IT6423 Exercise 3 Implementing Best Practices in IT Procurement (1) _StevieW

.docx

School

Kennesaw State University *

*We aren’t endorsed by this school

Course

6423

Subject

Information Systems

Date

May 2, 2024

Type

docx

Pages

8

Uploaded by BaronApe4233 on coursehero.com

IT6423 IT Systems Acquisition and Integration Exercise 3- Best Practice Frameworks and Assets for Implementing IT Procurement Developed by Richard Halstead-Nussloch Your name: Stevie Wright Policies: Submissions made through a means other than the D2L Assignment Folder will be ignored and earn a 0. Submissions without your name stated above earn a 0. Submissions with the original questions and/or formatting removed from the file earn a 0. Submissions without adequate references or acknowledgements will earn a discounted grade, potentially a 0. Submissions that I can not open, or are in a zip file or require a password will earn a 0. Second chances might be requested at any time through D2L email, and are awarded at the sole discretion of the instructor. Submissions should use and cite at least one reference and explicitly state who is being acknowledged. Put them in the end of this exercise document in the appropriate sections. Q1) (30 Points) In this question, you should review models and frameworks for rationalizing IT procurement and choose one as your primary, “go to model/framework” for understanding and explaining how to systematically acquire and integrate IT systems. Once you choose your preferred model or framework, complete the following information about your choice. If you can’t decide what model/framework to use, choose DAU Agile Acquisition: ( https://www.dau.edu/acquipedia/pages/articledetails.aspx#!596 and https://www.dau.edu/cop/it/Pages/Topics/SW - Engineering.aspx ). Don't forget to cite your references! What model or framework have chosen to rationalize IT procurement? The framework that I decided to go with is COBIT which stands for Control Objectives for Information and Related Technologies. Good websites or publications describing it: o 15 Types of IT Frameworks and Operating Models (2024) - Whatfix o COBIT - Wikipedia o What is COBIT Framework? Goals and Principles of COBIT | Fortinet o What is a COBIT and why is it important? (techtarget.com) Your rationale or justification for the choice, e.g., a main benefit: The main benefit of COBIT is that it helps to align IT with business goals and objectives. This is very advantageous for organizations as it allows them to make a sound decision on their IT systems ensuring that they get the most
out of their investments. Another major benefit is that it is versatile and can be implemented in any organization. [4] Any comments about applying the model/framework in your IT practice: o COBIT uses clearly delineated process descriptions that allow an organization to plan, construct, execute, and monitor effective solutions. [3] o COBIT provides high-level standards to guide management as they control individual IT processes. [3] o The COBIT framework assists managers in assigning responsibility, arranging objectives, assessing performance, and making connections between processes that interact with each other. [3] o COBIT’s maturity models can be used to measure how effective each process is, as well as identify and deal with areas where processes are falling short. [3] Q2) (35 Points) Create a one page (it can be single sided or double sided) cheat sheet, fact sheet, performance aid or infographic covering IT procurement (IT system acquisition and integration) that can be used to quickly bring someone, e.g., a manager or customer, up to speed about best practices in IT procurement. Include as a minimum: A quick overview of the model/framework you chose in Q1 The importance of a) Cyber Security ( https://www.cisa.gov/news-events/news/what-cybersecurity ) and b) Cyber Resilience ( https://en.wikipedia.org/wiki/Cyber_resilience ) in IT Procurement Suggestions for a) Requirements Management, b) Test and Evaluation, and c) Program Management (SEE NEXT PAGE)
CHEAT SHEET COBIT is a framework developed by ISACA for governance and management of enterprise IT. It provides guidance on aligning IT with business objectives, including processes for IT procurement, vendor management, and risk management. [4] Goals: Streamlined Information Sharing [3] Balanced Mix of IT and Business Strategies to Accomplish Goals [3] Optimizing Costs [3] Principles: Address Stakeholder Needs [1][3] End-to-end Enterprise Coverage [1][3] Employing Integrated Frameworks [1][3] Following a Holistic Approach [1][3] Benefits: CIOs and IT managers receive streamlined, unified strategies for solution design, communication, and maintenance. [3] Those tasked with risk reduction benefit from centralized solutions under a single framework, minimizing overlooked vulnerabilities. [3] Those in charge of process development and maintenance benefit since COBIT promotes holistic solutions, preventing potential conflicts between processes. [3] Components: Framework [3] Process Description [3] Control Objectives [3] Management Guidelines [3] Maturity Models [3] Importance of Cyber Security: Protects sensitive data, mitigating risks, maintaining business continuity, ensuring compliance with regulations, safeguarding the supply chain, and preserving trust and reputation. [5] Importance of Cyber Resilience: Ensures organizations can effectively withstand and recover from cyber threats, maintain continuous operations, protect reputation and trust, achieve regulatory compliance, and manage vendor risks. [6] Suggestions a) Requirements management a. Ensure Stakeholders are involved [7] b. Clearly document requirements [7] c. Train appropriate teams on requirements, tools, and practices [7] b) Test and Evaluation a. Create specific test objectives and plan for testing [8] b. End user acceptance testing [8] c) Program Management
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help