Developing an effective governance operating model


Assignment:

In this final week of your internship, your rotation assignment takes you back to the Chief of Staff's Office where you started out seven weeks ago.

Among other things, the Chief of Staff's organization is responsible for organizing meetings and providing support to the various internal governance boards and executive committees that comprise the internal governance infrastructure. Last week, you had a brief introduction to the work of one of these boards -- the IT Governance board -- when you helped the Chief Financial Officer and CFO staff put together a briefing to inform the board's members about a technology problem.

The work of the company's governance boards and committees is extremely important since these groups plan, design, negotiate, implement and provide oversight for the processes, policies, procedures, and other mechanisms used to guide, monitor, control, and assess the operations of the company. Each board is comprised of executives who each represent their functional areas or a group of internal stakeholders. Usually, there is a chair position that rotates among the members. If you would like to learn more about corporate governance in general, Deloitte's report Developing an effective governance operating model: A guide for financial services boards and management teams provides a brief but comprehensive overview (see https://www2.deloitte.com/content/dam/Deloitte/global/Documents/Financial-Services/dttl-fsi-US-FSI-Developinganeffectivegovernance-031913.pdf). You may also find this article What is a management system?, from the International Standards Organization, helpful as it explains what a management system is and why standards are needed to define repeatable steps that organizations can use to ensure the effectiveness and efficiency of their management activities.

The IT Governance board operates under authority delegated by the corporate governance board. This board's charter gives it responsibility for governance, risk management, and compliance management (GRC) for corporate IT processes, policies, and technologies. Members of the board each serve for a three-year term. Of the 24 members, 8 have just begun their terms.

The IT Governance board focuses upon ensuring that the company achieves maximum value for each dollar spent on information technology capabilities. The board's members must exercise due diligence to ensure that the company complies with laws and regulations that apply to the use of Information Technology (including privacy and security requirements). The board is also charged with ensuring that the company complies with voluntary standards such as PCI-DSS since these have an impact on the company's business operations (noncompliance could result in the company not being permitted to receive payments via credit cards).

The next meeting of the IT Governance board will include a set of orientation briefings for the new members. Your assignment, as a support staffer, is to help prepare for this orientation meeting by developing a short (5-minute) briefing on one of the following IT management / IT security management frameworks, standards, and models.

1. COBIT

2. ITIL

3. ISO 27001 (ISMS Program Management)

4. NIST Cybersecurity Framework

5. NIST Security and Privacy Controls (NIST SP 800-53)

6. NIST Risk Management Framework (NIST SP 800-37)

See the weekly readings for information about your selected topic. Then, find additional sources on your own. (Each of these standards and frameworks is discussed in freely available materials on the Internet or in articles available through the university's only library. There is no reason for you to pay for copies of any materials for this assignment.)

After you have researched your chosen framework, standard, or model, develop a written script for your briefing which you will deliver verbatim (as written). You should also prepare a one-page handout for the board members to follow as you present your speech.

Post your script and handout in this thread for critique and discussion with your peers. You may use an attachment for your handout but the script should be pasted directly into the body of your posting.

Maintenance Tasks - Operational and Maintenance (O&M) costs make up a large portion of the total cost of ownership (TCO), regardless of system "size". It is said that O&M costs make up the lion's share of cost throughout the system's life cycle, and ongoing expenses can determine the economic lifespan of a system. Maintenance tasks can be broken down into four (4) categories:

1. Corrective Maintenance

2. Adaptive Maintenance

3. Perfective Maintenance

4. Preventive Maintenance

The process of "racking & stacking" these maintenance tasks is no small feat; especially for a large system. This is why most firms implement a Change Control Board (CCB; or, you may have heard it referred to as a Configuration Control Board-they are synonymous in nature). Even though the lead systems analyst is typically on this board, they do not decide the priority of these maintenance tasks-however, it is imperative that they understand the nature of each maintenance category.

• For this discussion....

1. Properly describe each of the maintenance categories

2. Give a specific example of each maintenance category, either using the class case study or a system that you are familiar with, and

3. Assign each example a specific priority (level 3 being the lowest; level 1 being the highest), based on your knowledge of the system-explain in detail "why" you would give it that specific priority.

Solution Preview :

Prepared by a verified Expert
Risk Management: Developing an effective governance operating model
Reference No:- TGS03154867

Now Priced at $30 (50% Discount)

Recommended (95%)

Rated (4.7/5)