Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

PO2.1 - Enterprise Information Architecture Model

This topic is intended to enable collaboration and sharing of information to facilitate a better understanding and approach to implementing this COBIT control objective based on the risk, value and guidance provided by its corresponding control practices.

COBIT Control Objective PO2.1 - Enterprise Information Architecture Model is contained within Process Popup Define the Information Architecture

Click “Join This Community” to be able to actively participate in discussions and contribute content. You must be an ISACA member to join this topic. Join ISACA now.

This Topic Has:
30 Members
0 Online
4401 Visits

Community Leader

Knowledge Center Manager

Knowledge Center Manager

Title: Become a Topic Leader!

Badge: Energizer

Enterprise Information Architecture Model

Establish and maintain an enterprise information model to enable applications development and decision-supporting activities, consistent with IT plans as described in PO1. The model should facilitate the optimal creation, use and sharing of information by the business in a way that maintains integrity and is flexible, functional, cost-effective, timely, secure and resilient to failure.

View value and Risk Drivers  help

Hide value and Risk Drivers help

Value Drivers

  • Improved decision making based on relevant, reliable and usable information
  • Improved IT agility and responsiveness to business requirements
  • Support for business functions through accurate, complete and valid data
  • Efficient data management and reduced redundancy and duplication
  • Improved data integrity
  • Meeting fiduciary requirements regarding compliance reporting, security and privacy of data
  Risk Drivers
  • Inadequate information for business functions
  • Inconsistency between information requirements and application developments
  • Data inconsistency between the organisation and systems
  • High effort required or inability to comply with fiduciary obligations (e.g., compliance reporting, security, privacy)
  • Inefficient planning of IT-enabled investment programmes due to lack of information
  • Accumulation of data that are not relevant, consistent or usable in an economical manner

View Control Practices  help

Hide Control Practices  help

  1. Establish and maintain the information architecture model in the context of the entire organisation, documented in an understandable manner for business and IT management.
  2. Develop the information architecture model consistent with the organisation’s strategy and the strategic and tactical IT plans.
  3. Check the information architecture model regularly for adequacy regarding flexibility, functionality, cost-effectiveness, security, failure resiliency, compliance and user satisfaction, and update the model accordingly.

Discussions: 2 total

Must be a Topic member to contribute
Does anyone have an example of their organization's Information Architecture Model that they would be willing to share?
Lynne | 1/13/2014 1:48:41 PM | COMMENTS(0)
Hi I'm in the process of developing and "selling" an information governance framework. With a committee, we've developed the framework and now are working on developing the business case. The framework requires the addition of a person. I'm at a Uni...
Janice | 2/26/2013 5:29:03 PM | COMMENTS(1)

Documents & Publications: 57 total

Must be a Topic member to contribute
View All »
Posted by FarmService 1413 days ago
Posted by ISACA 1424 days ago
Posted by FarmService 2499 days ago
Posted by ISACA 35 days ago
ISACA Guidelines
Posted by ISACA 49 days ago
Posted by ISACA 503 days ago

Events & Online Learning: 2 total

13 Aug 2018
ISACA International Event
Nashville, Tennessee, US
2018 GRC Conference - 13-15 August , Nashville, TN. Explore the future of Governance Risk and Control through expert-led workshops and sessions developed by the IIA and ISACA. Register early for our GRC learning tracks.

Journal Articles: 59 total

Volume 1, 2018
by Andrew Clark
With advances in computing power, the abundance of data storage and recent advances in algorithm design, machine learning is increasingly being utilized by corporations to...
Volume 5, 2017
by Filip Caron, Ph.D.
Blockchain technology, commonly expected to drive the next wave of digital infrastructure and process innovation, is rapidly developing into maturity.
Volume 4, 2017
by Rassoul Ghaznavi-Zadeh, CISM, COBIT Foundation, SABSA, TOGAF
Traditionally, security architecture consists of some preventive, detective and corrective controls that are implemented to protect the enterprise infrastructure and applications.
Volume 4, 2017
by Sri Mallur
Industrial control systems (ICSs) are changing by relying more on off-the-shelf information technology (IT), thereby exposing these systems to more IT risk.
Volume 3, 2017
The resolve to address IoT device security at various levels—hardware and software, government and enterprise, consumers and services—is widespread.
Volume 3, 2017
by Ed Gelbstein, Ph.D.
This column continues the exploration of this topic by focusing on the Data Management Body of Knowledge (DMBOK) and what it does not cover.

Wikis: 2 total

Blog Posts: 18 total

Have you experienced ransomware attack so far and, if yes, what did you do to resolve? I set up Twitter poll here: It lasts for seven days. Thank you for taking part in the poll.
Posted By : Dragan Pleskonjic | 2 comments
Information Security and Privacy is hot issue at present time. Number of security breaches is rapidly increasing.  In case of late detection, costs of breaches are skyrocketing. In the same time Artificial Intelligence (AI), Machine Learning (ML) are fast...
Posted By : Dragan Pleskonjic | 0 comments
My previous blog under name "Dragan on Security" was at location: It was active from August 28, 2005 to October 3, 2012. By beginning of 2017 it is moved to new location With possibility to...
Posted By : Dragan Pleskonjic | 0 comments
28 Sep 2017
Recently, I witnessed an interesting webcast by Scopism, an UK-based consulting and training company. They announced the publication of the SIAM(c) Foundation Body of Knowledge, available for free through their website Service Integration...
Posted By : Peter873 | 0 comments
The real success story is adoption of technology, and adoption is possible if the team which is implementing the Tech solution have vision and purpose of that solution to be adoptable by larger users / stake holders. We always do not get green field proje...
Posted By : Gopal207 | 0 comments
Few days ago the person behind the Hacking Team hack revealed how he did it in pastebin - (the original in Spanish) I was very keen to understand how good you need to be to hack back one of the most (in)famous hacki...
Posted By : TiagoRosado | 0 comments