalibility Mgmt.• Capacity Mgmt.• Supplier Mgmt.

ISO 38500 Vs ITIL V3 Umi Vs Novi

ACQUISITIONIT acquisition and investation

ITIL V3 ITIL V3SERVICE TRANSITION• Transition Planning &

Support• Change Mgmt.• Release & Deployment

Mgmt• Service Validation & Testing• Evaluation

CSI• ROI on CSI

ISO 38500 Vs ITIL V3 Umi Vs Novi

mapping iso 38500 to itil v3

ISO 38500

PERFORMANCECondition handling/Implementation

ITIL V3

SERVICE TRANSITION• Transition Planning &

Support• Change Mgmt.• Service Asset &

Configuration Mgmt• Release & Deployment

Mgmt• Service Validation & Testing• Evaluation• Knowledge Mgmt

ISO 38500 Vs ITIL V3 Umi Vs Novi

mapping iso 38500 to itil v3

ISO 38500

PERFORMANCEFuture Strategic Decision

ITIL V3SERVICE STRATEGY• IT Financial Mgmt.• Service Portofolio Mgmt.• Demand Mgmt.

CSI• Service Reporting• Service Measuremen &

Control• ROI on CSI

PERFORMANCEIn line with org. development

ISO 38500 Vs ITIL V3 Umi Vs Novi

mapping iso 38500 to itil v3

ISO 38500

PERFORMANCEBusiness Practices Alignment

ITIL V3

SERVICE OPERATION• Event Mgmt.• Incident Mgmt.• Access Mgmt.• Problem Mgmt.• Request Fulfillment

ISO 38500 Vs ITIL V3 Umi Vs Novi

mapping iso 38500 to itil v3

ISO 38500

CONFORMANCEAligning with rules and regulations

ITIL V3

SERVICE STRATEGY• IT Financial Mgmt.• Service Portofolio Mgmt.• Demand Mgmt.

CONFORMANCEStaying up to date with rulesand regulations

CSI• Service Reporting• Service Measuremen &

Control• ROI on CSI

ISO 38500 Vs ITIL V3 Umi Vs Novi

mapping iso 38500 to itil v3

CONFORMANCECreating good standard and guidance

SERVICE DESIGN• Service Catalogue Mgmt.• Service Level Mgmt.• Avalibility Mgmt.• Capacity Mgmt.• IT Service Continuity Mgmt.• Information Security Mgmt.• Supplier Mgmt.

SERVICE OPERATION• Event Mgmt.• Incident Mgmt.• Access Mgmt.• Problem Mgmt.• Request Fulfillment

CONFORMANCEThe existing practices is based on rulesand regulations

ISO 38500 Vs ITIL V3 Umi Vs Novi

mapping iso 38500 to itil v3

ISO 38500

HUMAN BEHAVIOURKetepatan Guna

ITIL V3

ISO 38500 Vs ITIL V3 Umi Vs Novi

SERVICE DESIGN• Service Catalogue Mgmt.• Service Level Mgmt.• Avalibility Mgmt.• Capacity Mgmt.• Supplier Mgmt.

mapping iso 38500 to itil v3

ISO 38500

HUMAN BEHAVIOURPenanganan pihak yang terlibat

ITIL V3

ISO 38500 Vs ITIL V3 Umi Vs Novi

SERVICE TRANSITION• Transition Planning &

Support• Change Mgmt.• Service Asset &

Configuration Mgmt• Release & Deployment

Mgmt• Service Validation & Testing• Evaluation• Knowledge Mgmt

mapping iso 38500 to itil v3

ISO 38500

HUMAN BEHAVIOURKepentingan pelaksana dan pemakai

ITIL V3

ISO 38500 Vs ITIL V3 Umi Vs Novi

SERVICE OPERATION• Event Mgmt.• Incident Mgmt.• Access Mgmt.• Problem Mgmt.• Request Fulfillment

mapping iso 38500 to itil v3

ISO 38500

HUMAN BEHAVIOURMampu memenuhi kebutuhanmanusia di setiap perkembangan

ITIL V3

ISO 38500 Vs ITIL V3 Umi Vs Novi

CSI• Service Reporting• Service Measuremen &

Control• ROI on CSI

ISO 38500 VS COBITMapping 2

5

Sumber: http://itgovernance.com/web/content/view/40/1/ (picture remade by arman)

ISO 38500 CobiTISO 38500 Vs COBIT Gemala Vs Lina

Principle 1

ResponsibilityPO4

Define the IT Processes, Organisation and

Relationships

PO6Communicate

Management Aims and Direction

PO7Manage IT

Human Resources

DS1Define and Manage

Service Levels

ME1Monitor and Evaluate IT

Performance

ME4Provide IT

Governance

ISO 38500 Vs COBIT Gemala Vs Lina

Principle 2

Strategy

PO1Define Strategic

IT Plan

PO2 Define the

information structure

PO3Determine

Technological Direction

PO5Manage the IT

Investment

PO9Assess and

Manage IT Risks

AI1Identify Automated

Solutions

ISO 38500 Vs COBIT Gemala Vs Lina

Principle 3

AcquisitionPO6

Communicate Management Aims

and Direction

PO10Manage Projects

AI1Identify Automated

Solutions

AI2Acquire and Maintain Application Software

AI3Acquire and Maintain

Technology Infrastructure

AI6Manage Changes

AI7Install and Accredit

Solutions and Changes

DS1Define and Manage

Service Levels

DS2Manage Third-party Services

ISO 38500 Vs COBIT Gemala Vs Lina

Principle 4

PerformanceDS4

Ensure Continuous Service

DS5Ensure Systems

Security

DS6Identify and

Allocate Costs

DS8Manage Service

Desk and Incidents

DS9Manage the

Configuration

DS10Manage

Problems

DS11Manage Data

DS12Manage the Physical

Environment

DS13Manage

Operations

ISO 38500 Vs COBIT Gemala Vs Lina

Principle 5

Conformance

PO4Define the IT Processes,

Organisation and Relationships

ME1Monitor and Evaluate IT

Performance

ME2Monitor and

Evaluate Internal Control

ME3Ensure Compliance

With External Requirements

Principle 6

Human BehaviourPO4

Define the IT Processes, Organisation and

Relationships

PO7Manage IT

Human

AI4Enable Operation

and Use

DS1Define and Manage

Service Levels

DS7Educate and Train Users

ISO 38500 Vs COBIT Gemala Vs Lina

COBIT VS ITILMapping 3

5

ITIL V3 Vs COBIT Fia Vs Heni

Plan & Organize

Acquire & Implement

Deliver & Support

Monitor & Evaluate

Cobi

t 4Service Strategy

Service Design

Service Transition

Service Operation

Continuous Service Improvement

ITIL V3

Cobit 4 Vs ITIL V3

• ITGI and OGC• www.ITIL.org

ITIL V3 Vs COBIT Fia Vs Heni

Peter Weill

• Decision Making Structure• Alignment Process• Communication Approach

COBIT• PO1 Define a Strategic IT Plan• PO2 Define the Information Architecture• PO3 Determine Technological Direction• PO4 Define the IT Processes, Organisation and Relationships• PO5 Manage the IT Investment• PO6 Communicate Management Aims and Direction• PO7 Manage IT Human Resources• PO8 Manage Quality• PO9 Assess and Manage IT Risks• PO10 Manage Projects

• AI1 Identify Automated Solutions• AI2 Acquire and Maintain Application Software• AI3 Acquire and Maintain Technology Infrastructure• AI4 Enable Operation and Use• AI5 Procure IT Resources• AI6 Manage Changes• AI7 Install and Accredit Solutions and Changes

COBIT• DS1 Define and Manage Service Levels• DS2 Manage Third-party Services • DS3 Manage Performance and Capacity• DS4 Ensure Continuous Service• DS5 Ensure Systems Security• DS6 Identify and Allocate Costs• DS7 Educate and Train Users• DS8 Manage Service Desk and Incidents• DS9 Manage the Configuration• DS10 Manage Problems• DS11 Manage Data• DS12 Manage the Physical Environment• DS13 Manage Operations

• ME1 Monitor and Evaluate IT Performance• ME2 Monitor and Evaluate Internal Control• ME3 Ensure Compliance With External Requirements• ME4 Provide IT Governance