Governance and Management in COBIT 5

Source: COBIT 5, figure 8

Key Roles, Activities and Relationships

Source: COBIT 5, figure 9

Roles, Activities and Relationships

Owners andStakeholders

GoverningBody Management

Operationsand

Execution

Instruct andAlign

Report

Set Direction

Monitor

Delegate

Accountable

BenefitsRealisation

GovernanceEnablers

Roles, Activities and Relationships

GovernanceScope

ResourceOptimisation

RiskOptimisation

Governance Objective: Value Creation

COBIT 5 Governance and Management Key Areas

Source: COBIT 5, figure 15

Governance

Management

Evaluate

Direct Monitor

Plan(APO)

Build(BAI)

Run(DSS)

Monitor(MEA)

Management Feedback

Business Needs

© 2012 ISACA.

All rights reserved.

Proc

esse

s fo

r Man

agem

ent o

f Ent

erpr

ise

IT

Eval

uate

, Dire

ct a

nd M

onito

r

Proc

esse

s fo

r Gov

erna

nce

of E

nter

pris

e IT

Alig

n, P

lan

and

Orga

nise

Mon

itor,

Eval

uate

and

Asse

ss

Build

, Acq

uire

and

Impl

emen

t

Deliv

er, S

ervi

ce a

nd S

uppo

rt

EDM

01 E

nsur

eGo

vern

ance

Fram

ewor

k Se

tting

and

Mai

nten

ance

APO0

1 M

anag

eth

e IT

Man

agem

ent

Fram

ewor

k

APO0

8 M

anag

eRe

latio

nshi

ps

APO0

2 M

anag

eSt

rate

gy

APO0

9 M

anag

eSe

rvic

eAg

reem

ents

APO0

3 M

anag

eEn

terp

rise

Arch

itect

ure

APO1

0 M

anag

eSu

pplie

rs

APO0

4 M

anag

eIn

nova

tion

APO1

1 M

anag

eQu

ality

APO0

5 M

anag

ePo

rtfol

io

APO1

2 M

anag

eRi

sk

APO0

6 M

anag

eBu

dget

and

Cos

tsAP

O07

Man

age

Hum

an R

esou

rces

MEA

01 M

onito

r,Ev

alua

te a

nd A

sses

sPe

rform

ance

and

Conf

orm

ance

MEA

02 M

onito

r,Ev

alua

te a

nd A

sses

sth

e Sy

stem

of I

nter

nal

Cont

rol

MEA

03 M

onito

r,Ev

alua

te a

nd A

sses

sCo

mpl

ianc

e W

ithEx

tern

al R

equi

rem

ents

APO1

3 M

anag

eSe

curit

y

DSS0

1 M

anag

eOp

erat

ions

DSS0

2 M

anag

eSe

rvic

e Re

ques

tsan

d In

cide

nts

DSS0

3 M

anag

ePr

oble

ms

DSS0

4 M

anag

eCo

ntin

uity

DSS0

5 M

anag

eSe

curit

ySe

rvic

es

DSS0

6 M

anag

eBu

sine

ssPr

oces

s Co

ntro

ls

BAI0

1 M

anag

ePr

ogra

mm

es a

ndPr

ojec

ts

BAI0

8 M

anag

eKn

owle

dge

BAI0

2 M

anag

eRe

quire

men

tsDe

finiti

on

BAI0

9 M

anag

eAs

sets

BAI0

3 M

anag

eSo

lutio

nsId

entif

icat

ion

and

Build

BAI1

0 M

anag

eCo

nfig

urat

ion

BAI0

4 M

anag

eAv

aila

bilit

y an

d Ca

paci

ty

BAI0

5 M

anag

eOr

gani

satio

nal

Chan

geEn

able

men

t

BAI0

6 M

anag

eCh

ange

s

BAI0

7 M

anag

eCh

ange

Acce

ptan

ce a

ndTr

ansi

tioni

ng

EDM

02 E

nsur

eBe

nefit

s De

liver

yED

M03

Ens

ure

Risk

Opt

imis

atio

n

EDM

04 E

nsur

eRe

sour

ceOp

timis

atio

n

EDM

05 E

nsur

eSt

akeh

olde

rTr

ansp

aren

cy

CO

BIT

5 Pr

oces

s Re

fere

nce

Mod

el

Sour

ce:

COBI

T 5,

figu

re 1

6

© 2012 ISACA.

All rights reserved.

COBIT 5 Enterprise Enablers

Source: COBIT 5, figure 12

2. Processes3. Organisational

Structures

1. Principles, Policies and Frameworks

6. Services,Infrastructure

and Applications

7. People,Skills and

Competencies

Resources

5. Information

4. Culture, Ethicsand Behaviour

COBIT 5 Enablers: Generic

Source: COBIT 5, figure 13

Enab

ler D

imen

sion Stakeholders Goals Life Cycle Good Practices

• Internal Stakeholders• External Stakeholders

• Practices• Work Products (Inputs/Outputs)

• Intrinsic Quality• Contextual Quality (Relevance, Effectiveness)• Accessibility and Security

• Plan• Design• Build/Acquire/ Create/Implement• Use/Operate• Evaluate/Monitor• Update/Dispose

Enab

ler P

erfo

rman

ceM

anag

emen

t Are StakeholdersNeeds Addressed?

Are EnablerGoals Achieved?

Metrics for Achievement of Goals(Lag Indicators)

Metrics for Application of Practice(Lead Indicators)

Is Life CycleManaged?

Are Good PracticesApplied?

© 2012 ISACA.

All rights reserved.

COBIT 5 Product Family

Source: COBIT 5, figure 11

COBIT® 5

COBIT 5 Online Collaborative Environment

COBIT 5 Enabler Guides

COBIT 5 Professional Guides

COBIT® 5 Implementation

COBIT® 5:Enabling Information

COBIT® 5:Enabling Processes

Other EnablerGuides

COBIT® 5for Assurance

COBIT® 5for Information

Security

COBIT® 5for Risk

Other ProfessionalGuides

COBIT 5 Principles

Source: COBIT 5, figure 2

1. MeetingStakeholder

Needs

5. SeparatingGovernance

FromManagement

4. Enabling aHolistic

Approach

3. Applying aSingle

IntegratedFramework

2. Covering theEnterpriseEnd-to-end

COBIT 5Principles

3701 Algonquin Road, Suite 1010 • Rolling Meadows, IL 60008 USA

Phone: +1.847.253.1545 • Fax: +1.847.253.1443 • Email: info@isaca.org

Web site: www.isaca.org

© 2 0 1 2 I S A C A . A l l r I g h t S r e S e r v e d .

COBIT 5 Goals Cascade Overview

Source: COBIT 5, figure 4

BenefitsRealisation

Stakeholder Drivers(Environment, Technology Evolution, …)

Enterprise Goals

IT-related Goals

Enabler Goals

Influence

Cascade to

Cascade to

Appendix B

Appendix C

Figure 5

Figure 6

ResourceOptimisation

RiskOptimisation

Stakeholder Needs

Cascade to Appendix D

© 2012 ISACA.

All Rights reserved.