Improving IT Governance Through Formal Change Management - PowerPoint PPT Presentation

About This Presentation

Title:

Improving IT Governance Through Formal Change Management

Description:

Improving IT Governance Through Formal Change Management A Hype Cycle is a graphic representation of the maturity, adoption and application of specific technologies. – PowerPoint PPT presentation

Number of Views:54

Avg rating:3.0/5.0

Slides: 31

Provided by: DanS164

Learn more at: https://www.educause.edu

Category:

more less

Transcript and Presenter's Notes

Title: Improving IT Governance Through Formal Change Management

1
Improving IT Governance Through Formal Change
Management
2
My Role at Marquette

Change Manager
ITIL Practitioner in release control (change,
configuration release management)
Head of the PMO
PMP certification

3
Why Did We Start?

Stabilize the infrastructure

4
Audit Questions

Change Management and Program Development
Controls
Change Management policy and procedure
documentation (requirements for requesting,
documenting, testing, approving, and
migrating/implementing changes to the production
environment).
Emergency change procedure documentation.
List of all requested changes (development and
configuration changes) made to the financial
reporting applications and underlying environment
(between 6/1/06 present).
Program development methodology (SDLC) and formal
testing procedure documentation (if exist and
different from Change Management Policy)
System generated evidence (access control list,
etc) showing users that have access to modify
system code or system configurations for the
production environment

5
What is Governance

There is no universal definition
COBIT
The need for assurance about the value of IT, the
management of IT-related risks and increased
requirements for control over information are now
understood as key elements of enterprise
governance.
Value, risk and control constitute the core of IT
governance.

6
Gartner Definition

"The processes that ensure the effective and
efficient use of IT in enabling an organization
to achieve its goals."
This definition contains certain key concepts
ITG is composed of processes with the inputs,
outputs, roles and responsibilities that are
inherent in a process definition (however, the
definition does not talk about how these
processes might be implemented).
The role of ITG "ensures," as opposed to
"executes."
The goal of ITG is defined as a business goal,
not just IT-related.
Key performance measures, identified as
effectiveness and efficiency, together represent
business value.

7
COBIT
Governance
Management
Control
Audit
1996
1998
2000
2005
8
Perspective of Frameworks and Standards
COBIT Focus April 2007 Volume 1
9
Hype Cycle
Removed at Gartners Request
http//www.gartner.com
10
Hype Cycle
Removed at Gartners Request
http//www.gartner.com
11
ITIL

ITIL is not a temporary fashion ISO20000
Its not about tests and certification
Going from a technology focus to a customer
service focus
Short term costs will be balanced by long-term
gains
Other cultures have benefited from adopting ITIL
It is easier to sell a best practice than an idea

12
ITIL

Managing service levels from the customers
perspective instead of insular technology or
infrastructure perspective
Going beyond reactive break/fix to proactive
management of service requests and service
support
Actively managing infrastructure components
(assets) and systematically managing changes
(planned and un-planned)
Remember ITIL concentrates on Continuous
Improvement Deming
A non-proprietary set of best practices public
domain

13
ITIL Service Management v2
14
ITIL v3
Service Strategy
Business Requirements
Policies
Resource Constraints
Service Design
Solutions
Standards
Architectures
Service Transition
Transition Plans
Testing
Service Operation
Operational Plans
Operational services
Continual Service Improvement
15
Service

Services are a means of delivering value to
customers by facilitating outcomes customers want
to achieve, without the ownership of specific
costs and risks.

ITILv3 Road show
16
Marquette IT Governance

We have a PMO that is based on PMBOK and we have
our own Project Methodology
We also have begun to implement ITIL

17
Marquette Process

Incident
How incidents and requests are handled
Change
How changes to the production system are handled
Config
Components of the IT infrastructure
Data Center
Working on getting all university owned PCs in
the CMDB

18
Incident Management

The goal of Incident Management is to restore
normal service operation as quickly as possible
and minimize the adverse effect on business
operations, thus ensuring that the best possible
levels of service quality and availability are
maintained.

19
Configuration Management

Configuration Management is a process that tracks
all of the individual Configuration Items (CI) in
a system.
A Configuration Item (CI) is an IT asset or a
combination of IT assets that may depend and have
relationships with other IT processes

20
Change Management

The goal of Change Management is to ensure that
standardized methods and procedures are used for
efficient handling of all changes, in order to
minimize the impact of change-related incidents
and to improve day-to-day operations.

21
What is a Change?

A service may become unavailable or degraded
during service hours,
The functionality of a service to become
different, or
The CMDB to require an update.

22
High-Level Change Process
Change Coordinator
Change Manager
Register the change
Complete RI Work Orders
Develop Change Plan
Review Change Plan
Get Approval(s)
Assign Imp Work Orders
23
Types of Change Templates