Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

PO4.12 - IT Staffing

This topic is intended to enable collaboration and sharing of information to facilitate a better understanding and approach to implementing this COBIT control objective based on the risk, value and guidance provided by its corresponding control practices.

COBIT Control Objective PO4.12 - IT Staffing is contained within Process Popup Define the IT Processes, Organisation and Relationships

Learn more about COBIT and related publications.

Click “Join This Community” to be able to actively participate in discussions and contribute content. You must be an ISACA member to join this topic. Join ISACA now.

 
This Topic Has:
3 Members
0 Online
4104 Visits

 Recent Discussions

Community Leader

Knowledge Center Manager

Knowledge Center Manager

Title: Become a Topic Leader!

Badge: Energizer


IT Staffing

Evaluate staffing requirements on a regular basis or upon major changes to the business, operational or IT environments to ensure that the IT function has sufficient resources to adequately and appropriately support the business goals and objectives.

View value and Risk Drivers  help

Hide value and Risk Drivers help


Value Drivers

  • Ability of IT staff to support business needs
  • Cost control
  • Appropriate size of the IT department
  • Appropriate skills in the IT department
  Risk Drivers
  • IT staff resources unable to meet business needs
  • Excessive IT internal and/or external staffing costs
  • Under- or overresourced IT department
  • Lack of appropriate skills in the IT department

View Control Practices  help

Hide Control Practices  help

  1. Ensure that the IT function is staffed and directed by experienced and qualified personnel, and all the necessary resources are co-ordinated.
  2. Regularly review the staffing requirements (i.e., number of resources, skills) of the IT function, giving consideration to the business/IT environment and strategy.
  3. Evaluate sourcing strategies, including outsourcing, co-sourcing or insourcing opportunities. In evaluating staffing requirements, ensure that management considers cost-effective internal sourcing activities, such as business/IT staff co-location, cross-functional training and job rotation.
  4. Ensure that senior business and IT management reviews the results of the staffing evaluations and sourcing strategies, and implements appropriate actions within a reasonable time frame.

Discussions: 0 total

Must be a Topic member to contribute

No Results Found

Documents & Publications: 46 total

Must be a Topic member to contribute
View All »
Downloads
Posted by FarmService 1409 days ago
Downloads
Posted by FarmService 2494 days ago
Books
Posted by ISACA 498 days ago
Books
Posted by ISACA 827 days ago
Books
Posted by ISACA 1110 days ago

Events & Online Learning: 4 total

13 Aug 2018
ISACA International Event
Nashville, Tennessee, US
2018 GRC Conference - 13-15 August , Nashville, TN. Explore the future of Governance Risk and Control through expert-led workshops and sessions developed by the IIA and ISACA. Register early for our GRC learning tracks.

Journal Articles: 91 total

Volume 6, 2017
by Thomas Johnson, CISA, CRISC, CISM, CISSP
A certification is a credential for an accomplishment that has been validated by a testing process and typically cannot be earned without verification of the appropriate level of experience or education.
Volume 6, 2017
by Sarah Orton, CISA
Get to know your network.
Volume 6, 2017
by Ability Takuva, CISA
In enterprise risk management, three lines of defense have been defined with separate responsibilities that enable effective risk management against any threat.
Volume 5, 2017
by Justine Bone
Get to know your network.
Volume 4, 2017
by Mathew Nicho, Ph.D., CEH, CIS, ITIL Foundation, RWSP, SAP, Shafaq Khan, Ph.D., CIS, PMBOK, PMP, SAP, and Ram Mohan, CRISC, CISM, CGEIT, ISO 27001, ITIL Foundation
A key issue often cited by information systems (IS) executives in the last three decades is aligning IT with business, which assists in realizing value from IT investments.
Volume 4, 2017
by Steven De Haes, Ph.D., Anant Joshi, Ph.D., Tim Huygh and Salvi Jansen
IT governance, also referred to as governance of enterprise IT (GEIT) or corporate governance of IT, is a subset of corporate governance that is concerned with enterprise IT assets.

Wikis: 2 total

Blog Posts: 72 total

I predict that on 1 July 2018, I will be calmly eating a barbecue sandwich, talking with friends and possibly, I will burn a copy of the RFC2246: TLS version 1.0 standard for entertainment value.  Those will less effective Vendor, Network, Systems, Applic...
Posted By : Don Turnblade | 0 comments
2 Feb 2018
We are happy to announce that  on Feb//2018  the ISACA awareness session  was held in Baghdad.This the first time to speak about ISACA Value in Iraq.Professional from government and private sector were excited to hear about ISACA value and they started to...
Posted By : Ali099 | 0 comments
There is need to for ISACA through our local; chapter to allow fees to be paid in installments or split invoices given the fact that in our country - one has to find currency first and then deposit into a VISA card account. Thus i can raise my exam and ma...
Posted By : Hamadzashe | 1 comments
Have you experienced ransomware attack so far and, if yes, what did you do to resolve? I set up Twitter poll here: https://twitter.com/DPleskonjic/status/953608717399941120 It lasts for seven days. Thank you for taking part in the poll.
Posted By : Dragan Pleskonjic | 1 comments
Bitcoin Trade a Bubble! Block Chain Technology Useful .ISACA Members whats your Take on Bitcoin Trade, Is its a bubble that wont last long.Block chain Technology is useful and its continuously growing to as form of secure record  management and secured us...
Posted By : MUGAMBI865 | 0 comments
Globally, many organizations are spending millions of dollars protecting their businesses and its enabling infrastructure, but are they really secure? We shall discuss answer to this question in a little while. We need to understand core basics before we ...
Posted By : SudireddyRamreddy | 2 comments