Professional Documents
Culture Documents
Next, the companys annual plan of action is discussed, with a separate plan for each operational process, and a focus is brought to its continuous improvement. There is a priority analysis of the operational processes, detailed control objectives and their impact on the business activities. As resources are always scarce, the detailed control objectives that are improved in that year are carefully selected. The main priority criterion is the impact of the detailed control objective in an operational process that supports a mission-critical business process. The detailed COBIT control objectives that have not been addressed in the set of operational processes may be at a zero level of maturity or may be addressed elsewhere, outside the IT department. This approach of changing the focus from COBIT to the operational processes makes the implementation of COBIT more concrete and more objective, simplifying the definition of priority improvement actions.
In the following months, the company plans to apply a method for defining the cost of each operational process, so as to achieve value delivery and have a better view toward improving and reducing costs. Joao Souza Neto, Ph.D. is the vice president-elect of the new ISACA chapter being formed in Braslia, Brazil. He has more than six years of experience in IT governance, applying COBIT within Brazil Post. He is also responsible for the IT governance area in the Universidade Catolica de Brasilia. Ian Lawrence Webster is a senior consultant for performance technologies responsible for governance, with emphasis in value delivery and compliance assurance. He is the president-elect of the new ISACA chapter being formed in Brasilia, Brazil. He has more than five years of experience in IT governance, applying COBIT within government institutions.
page 3
In addition, sessions at EuroCACS will be held on: COBIT-based IT Governance vs. ITIL V3 Service Management Using COSO ERM and COBIT to Enhance Information Governance Reconciling Corporate IT Security Policies With COBIT Delivering Governance Using COBIT and ISO/IEC 38500 Using COBIT and ITIL to Benchmark the Organizations IT Maturity EuroCACS 2009 will be held 15-18 March 2009 in Frankfurt, Germany, at the InterContinental Frankfurt. For more information on this conference and to register, please visit www.isaca.org/eurocacs. COBIT User Convention The COBIT User Convention is designed to facilitate discussion and debate among experienced COBIT users and to provide discussion for applications, solutions and approaches. Each two-day convention features case studies and facilitated discussion groups that address how COBIT is used from governance and
assurance perspectives. Conventions are offered through ISACA chapters to attract COBIT users geographically. Like all user conventions, these are designed for experienced COBIT users and are most successful when held in areas with large numbers of COBIT users, allowing for meaningful discussions and debate. To learn more about these events, please visit www.isaca.org/cobituserconvention. COBIT Campus Visit COBIT Campus, www.isaca.org/cobitcampus, to review and learn more about online COBIT and related courses and exams. COBIT Training Week ISACA is proud to offer a new and unique Training Week course. The COBIT Training Week integrates IT Governance Institute (ITGI) research and ISACAs current COBIT educational courses into a single, comprehensive COBIT training program. Please visit www.isaca.org/trainingweek for more information. The 2009 Training Week dates are noted on page 6 of this publication.