ICT Governance for Enterprise Control and Value Creation (Day 1 of

ICT Governance for Enterprise Control
and Value Creation (Day 1 of 2)
Bahrain, April 2014
Extracting Value
From Information chaos
Why Good Governance
Makes good sense
By:
Phillip Sparks
&
Jenny Tsuboyama
1
The goal of the 2 day workshop is to provide insights and
guidance on IT governance strategy, risk management and
implementation of resources through interactive sessions and
mini-case studies
 Establish an IT Governance Framework
 Ensure that enterprise’s IT investment is in line with
its strategic objectives.
 Learn to manage enterprise risk
 Discuss how to manage resources , budget utilization
and resource allocation
Learning Objectives
 Identify how to manage performance, return on investments
and avoidance of idle investments
2
Speaker Profile
Professional and Working experience
 Leadership:
 Reserve officer training corps (ROTC), Battalion Commander,
 Digital Communications Platoon Leader, Automation Officer (CIO), responsible for ICT
adoption for 26 organizations in 6 countries with US Military in Europe.
 Headquarters Company Commander and Automation Procurement Officer during Gulf
War in Saudi Arabia for all telecommunications supporting 9 organizations of 9000
subscribers
 CEO ICS Corporation, a global training and consulting company for IT and Security
 Director of Consulting Services for ADAM Global, in 70+ cities
 ICT Strategic, Risk Management & Governance
 Consultant and Project Manager for Network Management Architect for Theater (6
Countries in Europe) covering 1.3 Million personnel
 Network and Software Designer for telephone switch performance, configuration and
fault management, and postal systems.
 Technology lead and site manager for RCERT/E (Regional Computer Emergency Response
Team Europe) covering all ICT implementation and protection in 6 Countries for US
Military and NATO forces in 22 countries.
 ICT Strategy Advisor to Telecom, Financial Organization and Government in Europe and
Middle East (Saudi Arabia, UAE)
 Director of Action Learning and Continued Education using Role based Training
 Instructional Designer for IT certifications in Technology and Cyber Security for Advanced
Forensics Response And Intrusion Detection, (AFRAID), Enterprise Network Security,
 Professor Economics, Innovation, Business Execution, and Action Learning director for
HULT International Business School, Dubai Campus
Education





BS Physics/l liberal Arts History Minor, Centre College of Kentucky
BS Electrical Engineering, Washington University in St. Louis
Masters Software Telecommunication, Air Force Institute of Technology
70% Masters Information Systems, Boston University
Masters Business Administration, Masters Public Administration, e
Phillip Sparks
MBA, CISA, CISM
Director ADAM Global
Consulting Services
Director of Innovation
and Technology IXL
Center
Summary
 Over 25 years working with ICT for
large organizations, developing and
implementing ICT strategy, risk
management & governance
 Advisor and panel moderator for ICT
and Cloud computing with training
and development of Governance,
Risk management and Security of IT
with support of ISACA
Speaker Profile
Jenny Tsuboyama
Professional and Working experience
 Leading public administration and e-Government projects and initiatives
 Lecturer and consultant on e-Government and Change Management .
 Project Manager in change management training and e-Government case studies and project manager
in e-newsletter project for Information Technology Authority in Oman.
 Research on systematization of legislation, informal economy, e-global policies.
 Analysis political policies and legal practices in order to decide what governmental policies to support
and implementation of a ICT platform for legislation (Peruvian Parliament)
 Public relations, negotiations and networking.
 Organization of trainings, conferences, road-shows.
 Life and organizational coaching.
 Civil, administrative and parliamentary law (advisor in the Peruvian Parliament), public policy and
information technology.
 Coordination, negotiation and developing projects with lobby groups, political parties and press
 Writing proposals, preparing presentations, marketing material, written communication and speech
drafts
Education
 Master´s Degree in Public Administration with mention in Global e-Policies and e-Government, SKKU,
South Korea, Outstanding Thesis Award
 PROSCI Change Management Certification
 International Course on Human Capabilities, IAMR, India.
 Executive Education Course in Project Management and Securities Markets , ESAN, Peru.
 Diploma in Coaching and Consulting, URP, Peru
 Professional Title Attorney, UCSM, Peru, 2007
 Bachelor´s Degree in Law, Universidad Católica de Santa María - Peru , Top 10.
Global Innovation
Director at Adam
Global
e-Government &
Change manager
Lawyer
Summary
e-Government expert with global experience and
knowledge of public policy, government affairs,
regulatory and information technology frameworks
in East Asia, Latin America and MENA region. She
specializes on e-Policies, e-Government and
Organizational & People change and culture.
She advised parliaments, national informatisation
agencies and law firms.
Panelist in the International Conference of Policy
Analysis and Evaluation (South Korea)
Jenny builds networks with her public relation’ s
and coaching skills and manages study groups and
meetings due to her years of experience in South
Korea, UAE, India, Tunisia and Peru.
Session 1
Frameworks for Governance of
Enterprise IT
5
Session 1 will be discussing 4 areas of successful Frameworks for
the Governance of Enterprise IT and appropriate case studies
Components of a Framework for Governance of Enterprise IT
IT Governance Industry practices, standards and frameworks
Business drivers related to IT Governance
IT Governance Enablers
Audience discussion based upon scenario-based and ISACA case studies
6
There are 5 components for a Framework for Enterprise IT, based
upon COBIT framework
IT
Governance
Resource
Management
7
There are several IT Governance industry practices, standards
and frameworks that can be consolidated for the organization
8
There is a natural overlap of the COBIT and other standards in
areas of evaluation, alignment, build, delivery and monitor.
9
It is important to identify the business drivers related to IT Governance
to ensure senior management acceptance align to Vision
What are drivers in the
vision related to IT?
IT Governance
drivers
Is Smart City needed?
Value
Assurance
Survival
Trust
10
IT Governance enablers must be considered and cultivated
throughout the organization to ensure awareness at all levels
Principles,
Policies and
Frameworks
People, skills
and
competencies
Processes
ENABLERS
Organizational
structures
Services
Information
Culture
11
Session 1 Audience discussion based upon scenarios and ISACA case
study on Governance of IT: Val IT at the European Parliament –
Enhancing IT Governance and Planning Processes
12
Session 2
COBIT Framework
13
Session 2 will be discussing the COBIT framework
COBIT as an evolution
Principles of COBIT
COBIT aligns Process, Goals and Metrics
Value creation through COBIT
Management Governance functions in COBIT
Process for Governance Enterprise IT
COBIT designs full roles and RACI format
14
COBIT is an evolution from IT auditing in 1996 into IT
Governance of Enterprise IT with release of COBIT 5 in 2012
Technical
worker
Technical
Consultant
Board
Advisor/CIO
15
There are 5 primary principles of COBIT 5 that relate to overall
governance ICT in any organization
16
COBIT allows Governance through the alignment among
processes, goals and metrics
17
Many Governance objectives such as value creation can be
defined through COBIT
18
COBIT framework allows Governance through Plan, Build, Run
and Monitor of Management functions
COBIT 5 is not
prescriptive, but it
advocates that
organisations
implement governance
and management
processes such that the
key areas are covered,
as shown
19
COBIT has well established processes for Governance Enterprise
IT, divided into Evaluate, Align, Build, Deliver and Monitor
20
COBIT quick start assessment tool goes into detail of the
maturity and key metrics as well as the RACI responsibilities
21
Session 2 Audience discussion based upon scenarios and ISACA case
study on Governance of IT: Dubai Financial Audit Department
22
Session 3
Strategic Planning and alignment of
ICT
23
Session 3 will be discussing 4 critical areas where Strategic Planning
has alignment of ICT and business units and appropriate case studies
Strategic Plan & how it relates to IT
Strategic planning processes and techniques
Barriers to achievement of strategic alignment
Scope, objectives and benefits of IT investment programs
Audience discussion based upon scenario-based and ISACA case studies
24
Strategic Plan & how it relates to IT is a mind set that must be
adopted by senior management and IT staff
IT
It will be cool to play
with the new android
V100 system and put
eLearning on an LMS
smart device and have
OPENBadges to track
skills no matter what
school they went to.
MGR
We need to develop an
education system that
provides every
citizen with educational
opportunities appropriate
to their
individual needs,
aspirations and abilities.
25
There are several Strategic planning processes and techniques
including innovation and strategic competitive advantage in ICT
Forbes study shows 22% of top 500 billion dollar companies used ICT
as competitive advantage, Governments must also treat ICT as an asset
to be competitive with retaining Technology and knowledge workers.
* See MindTools.com for strategy tools,
Porters is just one of many.
26
One of the most critical barriers to achievement of strategic
alignment is communication between business and IT divisions
Use Six Hats and Platinum Rule to help work together by
accepting that the other thinks differently:
“Do unto others as they want done unto them.”
27
A common language and awareness program helps to define clearly
scope, objectives and benefits of ICT investment programs
• Business
and IT
Identify
Vocabulary
Awareness
Program
• Online or
Onsite
• Quiz or
observation
Validate usage
28
Session 3 Audience discussion based upon scenarios and ISACA case
study on Governance of IT: Implementation of COBIT in Scotiabank
29
Session 4
Benefits Realization
30
Session 4 will be discussing Benefits Realization with a focus on
creation of value among the entire value chain
IT investment management processes
Processes and practices for planning, development, transition, delivery and
support of solutions and services
Procedures to manage and report the status of IT investments
Business case development and evaluation techniques
Audience discussion based upon scenario-based and ISACA case studies
31
There are 10 key IT investment management processes within the Val
IT that provide a good foundation for realizing benefit of ICT
32
Val IT and COBIT have Processes and practices for planning,
development, transition, delivery and support the USER
33
Procedures to manage and report the status of IT investments are
defined in many standards (COBIT/ITIL) and project management
Management
is a PEOPLE
activity, not
just
technology
input.
Project
management
Status
Tracking of
IT
Investment
Processes and
controls from
ITIL/COBIT etc
https://itdashboard.gov/investment?buscid=622
Dashboards
(trends,
thresholds)
34
Business case development and evaluation techniques using Val
IT or innovation business concept validation
35
Session 4 Audience discussion based upon scenarios and ISACA case
study on Governance of IT: Val IT for a medium-sized police service
36
“A key element of IT Governance is
the alignment of business and IT,
leading to the achievement of business value”
37
Thank you – Gracias – ‫شوكان‬
38

Download Report