Overview
Risk management provides the framework that contains all activities needed to assess and prioritize and identify the type of risk which may have an impact on the organizations objectives from different perspectives like stratergic,project,program and operational.
Target group
M_o_R is suited for those who are responsible for identifying, analyzing and managing risk at strategic, program, project and operational levels such as Business Change Managers, Program and Project Managers, Risk Managers, Operational staff and managers, and in fact: everybody in the organization.
Learning Outcomes
Know the facts, terms, concepts and relationships between the four elements of the M_o_R® framework (principles, approach, processes and embedding and reviewing) Understand how the M_o_R® principles, approach, and processes are used .Be able to identify the M_o_R® framework documents and understand their uses and differences.
Duration: 2days Workshop + Post Workshop Support
Deliverables
- 2 days Instructor-Led Classroom training from Certified Trainer of Senior Profile.
- Course materials (soft copy) and practice exercises for exam.
- Course Completion certificate
COBIT
COBIT® 5 Certifications
COBIT 5 is the latest edition of ISACA’s globally accepted framework and consists of five certification levels:
a.COBIT 5 Foundations
Obtaining the Foundation level demonstrates basic knowledge and understanding of the COBIT 5 guidance, principles and models. Candidates will be able to:
- Gain a holistic understanding of the governance and management of an organization’s internal information systems and technology.
- Provide top management with an overview of current IT enterprise findings, identifying key problem areas of improvement.
- Recommend improvements, by implementation aspects of COBIT 5.
b.COBIT 5 Implementation
Practical understanding on how to implement, apply and integrate COBIT 5 within an organization, reducing business risk and improving business performance. Candidates will be able to:
- Effectively analyse business IT operations.
- Source the root of problem areas and implement change through scope and plan.
- Assess and resolve current process capabilities.
- Implement the latest good practices, in order to avoid future risk and process capability delay.
c.COBIT 5 Assessors
The Assessors level provides methods, guides and models, supported by several case studies that will provide knowledge on how to implement and process assessment. Learn how to analyse results to provide a clear outcome of process capabilities. Direct process improvements in accordance to current business goals and benchmarks, whilst measuring achievements. Candidates will be able to:
- Approach, plan and implement improvements using good practices.
- Implement one framework to support all IT management capabilities.
- Use COBIT 5 metrics and scorecards to create a performance measurement framework for an organization.
- Perform and process capability assessment using COBIT 5 guides, models and methods.
- Brief team members with clear plans and structure.
- Identify roles and responsibilities in the process capability assessment process.
d.COBIT 5 Assessor for Security
This level is based on a clear understanding of process cybersecurity capabilities of an IT system. It provides knowledge on how to perform a process assessment and how to analyse the results, to provide a clear determination of process cybersecurity capability.
e.COBIT 5 Implementing the NIST Standards using COBIT 5 (INCS)
Provides guidance on how to implement the National Institute of Standards and Technology (NIST) and Cybersecurity Framework (CSF) through a seven-step process, aligned with COBIT 5 principles. Candidates will be able to:
- Understand in-depth the relationship between business information, IT systems and cybersecurity risk.
- Raise awareness of business impacts, as a result of cybersecurity factors.
- Reduce and manage the operational environment, by detecting and ultimately managing the possibility of a cybersecurity attack.
- Prioritize mission objectives in accordance to cyber threats.
- Detect and implement security controls, to bridge the gap between cybersecurity requirements and operational security risk.
Course objectives
After completing the COBIT 5 Foundation course, delegates will have a thorough understanding of:
- How IT management issues are affecting organizations
- The need for an effective framework to govern and manage enterprise IT
- How COBIT meets the requirement for an IT governance framework
- How COBIT is used with other standards and best practices
- The functions that COBIT provides and the benefits of using COBIT
- he COBIT Framework and all the components of COBIT
- How to apply COBIT in a practical situation
Target audience
The target group of COBIT 5 Foundation course includes, but is not restricted to:
- IT auditors
- IT managers
- IT quality professionals
- IT leadership
- IT developers
- Process practitioners and managers in IT service firms
- BusinessManagement and
- CEO’s
Duration: 2days Workshop + Post Workshop Support
Deliverables
- 2 days Instructor-Led Classroom training from Certified Trainer of Senior Profile.
- Course materials (soft copy) and practice exercises for exam.
- Course Completion certificate
Course Content: | ||||
Session 1: | ||||
Overview | ||||
Why develop COBIT 5 | ||||
The Evolution of COBIT 5 | ||||
COBIT 5 Objectives | ||||
COBIT 5 Scope | ||||
Information | ||||
Enterprise Benefits | ||||
Stakeholder Value | ||||
The Board & Executive | ||||
Session 2: | ||||
The 5 Key Principles of COBIT 5 | ||||
1. Meeting stakeholder needs | ||||
COBIT 5 Goals Cascade | ||||
2.Covering the Enterprise End-to-End | ||||
Governance Approach | ||||
Governance Enablers | ||||
Governance Scope | ||||
Roles, Activities & Relationships | ||||
3.Applying a Single Integrated Framework | ||||
COBIT 5 and Legacy ISACA Frameworks | ||||
COBIT 5 Framework Integrator | ||||
COBIT 5 Framework For the Governance | ||||
Management of Enterprise IT | ||||
4.Enabling a Holistic Approach | ||||
COBIT 5 Enterprise Enablers | ||||
Systematic Governance & Management | ||||
Enabler Dimensions | ||||
Enabler Performance | ||||
Management | ||||
5. Separating Governance From Management | ||||
Interaction between Governance & Management | ||||
Framework Integrator | ||||
Session 3: | ||||
Implementation Guidance | ||||
Creating the Appropriate Environment | ||||
Pain Points & Trigger Events
Challenges to Success |
||||
The Lifecycle Approach | ||||
Enabling Change | ||||
Making a Business Case | ||||
Session 4: | ||||
Process Capability Assessment Model | ||||
COBIT 5 PAM & ISO/IEC15504 | ||||
Maturity and Capability Assessments | ||||
Session 5: | ||||
Mapping Enterprise Goals & Processes | ||||
Linking Enterprise & IT Goals | ||||
Linking IT Goals & Processes | ||||
Linking Stakeholder Needs to Enterprise Goals | ||||
Session 6: | ||||
COBIT 5 Enablers | ||||
Principles, Policies & Frameworks | ||||
COBIT 5 Reference Model | ||||
Organisational Structures | ||||
Responsibilities & Characteristics of Roles | ||||
Culture, Ethics & Behaviour | ||||
Information | ||||
Services, Infrastructure and Applications | ||||
People, Skills & Competencies | ||||
Session 7: | ||||
COBIT and Other Standards & Frameworks | ||||
COBIT 5 comparison with ISO/IEC38500 | ||||
Governance of IT ISACA Certifications | ||||
Comparison – ISO/IEC20000 | ||||
Comparison – ISO/IEC27000 | ||||
Comparison – ISO 31000 | ||||
Comparison – TOGAF | ||||
Comparison – CMMI | ||||
Session 8: | ||||
Writing Exams | ||||
Exam Requirements and Preparation | ||||
Mock exam |
Associated Certifications & Exam
ISACA offers professionals who have mastered the content in the COBIT 5 Foundation course an opportunity to demonstrate their knowledge by taking an exam and earning a foundation level certificate.
COBIT 5 Foundation Exam
ISACA offers professionals who have mastered the content in the COBIT 5 Foundation Course an opportunity to demonstrate their knowledge by taking an exam and earning a certificate of completion. These professionals understand the IT management issues organizations face today and know how to use COBIT to respond to these challenges. These professionals have used the elements of COBIT, in practice, and are prepared to recommended applications of COBIT for enterprise-wide projects.
The exam consists of 50 multiple-choice questions and requires a score of 50% or higher to pass.
Prerequisite | None |
Audience | IT auditors, IT managers, IT quality professionals, IT leadership, IT developers, process practitioners, managers in IT service providing firms |
Preparation Resources | COBIT 5 Foundation Course COBIT 5: A Business Framework for the Governance and Management of Enterprise IT |
Note: candidates are permitted to self-study for the COBIT 5 Foundation exam. ISACA does suggest that potential candidates first take the Foundation Course to help them successfully
COBIT 5 Implementation Exam
For professionals that understand how to apply the all the elements of COBIT 5 across the enterprise and have mastered the approach to implementing the “Governance of Enterprise Information Technology or (GEIT)” based on a continual improvement life cycle. These professionals have demonstrated the understanding of how COBIT 5 should be tailored to suit an enterprise’s specific needs.
Prerequisite | Successful completion of the COBIT 5 Foundation Exam Successful completion of the COBIT 5 Implementation Course |
Audience | IT auditors, IT managers, IT quality professionals, IT leadership, IT developers, process practitioners , Managers in IT service providing firms, business managers |
Preparation Resources | COBIT 5 Implementation Course COBIT 5: A Business Framework for the Governance and Management of Enterprise IT COBIT 5 Implementation Guide |
COBIT 5 Assessor Exam
For those professionals that have mastered the understanding of how to perform a formal Process Capability Assessment and how it can be used to:
- Enable business goals
- Prioritize improvement initiatives
- Identify opportunities for improving the governance and management of information and technology assets
These professionals ensure stronger, more reliable control over internal processes and provide stakeholders a clear line of sight into process capabilities, allowing IT leaders to redirect or liberate resources – from service delivery to designing and implementing technology-enabled, information-rich and transformed business process – to increase innovation and value for the enterprise.
Prerequisite | Successful completion of the COBIT 5 Foundation Exam Successful completion of the COBIT 5 Assessor Course |
Audience | Internal and External Auditors, IT Auditors and Consultants |
Preparation Resources | COBIT 5 Assessor Course COBIT 5: A Business Framework for the Governance and Management of Enterprise IT The Assessor Guide: using COBIT 5 The Process Assessment Model (PAM): using COBIT |
Implementing NIST Cybersecurity Framework Using COBIT 5 Exam
ISACA offers professionals who have mastered the content in the COBIT 5 Foundation Course an opportunity to demonstrate their knowledge by taking an exam and earning a certificate of completion. These professionals understand the goals and content of the Cybersecurity Framework and how implement the seven Cybersecurity Framework implementation steps using COBIT 5.
The exam consists of 75 multiple-choice questions and requires a score of 50% or higher to pass.
Audience | Individuals with a basic understanding of both COBIT 5 and security concepts, and who are involved in improving the cybersecurity program for their enterprises. |
Preparation Resources | COBIT 5 Foundation Course COBIT 5: A Business Framework for the Governance and Management of Enterprise IT Implementing NIST Cybersecurity Framework Using COBIT 5 (publication) |