Find Resources and Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

Subscribe to this discussion

COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Join author Bob Frelinger as he responds to ISACA member questions beginning 23 January 2012. Add your questions by responding to this post!

You must be logged in and be a member of this group* to participate.
*After logging in click "Join this Community" to the right and then return to this page by clicking the back button. As a member of this topic you can now view this and other discussions from the topic homepage.

“Building Acceptance and Adoption of COBIT at Sun Microsystems” is the title of an article published in the ISACA Journal in 2005. Much has happened since then, including the acquisition of Sun Microsystems by Oracle Corp. And, in all that time, the light has kept shining on COBIT, and the COBIT/governance champions have continued to drive the acceptance and adoption of COBIT and the governance of enterprise IT (GEIT). Read the rest of the article

You must sign in to rate content.
(Unrated)

Comments

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

There is no "Rest of article"?
r0dsc0ttObserver at 1/19/2012 1:32:54 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Great observation! The link to the article will be available on 23 January. Please check back and join author Bob Frelinger to discuss Building Acceptance and Adoption of Governance Enterprise IT 
Tammie111Influential at 1/19/2012 1:55:30 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Hi everyone,

In the article, the gears in Figure 1-Sun's IT Management Cycle are a little out of place.  This link will take you to a pdf version of Sun's IT Management Cycle that may be a little easier to read.

http://www.isaca.org/Groups/Professional-English/3-cobit-use-it-effectively/GroupDocuments/IT_Management_Cycle.pdf

I hope you enjoy the article and find it useful.  Let me know if you have comments or questions!!

bob
bobfrelingerLively at 1/24/2012 4:17:15 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

One of the issues raised in the article that I find most fascinating is related to organizational structure.  Most organizations are pretty good at arriving at the vertical (who reports to whom) structure.  Fewer organizations actually spend time deliberately considering the cross-organizational, or lateral, structures that are needed, particularly in silo'ed organizations.

I would like to know from this group:

What lateral structures (i.e., committees, boards, councils, cross-org teams) have you seen created in organizations you've worked with? 

For those lateral structures, what caused them to be formed:
A.  A grass roots effort to bring people together
B.  Identification of the need for the group through some deliberate analysis?
C.  Other?
Please describe the structure.  Did it have an approved charter that clarified its purpose and the roles and responsibilities associated with it?

We have lots of people in this group.  I appreciate any thoughts you have on this, whether you have seen lateral structures put in place or not. 
bobfrelingerLively at 2/9/2012 6:59:00 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Hi there,

You are right on in saying that most organizations are pretty good at arriving at a vertical structure. The cornerstone of any suceesful security or IT governance initiative such as COBIT, PCI Compliance is cross-organizational model. I have been leading the PCI ( Payment Card Industry )initiative in my organization and realized that not many people in an organization of 1200 people understand that securty and governance is not the domain of IT , rather it has to be a shared committment and shared accountability. That being said how do you sensitize the organization to this tenet. I built an ISMS ( Information security management system ) organizational structure in 2011 which touches every corner of my company from top to bottom and horizontally. It will foster high security culture and (COBIT) IT governance. 
The COO of our company has accepted the model and it will be roled out in 2012. I will share more information on the model in my next buzz.
Stay tuned.
Puneet76Observer at 2/23/2012 8:06:46 AM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Thanks for your comment. You have hit on a key point. People will not
view security, or other key areas, as shared commitments with shared
accountabilities, unless our organizational structures reinforce that
point, and tell the organization that we are serious about it, with
chartered cross-organizational structures. As you have done with the
ISMS, we must be deliberate about it.

I once heard a reorganization described as turning an organization on
its side. The thought was that the move would break down organizational
silos. It will, but it will also create new silos unless we recognize
that every organization has...no needs...both horizontal structures and
lateral structures that have been deliberately constructed and supported
by management.

We're looking forward to your next buzz!!

bob

bobfrelingerLively at 2/23/2012 10:25:34 AM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Thanks for your comment. You have hit on a key point. People will not
view security, or other key areas, as shared commitments with shared
accountabilities, unless our organizational structures reinforce that
point, and tell the organization that we are serious about it, with
chartered cross-organizational structures. As you have done with the
ISMS, we must be deliberate about it.

I once heard a reorganization described as turning an organization on
its side. The thought was that the move would break down organizational
silos. It will, but it will also create new silos unless we recognize
that every organization has...no needs...both horizontal structures and
lateral structures that have been deliberately constructed and supported
by management.

We're looking forward to your next buzz!!

bob

bobfrelingerLively at 2/23/2012 10:25:34 AM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Hi there,

You are right on in saying that most organizations are pretty good at arriving at a vertical structure. The cornerstone of any suceesful security or IT governance initiative such as COBIT, PCI Compliance is cross-organizational model. I have been leading the PCI ( Payment Card Industry )initiative in my organization and realized that not many people in an organization of 1200 people understand that securty and governance is not the domain of IT , rather it has to be a shared committment and shared accountability. That being said how do you sensitize the organization to this tenet. I built an ISMS ( Information security management system ) organizational structure in 2011 which touches every corner of my company from top to bottom and horizontally. It will foster high security culture and (COBIT) IT governance. 
The COO of our company has accepted the model and it will be roled out in 2012. I will share more information on the model in my next buzz.
Stay tuned.
Puneet76Observer at 2/23/2012 8:06:46 AM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

One of the issues raised in the article that I find most fascinating is related to organizational structure.  Most organizations are pretty good at arriving at the vertical (who reports to whom) structure.  Fewer organizations actually spend time deliberately considering the cross-organizational, or lateral, structures that are needed, particularly in silo'ed organizations.

I would like to know from this group:

What lateral structures (i.e., committees, boards, councils, cross-org teams) have you seen created in organizations you've worked with? 

For those lateral structures, what caused them to be formed:
A.  A grass roots effort to bring people together
B.  Identification of the need for the group through some deliberate analysis?
C.  Other?
Please describe the structure.  Did it have an approved charter that clarified its purpose and the roles and responsibilities associated with it?

We have lots of people in this group.  I appreciate any thoughts you have on this, whether you have seen lateral structures put in place or not. 
bobfrelingerLively at 2/9/2012 6:59:00 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Hi everyone,

In the article, the gears in Figure 1-Sun's IT Management Cycle are a little out of place.  This link will take you to a pdf version of Sun's IT Management Cycle that may be a little easier to read.

http://www.isaca.org/Groups/Professional-English/3-cobit-use-it-effectively/GroupDocuments/IT_Management_Cycle.pdf

I hope you enjoy the article and find it useful.  Let me know if you have comments or questions!!

bob
bobfrelingerLively at 1/24/2012 4:17:15 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Great observation! The link to the article will be available on 23 January. Please check back and join author Bob Frelinger to discuss Building Acceptance and Adoption of Governance Enterprise IT 
Tammie111Influential at 1/19/2012 1:55:30 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

There is no "Rest of article"?
r0dsc0ttObserver at 1/19/2012 1:32:54 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

There is no "Rest of article"?
r0dsc0ttObserver at 1/19/2012 1:32:54 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Great observation! The link to the article will be available on 23 January. Please check back and join author Bob Frelinger to discuss Building Acceptance and Adoption of Governance Enterprise IT 
Tammie111Influential at 1/19/2012 1:55:30 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Hi everyone,

In the article, the gears in Figure 1-Sun's IT Management Cycle are a little out of place.  This link will take you to a pdf version of Sun's IT Management Cycle that may be a little easier to read.

http://www.isaca.org/Groups/Professional-English/3-cobit-use-it-effectively/GroupDocuments/IT_Management_Cycle.pdf

I hope you enjoy the article and find it useful.  Let me know if you have comments or questions!!

bob
bobfrelingerLively at 1/24/2012 4:17:15 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

One of the issues raised in the article that I find most fascinating is related to organizational structure.  Most organizations are pretty good at arriving at the vertical (who reports to whom) structure.  Fewer organizations actually spend time deliberately considering the cross-organizational, or lateral, structures that are needed, particularly in silo'ed organizations.

I would like to know from this group:

What lateral structures (i.e., committees, boards, councils, cross-org teams) have you seen created in organizations you've worked with? 

For those lateral structures, what caused them to be formed:
A.  A grass roots effort to bring people together
B.  Identification of the need for the group through some deliberate analysis?
C.  Other?
Please describe the structure.  Did it have an approved charter that clarified its purpose and the roles and responsibilities associated with it?

We have lots of people in this group.  I appreciate any thoughts you have on this, whether you have seen lateral structures put in place or not. 
bobfrelingerLively at 2/9/2012 6:59:00 PM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Hi there,

You are right on in saying that most organizations are pretty good at arriving at a vertical structure. The cornerstone of any suceesful security or IT governance initiative such as COBIT, PCI Compliance is cross-organizational model. I have been leading the PCI ( Payment Card Industry )initiative in my organization and realized that not many people in an organization of 1200 people understand that securty and governance is not the domain of IT , rather it has to be a shared committment and shared accountability. That being said how do you sensitize the organization to this tenet. I built an ISMS ( Information security management system ) organizational structure in 2011 which touches every corner of my company from top to bottom and horizontally. It will foster high security culture and (COBIT) IT governance. 
The COO of our company has accepted the model and it will be roled out in 2012. I will share more information on the model in my next buzz.
Stay tuned.
Puneet76Observer at 2/23/2012 8:06:46 AM Quote
You must sign in to rate content.
(Unrated)

RE: COBIT Focus - Building Acceptance and Adoption of Governance Enterprise IT

Thanks for your comment. You have hit on a key point. People will not
view security, or other key areas, as shared commitments with shared
accountabilities, unless our organizational structures reinforce that
point, and tell the organization that we are serious about it, with
chartered cross-organizational structures. As you have done with the
ISMS, we must be deliberate about it.

I once heard a reorganization described as turning an organization on
its side. The thought was that the move would break down organizational
silos. It will, but it will also create new silos unless we recognize
that every organization has...no needs...both horizontal structures and
lateral structures that have been deliberately constructed and supported
by management.

We're looking forward to your next buzz!!

bob

bobfrelingerLively at 2/23/2012 10:25:34 AM Quote
You must sign in to rate content.
(Unrated)

Leave a Comment

* required

You must login to leave a comment.