Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

_COBIT2019Intro_and_Methodology > Module 3: Governance System and Components > Flashcards

Module 3: Governance System and Components Flashcards

1
Q

Which are the 3 Basic Concepts as they related to Governance and Management Objectives

A
  1. A governance or management objective always relates to one process and a series of related components of other types to help to achieve the objective
  2. A governance objective relates to a governance process, A management objective relates to a management process
  3. Governance processes are typically under the accountability of boards and executive management, management processes are the domain of senior and middle management
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Describe the COBIT2019 Core

A

COBIT2019 Core consists of 40 governance and management objectives, which are organized into five domains - 1 Governance domain and 4 Management domains. Each of the governance and management objectives relates to a process

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Name the 5 domains for Governance and Management Objectives

A 
Governance Objective:
1. EDM = Evaluate, Direct and Monitor
Management Objective:
2. APO = Align, Plan and Organize
3. BAI = Build, Acquire and Implement
4. DSS = Deliver, Service and Support
5. MEA = Monitor, Evaluate and Assess
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does the Governance and Management domain names represent

A

The names are verbs, that express the key purpose and areas of activity of the objective

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is addressed in EDM?

A

EDM - Governance Objective: The governing body evaluates strategic options, directs senior managment on the chosen strategic options and monitors achievement of the strategy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is addressed in APO?

A

APO - Management Objective: Addresses overall organizational strategy and supporting activities of IandT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is addressed in BAI?

A

BAI- Management Objective: Definition, acquisition and implementation of IandT solutions, and integration into business processes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is addressed in DSS?

A

DSS- Management Objective: Operational Delivery and Support of IandT services, including security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is addressed in MEA?

A

MEA- Management Objective: Performance Monitoring and conformance of IandT with internal performance targets, control objectives and external requirements.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the breakdown of the 40 objectives and their processes

A 
Governance Objective: 1 Domain - EDM - 5 governance objectives
Management Objectives: 4 Domains
APO: 14 management objectives
BAI: 11 management objectives
DSS: 6 management objectives
MEA: 4 management objectives
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is required to satisfy the Governance and Management Objectives

A

Each enterprise must establish, tailor and sustain a governance system build from components

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are Governance system Components?

A

Components are factors that individually and collectively contribute to the good of the operations of the enterprise’s governance system over IandT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Name the 7 Components of a Governance System

A
  1. Processes: Describe set of practices and activities to achieve objectives and produce outputs to achieve IandT goals
  2. Organizational Structures: Key decision making entities within the enterpise
  3. Information: All information used and produced within the enterpise - COBIT focuses on the information required for effective functioning of the governance system of the enterprise
  4. People, skills and competencies: Required for decisions, corrective actions and completion of activities
  5. Culture, ethics and behavior: Factors contributing the the success of the enterprise governance and management activities
  6. Principles, policies and frameworks: translation into practical activities and processes for guidance for day-to-day management
  7. Services, infrastructure and applications: All services, technology and infrastructure required to provide the enterprise with governance system for IandT
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are FOCUS areas?

A

FOCUS areas are specific areas of focus or importance for the enterprise. Focus area is a specific governance topic, domain or issue. Examples - Security, SME, Cloud Computing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What are DESIGN factors?

A

Design factors can guide the design of an enterprise’s governance system. These are parameters that assist in tailoring the governance system to align with enterprise specific needs.
Examples: Enterprise Strategy, Enterprise goals, Risk profile, threat landscape (PESTLE), Role of IT, IT sourcing model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Name the 11 Design Factors

A
  1. Enterprise Strategy
  2. Enterprise Goals
  3. Risk Profile
  4. IandT related Issues
  5. Threat Landscape
  6. Compliance Requirements
  7. Role of IT
  8. Sourcing Model of IT
  9. IT implementation methods
  10. IT Technology Adoption Strategy
  11. Enterprise Size
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Describe Design Factor: Enterprise Strategy

A

Enterprise strategy can be defined based on a combination of archetypes:

  1. Growth and acquisition - focus on growth
  2. Innovation and Differentiation - focus on different/innovative products/services
  3. Cost Leadership - focus on cost optimization
  4. Client Service and Stability - focus on client service and stability
18
Q

Describe Design Factor: Enterprise Goals

A

Enterprise strategy is realized by achievement of enterprise goals.
Enterprise goals are structured along the Balanced Scorecard (BSC) dimentions

19
Q

Name the 4 Enterprise Goals Dimensions on the BSC

A
  1. Financial
  2. Customer
  3. Internal
  4. Growth
20
Q

Describe Design Factor: Risk Profile

A

Risk profile identifies the IandT related risks to which the enterprise is currently exposed, Also indicates to which areas the enterprise is currently exposed, and exceeding the risk appetite.

21
Q

Name 5 Risk Profile Examples

A
  1. IT cost and Oversight
  2. Unauthorized Actions
  3. Hardware Incidents
  4. Noncompliance
  5. Data and information management
22
Q

Describe Design Factor: IandT related Issues

A

Method for an IandT risk assessment for the enterprise to consider to which they are exposed, face or risks that has materialized.

23
Q

Name 2 IandT related Issues Examples

A
  1. Significant IandT related incidents, e.g. outages, data loss
  2. Failure to meeting IandT related regulations and contractual requirements
24
Q

Describe Design Factor: Threat Landscape

A

Threat landscape under which the enterprise is operating - Normal and High (geopolitical, industry sector changes)

25
Q

Describe Design Factor: Compliance Requirements

A

Compliance requirements applicable to the enterprise. Levels of Low level of compliance requirements, Normal level of compliance requirements and High level of compliance requirements

26
Q

Describe Design Factor: Role of IT

A

What is the role of IT in the organisation:

  1. Support role - IT only supportive, not needed crucial in the running of business processes
  2. Factory role - immediate impact on the day-to-day running of business processes
  3. Turnaround role - IT seen as a driver of innovation and improvement of business processes, not critical dependency on the current running of processes
  4. Strategic role: IT is critical in running and innovation for the processes and services
27
Q

Describe Design Factor: Sourcing Model of IT

A

Sourcing model of IT adopted by the enterprise:

  1. Outsourcing
  2. Cloud
  3. Insourcing
  4. Hybrid
28
Q

Describe Design Factor: IT implementation methods

A

How does IT operate - Agile, DevOps, Traditional, Hybrid, Bimodal IT

29
Q

Describe Design Factor: IT Technology Adoption Strategy

A

First Mover - Early as possible / first movers
Follower - Adoption once mainstream
Slow Adopter - Later in adoption curve of new technologies

30
Q

Describe Design Factor: Enterprise Size

A

Large Enterprise - > 250 full time employees
Small and medium Enterprise 50 - 250 full time employees
Micro - 50 or less staff

31
Q

Describe the Goals Cascade

A

Stakeholder needs must be translated into an Enterprise’s actionable strategy.
Goals Cascade supports Enterprise Goals.
Goals Cascade supports Prioritization of management objectives based on Enterprise Goals
Goals Cascade support translation of enterprise goals into priorities for alignment goals
Stakeholder Drivers and Needs –> Enterprise Goals –> Alignment Goals –> Governance and Management Objectives.
Starting at Stakeholder Drivers and needs, cascades down into Governance and Management Objectives

32
Q

Name the 4 Financial Category Enterprise Goals (Business Goals) on the BSC

A
  1. Portfolio and Competitive Services
  2. Managed Business Risk
  3. Compliance with external laws and regulations
  4. Quality of Financial Information
33
Q

Name the 3 Customer Category Enterprise Goals on the BSC

A
  1. Customer oriented Service
  2. Business service continuity and available
  3. Quality of management information
34
Q

Name the 4 Internal Category Enterprise Goals on the BSC

A
  1. Optimization of internal business process functionality
  2. Optimization of business process costs
  3. Staff skills, motivation, and productivity
  4. Compliance with internal policies
35
Q

Name the 2 Growth Category Enterprise Goals on the BSC

A
  1. Managed digital transformation programs

2. Product and business innovation

36
Q

Name the 4 Dimensions on the BSC for Alignment Goals (IT Goals)

A
  1. Financial
  2. Customer
  3. Internal
  4. Learning and Growth
37
Q

Name 4 goals for Financial Dimension of Alignment Goals

A
  1. IT compliance and support for business compliance with external laws and regulations
  2. Managed information and technology related risk
  3. Realized benefit from information and technology enabled investment and services portfolio
  4. Quality of technology related financial information
38
Q

Name 2 goals for Customer Dimension of Alignment Goals

A
  1. Delivery of IandT services in line with business requirements
  2. Agility to turn business requirements into operational solutions
39
Q

Name 5 goals for Internal Dimension of Alignment Goals

A
  1. Security of Information. infrastructure, applications and privacy
  2. Enablement of business support and processes
  3. Delivery of programs on time and within budget and meeting quality requirements
  4. Quality of IT management information
  5. IT compliance with internal policies
40
Q

Name 2 goals for Learning and Growth Dimension of Alignment Goals

A
  1. Competent and motivated staff

2. Knowledge, expertise and initiatives for business innovation

_COBIT2019Intro_and_Methodology (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions