Mitigating information and technology risk and advancing digital transformation are among the top priorities for enterprises. Providing business and technology leaders with new tools to support these efforts, COBIT Focus Area: Information and Technology Risk and COBIT Focus Area: DevOps, offer guidance based on COBIT 2019 to optimize governance and management practices for enterprise risk functions and for enterprises implementing DevOps.
Recommended ITech News: ShiftLeft Educate Delivers Contextual and Effective Security Training Designed for Developer Workflows
New #COBIT resources help organizations navigate I&T risk and #DevOps
COBIT Focus Area: Information and Technology Risk demonstrates how COBIT 2019 can be tailored as an information and technology (I&T) framework and system, examining COBIT concepts from an I&T risk perspective and showing how COBIT can be used to design, implement, govern and manage I&T risk capabilities in the enterprise. The publication outlines the benefits that boards and executive management, operational risk managers, risk function and corporate risk managers, information security practitioners, internal auditors, CFOs and other stakeholders can realize from following guidance related to this focus area, including:
- A better understanding of risk impact on the enterprise
- Knowledge of how to capitalize on investments related to I&T risk management practices
- A complete risk profile, identifying the full enterprise risk exposure and enabling better utilization of enterprise resources
- End-to-end guidance on how to manage risk, including an extensive set of measures
Recommended ITech News: AppDirect Enables Sektor to Scale IT Distribution Across Asia-Pacific Region
“Information and technology risk is ever present in an enterprise and is closely intertwined with business risk,” says Esanju Maseka, IT risk assurance specialist and member of ISACA’s Emerging Trends Working Group. “Risk governance and management approaches need to factor in the entire spectrum of I&T-related risk, and having a relevant, customized governance framework and system with this in mind can offer an advantage in managing this risk and reduce business impact.”
COBIT Focus Area: DevOps Using COBIT 2019 provides tailored guidance specific to the governance and management system components relevant to DevOps. The global digital transformation drive has created a demand for effective and efficient development and delivery of software products, services and solutions. This publication outlines the concepts and guidance that DevOps teams can adopt and practitioners in risk and assurance can consider to help ensure the benefits of DevOps are realized while potential risk is mitigated. DevOps Focus Area benefits include:
- Establishing alignment of DevOps with enterprise goals and strategic objectives
- Integrating DevOps with the enterprise architecture
- Understanding of governance and management systems applicable to DevOps
- Providing a consistent governance and management framework and system related to DevOps
Recommended ITech News: Google Cloud Region Goes Live in Delhi NCR in India
Both focus area publications offer a detailed overview and description of COBIT roles and organizational structures, COBIT terminology and key concepts including the components of a governance system and COBIT governance and management objectives as they pertain to I&T risk and DevOps. COBIT Focus Area: Information and Technology Risk also includes examples of I&T risk scenarios, a template for risk register entry, IT risk reporting examples and sample risk maps. COBIT Focus Area: DevOps includes a goals cascade mappings table.
“With the introduction of these additional focus areas, business leaders have new enhanced tools for building and maintaining a governance system aligned with standards, frameworks and regulations that meets their needs in addressing I&T risk and implementing DevOps,” says Nader Qaimari, ISACA chief product officer. “By continuing to evolve our COBIT resources, ISACA is committed to delivering to our global community the best practices and governance solutions to further drive business success.”
Recommended ITech News: Harmonic Accelerates The UHD HDR Live Delivery Revolution With Public Cloud Support For Dolby Vision
