Beruflich Dokumente
Kultur Dokumente
Enabler Dimension
Stakeholders
Goals
Life Cycle
Good Practices
Internal
Stakeholders
External
Stakeholders
Intrinsic Quality
Contextual Quality
(Relevance,
Effectiveness)
Accessibility and
Security
Plan
Design
Build/Acquire/
Create/Implement
Use/Operate
Evaluate/Monitor
Update/Dispose
Process Practices,
Activities, Detailed
Activities
Work Products
(Inputs/Outputs)
Enabler Performance
Management
Are Stakeholder
Needs Addressed?
Is Life Cycle
Managed?
Are Enabler
Goals Achieved?
Governance
Evaluate
Direct
Monitor
Management Feedback
Management
Plan
(APO)
Build
(BAI)
Run
(DSS)
Monitor
(MEA)
2013 ISACA. A
l l
r i g h t s
r e s e r v e d
2013 ISACA. A
l l
r i g h t s
r e s e r v e d
BAI09 Manage
Assets
BAI02 Manage
Requirements
Definition
DSS02 Manage
Service Requests
and Incidents
DSS01 Manage
Operations
BAI08 Manage
Knowledge
BAI01 Manage
Programmes and
Projects
DSS04 Manage
Continuity
BAI04 Manage
Availability
and Capacity
APO11 Manage
Quality
APO04 Manage
Innovation
EDM03 Ensure
Risk Optimisation
DSS05 Manage
Security
Services
BAI05 Manage
Organisational
Change
Enablement
APO12 Manage
Risk
APO05 Manage
Portfolio
DSS06 Manage
Business
Process Controls
BAI06 Manage
Changes
APO13 Manage
Security
APO06 Manage
Budget and Costs
EDM04 Ensure
Resource
Optimisation
DSS03 Manage
Problems
BAI10 Manage
Configuration
BAI03 Manage
Solutions
Identification
and Build
APO10 Manage
Suppliers
APO09 Manage
Service
Agreements
APO08 Manage
Relationships
APO03 Manage
Enterprise
Architecture
APO02 Manage
Strategy
EDM02 Ensure
Benefits Delivery
APO01 Manage
the IT Management
Framework
EDM01 Ensure
Governance
Framework Setting
and Maintenance
BAI07 Manage
Change
Acceptance and
Transitioning
APO07 Manage
Human Resources
EDM05 Ensure
Stakeholder
Transparency
MEA03 Monitor,
Evaluate and Assess
Compliance With
External Requirements
MEA02 Monitor,
Evaluate and Assess
the System of Internal
Control
MEA01 Monitor,
Evaluate and Assess
Performance and
Conformance
Monitor, Evaluate
and Assess
: Enabling Processes
: Enabling Processes
Outputs
Outputs to all Processes
From Key
Practice
APO13.02
Output Description
Destination
All EDM; All APO; All BAI; All DSS; All MEA
Output Description
Destination
EDM01.01
All EDM
EDM01.01
Decision-making model
All EDM
EDM01.01
Authority levels
All EDM
EDM01.02
All EDM
EDM01.03
All EDM
Output Description
Destination
APO01.01
APO01.03
IT-related policies
APO01.04
Communications on IT objectives
APO01.07
APO02.06
Communications package
APO11.02
APO11.04
APO11.06
APO11.06
APO11.06
MEA01.02
Monitoring targets
MEA01.04
Performance reports
MEA01.05
MEA02.01
MEA02.01
MEA02.03
MEA02.03
MEA02.04
Control deficiencies
MEA02.04
Remedial actions
MEA02.06
Assurance plans
MEA02.08
Refined scope
MEA02.08
MEA02.08
MEA03.02
2013 ISACA. A
l l
r i g h t s
r e s e r v e d
COBIT 4.1
Control Objectives
Map to
Val IT 2.0
Key Management
Practices
Map to
Risk IT
Management
Practices
Map to
COBIT 5
Governance and
Management
Practices
Note: COBIT 5: Enabling Processes Appendix A. Mapping Between COBIT 5 and Legacy ISACA Frameworks,
figures 14, 15 and 16, contain the mapping of COBIT 4.1, Val IT and Risk IT components to COBIT 5.
l l
r i g h t s
r e s e r v e d