COBIT 2019 - Domain 2 | Align, Plan, and Organize (APO)
Summary
TLDRThe discussion focuses on the second domain of IT management, known as APO or Line Plan and Organize. It covers long-term IT planning aligned with business strategy, including 3 to 5-year initiatives like IT strategic plans, master plans, roadmaps, or blueprints. Innovation management is also discussed, involving the identification and implementation of technological ideas. The script further delves into portfolio management, project management, budgeting, and resource planning, including training needs. Relationship management with customers and end-users is emphasized, including regular satisfaction surveys to improve IT solutions. The script also highlights the importance of service catalogs, service level agreements (SLAs), and managing IT security and data management, especially in the context of the COVID-19 pandemic.
Takeaways
- 📈 The discussion revolves around the second domain of KOBIT, focusing on the long-term IT planning and organization aspects that align with business strategy.
- 🛠️ The IT strategic plan, master plan, roadmap, or blueprint typically includes 3 to 5 years of long-term initiatives and architectural considerations.
- 💡 Innovation management is a key aspect, involving the identification, analysis, and implementation of IT-related technological innovations.
- 📚 The strategic plan must be managed effectively, with initiatives broken down into a portfolio that outlines the initiatives to be executed in the coming years.
- 👨💼 Each initiative in the portfolio is managed as a project, overseen by individual Project Managers.
- 💰 The strategic plan requires budget estimation for each initiative's implementation, ensuring financial planning is integral to the process.
- 👥 Human resource planning is essential, including headcount, competencies, and training needs to meet organizational requirements.
- 🔗 Relationship management with customers and end-users is vital, ensuring that IT solutions meet business and organizational expectations.
- 📊 Regular satisfaction surveys are conducted to assess whether IT solutions meet the expectations of internal and external customers and to identify areas for improvement.
- 🗂️ The IT service catalog is a repository of IT services available to users, complemented by Service Level Agreements (SLAs) that guarantee service quality.
- 🔒 Information security management is crucial, with the organization needing to control and apply security measures within the IT environment.
- 🗃️ Data management, a process that has gained importance in recent times, including during the COVID-19 pandemic, is now part of the IT management domain.
Q & A
What does 'APO' stand for in the context of IT planning?
-In the context of IT planning, 'APO' stands for 'Apo' or 'Line Plan and Organize', which is the second domain of the IT Balanced Scorecard and relates to various aspects of IT planning aligned with business strategy.
What is the significance of the IT strategic plan in long-term IT planning?
-The IT strategic plan is significant as it outlines initiatives that will be carried out 3 to 5 years in advance, typically including the architecture within it. It can be referred to as an IT master plan, roadmap, or blueprint.
How does innovation management fit into the APO domain of IT planning?
-Innovation management in the APO domain involves managing ideas related to IT and technology, identifying their origin, analyzing their feasibility, and implementing them as part of the IT planning process.
What is a 'portfolio' in the context of IT strategic planning?
-A 'portfolio' in IT strategic planning refers to a collection of initiatives that will be executed 3 to 5 years in the future. These initiatives are managed as projects overseen by individual Project Managers.
Why is it important to manage the investment in IT long-term planning?
-Managing the investment in IT long-term planning is crucial to identify the budget estimates required for each initiative's implementation and to ensure the allocation of resources and funding aligns with organizational goals.
How does the management of human resources (HR) factor into IT planning?
-HR management in IT planning involves planning for the number of personnel (headcount), their competencies, and the training needs to ensure their skills meet the organization's requirements, all of which should be detailed in the strategic IT planning document.
What is the purpose of relationship management in IT?
-The purpose of relationship management in IT is to ensure that stakeholder demands are managed and that IT solutions proposed meet the business and organizational expectations as a whole.
Why are regular satisfaction surveys important in IT?
-Regular satisfaction surveys are important to ensure that the IT solutions provided to end-users or customers, both internal and external, meet their expectations and quality standards, allowing for improvements based on feedback.
What is a 'service catalog' in IT management?
-A 'service catalog' is a repository of IT services available for users to request or utilize. It should be accompanied by a Service Level Agreement (SLA) that guarantees the quality and standards of the services provided.
What does a Service Level Agreement (SLA) typically include in IT?
-A Service Level Agreement (SLA) typically includes guarantees on service availability, capacity, continuity, and security. For example, it might ensure a service's uptime is 99%, outline the capacity of an email mailbox, detail backup mechanisms for continuity, and specify security measures like spam filters.
How has the management of data evolved in the APO domain, especially during the COVID-19 pandemic?
-The management of data in the APO domain has become increasingly important, especially during the COVID-19 pandemic, as it involves new processes to control and apply data management within the organizational environment.
Outlines
📈 IT Strategic Planning and Innovation Management
This paragraph discusses the second domain of IT management, focusing on strategic planning and organization. It emphasizes the importance of aligning IT initiatives with business strategies, typically outlined in a long-term IT strategic plan, which may also be referred to as a master plan, roadmap, or blueprint. The plan includes initiatives to be undertaken over the next 3 to 5 years. Innovation management is also highlighted, detailing the process of idea generation, feasibility analysis, and implementation. The paragraph further delves into the management of IT initiatives, which are organized into a portfolio and subsequently managed as projects by individual project managers. Budgeting and resource planning, including the identification of required funds and human resources, are also crucial components of this phase. Lastly, relationship management with customers and end-users is discussed, including the need for regular satisfaction surveys to ensure that IT solutions meet expectations and quality standards.
🛡️ IT Service Management and Security
The second paragraph continues the discussion on IT management, focusing on service management, security, and data management. It mentions the importance of including IT services in a service catalog, which acts as a repository of available services, each accompanied by a Service Level Agreement (SLA). The SLA outlines guarantees such as service availability, capacity, and continuity, ensuring that services meet the agreed-upon standards. The paragraph also covers the aspect of IT security management, which includes the control and application of security measures within the organization. The final part of the paragraph introduces data management as a new process that emerged during the COVID-19 pandemic, emphasizing the need for its inclusion in IT management practices.
Mindmap
Keywords
💡APO (Area of Practice)
💡Strategic Plan
💡Innovation
💡Portfolio
💡Project Management
💡Investment Management
💡SDM (Sumber Daya Manusia)
💡Relationship Management
💡Service Catalog
💡Service Level Agreement (SLA)
💡Information Security Management
💡Data Management
Highlights
The discussion covers the second domain of IT governance, focusing on the strategic aspects of IT planning and organization.
IT planning is aligned with business strategy and includes long-term initiatives planned for 3 to 5 years into the future.
Different terms are used for long-term IT planning, such as IT strategic plan, IT master plan, IT roadmap, or blueprint.
Innovation management is a key part of the planning phase, involving the identification and analysis of new IT-related technologies.
Long-term IT plans must be managed and include initiatives that will be executed as part of a portfolio.
Each initiative in the portfolio is managed by a Project Manager and becomes a project to be implemented.
Investment management is crucial, requiring the identification of budget estimates for each initiative's implementation.
Human resource needs, including headcount and competencies, must be planned for the execution of IT plans.
Training needs are identified to ensure competencies meet organizational requirements.
Relationship management with customers and end-users is essential to ensure IT solutions meet business and organizational expectations.
Regular satisfaction surveys are conducted to assess whether IT solutions meet the expectations of internal and external customers.
Feedback from satisfaction surveys is analyzed to identify areas for improvement in IT services.
The service catalog is a repository of IT services available to users, including service level agreements (SLA).
SLAs provide guarantees on various aspects of IT services, such as availability, capacity, continuity, and security.
Information security management is a critical component of IT governance, ensuring the control and application of security measures.
Data management has emerged as a new process, especially in the context of the COVID-19 pandemic, and is now included in the IT governance framework.
The presentation aims to be beneficial for understanding the strategic aspects of IT governance in the context of business needs.
Transcripts
pembahasan kali ini saya akan memaparkan
mengenai domain kobit yang kedua yaitu
apo atau Line plan dan organize nah di
apo ini eh berkaitan dengan aspek-aspek
perencanaan it yang selaras dengan arah
strategi bisnis apa saja sih yang masuk
dalam perencanaan di dalamnya yang
pertama biasanya di dalam perencanaan it
itu pasti ee perencanaannya jangka
panjang inisiatif-inisiatif yang akan
dilakukan 3 sampai 5 tahun ke depan itu
biasanya dicantumkan di dalam
perencanaan jangka panjang it istilahnya
bisa bermacam-macam ada yang menyebutkan
itu sebagai it strategic plan atau
mungkin it master plan atau ada juga
yang menyebutkan itu sebagai it roadmap
ataupun eh yang menyebutkan sebagai
blueprint karena biasanya di dalam
perencanaan jangka panjang itu juga
termasuk eh arsitektur di dalamnya nah
kemudian perencanaan berikutnya yang
harus dilakukan pada tahapan apo ini
adalah inovasi jadi inovasi-inovasi yang
berkaitan dengan it eh berkaitan dengan
teknologinya itu perlu dikelola juga
dari mana idenya muncul kemudian
bagaimana kita mengidentifikasi atau
menganalisis kelayakannya sampai dengan
diimplementasikan itu masuk dalam
areanya yang ada di dalam apo nah
kemudian setelah kita memiliki
ee perencanaan jangka panjang ee yang
ada di dalam it strategic plan atau it
master plan tentunya harus dikelola
inisiatif-inisiatif yang akan dijalankan
3 sampai 5 tahun ke depan biasanya kita
sebut sebagai portofolio di mana
portofolio itu isinya adalah
inisiatif-inisiatif tadi Nah di dalam
portofolio nanti yang akan
diimplementasikan menjadi
project-project yang akan dikelola oleh
masing-masing Project Manager nah Selain
itu inisiatif-inisiatif yang ada di
dalam e perencanaan it jangka panjang
itu juga harus dikelola secara
investasinya dalam penyusunannya kita
harus mengidentifikasi berapa sih
perkiraan budget yang dibutuhkan untuk
setiap implementasi dari
inisiatif-inisiatif tersebut nah
kemudian juga kebutuhan dari sisi SDM
yang akan menjalankan perencanaan
ataupun implementasi yang ada di
organisasi tentunya harus direncanakan
juga baik itu dari sisi jumlahnya head
count-nya kemudian kompetensinya sampai
dengan kebutuhan-kebutuhan training yang
dibutuhkan agar eh kompetensinya dapat
sesuai dengan requirement organisasi itu
harus direncanakan di dalam dokumen
perencanaan strategis it jangka panjang
nah Selain itu di dalam eh apo ini ada
juga proses yang memang kita harus Eh
ada relationship atau hubungan dengan
customer ataupun end user dari it nah
ini biasanya disebut di dalam dokumen eh
relationship management dokumen di mana
di dalamnya ini it harus memastikan
bahwa demand dari stakeholder it ini
dapat dikelola dan juga solusi-solusi it
yang dapat diusulkan ini dapat memenuhi
ekspektasi dari sisi bisnis ataupun dari
sisi eh organisasi secara keseluruhan
nah Selain itu di dalam relationship
managementen juga eh perlu dilakukan
survei kepuasan untuk memastikan bahwa
Apakah solusi it yang disampaikan kepada
end user ataupun customer it baik
internal maupun eksternal sudah memenuhi
ekspektasi mereka atau tidak atau dari
sisi kualitasnya sudah memenuhi ee
target yang ditentukan atau tidak maka
survei ini harus dilakukan secara
berkala Nah dari hasil survei kepuasan
yang sudah di lakukan ini ee hasilnya
akan diidentifikasi atau dianalisis
sehingga kita bisa ee cek kira-kira apa
sih improvement ataupun
perbaikan-perbaikan apa yang dapat kita
lakukan berdasarkan feedback dari
customer ataupun end user yang sudah eh
melakukan survei nah berikutnya di dalam
domainnya apo juga tidak kalah penting
bahwa setiap layanan it yang dikelola
itu harus dicantumkan di dalam menunya
it yang biasa kita sebut sebagai service
katalog di mana servis katalog merupakan
repository dari layanan-layanan it yang
memang disediakan untuk user yang bisa
diminta ataupun yang bisa digunakan oleh
user nah tentunya di dalam service
katalog juga harus dilengkapi dengan apa
yang menjadi jaminan dari it yang biasa
kita sebut juga service level agreement
Di mana service level agreement ini
adalah jaminan it atas layanan-layanan
yang disediakan nah jaminan ini bisa
bermacam-macam ee di dalam SLA ini ee
biasanya ada beberapa yang bisa bisa
dijaminkan pertama dari sisi
availability-nya contohnya misalkan
dalam suatu layanan eh kita sediakan
bahwa uptime-nya itu
99%. maka eh uptime dari layanan
tersebut bisa diakses atau bisa
digunakan itu adalah 99% dan tolerable
down time-nya itu adalah 1%. kemudian
yang bisa dijaminkan berikutnya lagi
berkaitan dengan capacity misalkan email
email mailbox-nya berapa sih
kapasitasnya itu bisa dijaminkan
kemudian yang yang ketiga berkaitan
dengan continuity bahwa setiap kali ada
gangguan atau ada disaster maka
continuity-nya Seperti apa Mekanisme
backup-nya seperti apa Nah itu biasanya
yang dijaminkan di aspek continuity
kemudian yang selanjutnya berkaitan
dengan security security adalah
aspek-aspek keamanan informasi yang bisa
kita jaminkan atas layanan yang kita
sediakan contohnya kalau misalkan kita
sediakan layanan Email maka salah satu
yang bisa kita jaminkan dari sisi eh
security adalah ee eh spam-nya spam
filternya Seperti apa Nah itu yang ada
di dalam eh katalog dan juga SLA nah
kemudian dari kelompok-kelompok eh
manajemen it yang ada di apo eh di
antaranya juga ada sistem manajemen
keamanan informasi di mana pengelolaan
keamanan informasi juga harus
dikendalikan harus dikontrol dan juga
harus diterapkan di Lingkungan
organisasi dan yang terakhir yang ada di
dalam apo adalah manajemen data yang
mana Ini adalah proses yang baru di
dalam covid 2019 dan ini tidak ada di
covid-covid versi sebelumnya Oke
mudah-mudahan ini bisa bermanfaat sekian
untuk pemaparan dari sisi e
[Musik]
apo mitratex your compliance
partner
5.0 / 5 (0 votes)