Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

AI7.3 - Implementation Plan

This topic is intended to enable collaboration and sharing of information to facilitate a better understanding and approach to implementing this COBIT control objective based on the risk, value and guidance provided by its corresponding control practices.

COBIT Control Objective AI7.3 - Implementation Plan is contained within Process Popup Install and Accredit Solutions and Changes.

Learn more about COBIT and related publications.

Click “Join This Community” to be able to actively participate in discussions and contribute content. You must be an ISACA member to join this topic. Join ISACA now.

 
This Topic Has:
19 Members
0 Online
4909 Visits

 Recent Discussions

Community Leader

Knowledge Center Manager

Knowledge Center Manager

Title: Become a Topic Leader!

Badge: Energizer


Implementation Plan

Establish an implementation and fallback/backout plan. Obtain approval from relevant parties.

View value and Risk Drivers  help

Hide value and Risk Drivers help


Value Drivers

  • An agreed-upon and standardised approach for implementing changes in an efficient and effective manner
  • Formally defined expectations and performance measurement
  • Effective recovery in the event of implementation failure
  Risk Drivers
  • Improper resource allocation to ensure effective implementation of changes
  • Security breaches

View Control Practices  help

Hide Control Practices  help

  1. Define a policy for numbering and frequency of releases.
  2. Confirm that all implementation plans are approved by stakeholders, including technical and business.
  3. Create an implementation plan reflecting the outcomes of a formal review of technical and business risks. Include with the implementation plan:
    • The broad implementation strategy
    • The sequence of implementation steps
    • Resource requirements
    • Interdependencies
    • Criteria for management agreement to the production implementation
    • Installation verification requirements
    • Transition strategy for production support

    Align the implementation plan with the business change management plan.
  4. Obtain commitment from third parties to their involvement in each step of the implementation.
  5. Identify and document the fallback and recovery process.

Discussions: 0 total

Must be a Topic member to contribute

No Results Found

Documents & Publications: 42 total

Must be a Topic member to contribute
View All »
Books
Posted by ISACA 682 days ago
Books
Posted by ISACA 1011 days ago
ICQs and Audit Programs
Posted by ISACA 1461 days ago
Downloads
Posted by ISACA 1522 days ago

Events & Online Learning: 4 total

13 Aug 2018
ISACA International Event
Nashville, Tennessee, US
2018 GRC Conference - 13-15 August , Nashville, TN. Explore the future of Governance Risk and Control through expert-led workshops and sessions developed by the IIA and ISACA. Register early for our GRC learning tracks.

Journal Articles: 155 total

Volume 3, 2107
by Jayakumar Sundaram, CISA, ISO 27001 LA
The SoA is a continuously updated and controlled document that provides an overview of information security implementation.
Volume 4, 2018
by Robert E. Davis, DBA, CISA, CICA
How organizational representatives communicate about technological innovation is often a significant factor in the success or failure of innovation management.
Volume 4, 2018
by Sridhar Govardhan, CISA, CISM, SABSA
The journey of data from cost burden to business enabler has generated a new buzzphrase referring to data as “the new oil.”
Volume 4, 2018
by Sunil Bakshi, CISA, CRISC, CISM, CGEIT, ABCI, AMIIB, BS 25999 LI, CEH, CISSP, ISO 27001 LA, MCA, PMP
Our organization is considering multiple projects for developing and implementing IT-based solutions. I have checked on various websites, but could not get a detailed list of generic risk scenarios for IT-related projects.
Volume 4, 2018
by Mehmet Zeki Önal, CISA, CRISC, CGEIT, CCSA, CRMA
From the risk management perspective, the need for data governance exists not only in the insurance sector, but also in all sectors affected by IFRS regulations.
Volume 4, 2018
by Van Ha Le and Bianca Zamora
Although technological advancements have improved efficiency, they have unintentionally increased the risk of confidential and other sensitive information becoming compromised.

Wikis: 2 total

Blog Posts: 28 total

5 Jun 2018
Recently, I witnessed an interesting webcast by Scopism, an UK-based consulting and training company. They announced the publication of the SIAM(c) Foundation Body of Knowledge, available for free through their website www.scopism.com. Service Integration...
Posted By : Peter873 | 2 comments
My personal thoughts after listening to C-level executives at the CxO Roundtable Series sponsored by Intel, IBM, HyTrust & ReedSmith. For an invite, please reach out to me. Data Protection under the GDPR For past few months, I’ve been helping to org...
Posted By : Thomas152 | 1 comments
Mi primer acercamiento real al Framework (o Marco de Referencia) de ISACA COBIT 5, fue a mediados del año pasado (2016) cuando decidí tomar un curso de examinación para la certificación de COBIT® 5 Foundation (Fundamentos de COBIT 5). La jerga técnica me ...
Posted By : MNUNEZA | 0 comments
Information Security and Privacy is hot issue at present time. Number of security breaches is rapidly increasing.  In case of late detection, costs of breaches are skyrocketing. In the same time Artificial Intelligence (AI), Machine Learning (ML) are fast...
Posted By : Dragan Pleskonjic | 0 comments
My previous blog under name "Dragan on Security" was at location: http://conwex.info/blog/. It was active from August 28, 2005 to October 3, 2012. By beginning of 2017 it is moved to new location http://www.dragan-pleskonjic.com/blog/. With possibility to...
Posted By : Dragan Pleskonjic | 0 comments
The real success story is adoption of technology, and adoption is possible if the team which is implementing the Tech solution have vision and purpose of that solution to be adoptable by larger users / stake holders. We always do not get green field proje...
Posted By : Gopal207 | 0 comments