Time
2 hours 3 minutes
Difficulty
Advanced
CEU/CPE
5

Video Description

This lesson covers what is needed to pass the exam, including how to evaluate an IT government structure and how management style fits into the governance of an organization. [toggle_content title="Transcript"] Alright, so, wrapping up module 2; these are the things we need to worry about for the exam. We have to know how to evaluate the IT governance structure. How to learn what it actually looks like and who's responsible for what. Then we have to think about the structure of the organization itself to make sure that that shows proper alignment with the business objectives. Then we have to think about policies, standards, procedures and guidelines, how those fit-in to the management style and governance of the organization. We know that management is responsible for enforcing the policies, procedures, and standards. If they have a hand in creating those, they're going to be responsible for the enforcement as well. It just makes sense. We need to know how risk management works and understand that that process of risk management continues throughout the entire life-cycle of a system or potentially the entire life-cycle of the organization. Having some way to measure quality and to manage defects in quality is an important thing to remember. Having the ability to monitor the processes of the organization and how well it's doing, picking the appropriate metrics and understanding what those numbers really mean. And then, last, we have IT performance and the performance of IT vendors. So this could be things that are determined through service level agreements. Through turnaround time for trouble tickets, requests for audit information, how soon they respond. There's lots of different ways to quantify that. So if you dig in to these topics a little bit deeper before we move on to the next module, you should be well rehearsed for the exam. Alright, so, after this, go ahead and do the module 2 review questions and we'll see you in module 3. Thank you. [/toggle_content]

Video Transcription

00:04
all right, So
00:05
wrapping up module to these are the things we need to worry about for the exam.
00:09
We have to know how to
00:11
evaluate
00:13
the I T governance structure,
00:15
howto howto learn what it actually looks like and who's responsible for what?
00:20
That we have to think about the structure of the organization itself
00:24
to make sure that that
00:26
shows proper alignment with the business objectives.
00:29
Then we have to think about policies, standards, procedures and guidelines how those fit into the management style
00:36
and governance of the organization.
00:41
We know that management is responsible
00:44
for enforcing the policies, procedures and standards
00:48
they have a hand in creating those they're going to be responsible for the enforcement as well. It makes sense.
00:55
We need to know how risk management works and understand that that that process of risk management continues
01:02
throughout the entire life cycle of a system or potentially at the entire life cycle of the organization.
01:10
Having some way to measure quality and to manage defects and quality is an important thing to remember
01:17
hot
01:18
having the ability to monitor
01:21
the the processes of the organization and how well it's doing
01:26
picking the appropriate metrics and understanding what those numbers really mean.
01:30
And then last, we have I t performance
01:34
and the performance of I t vendors.
01:38
So this could be things that air determined through service level agreements
01:42
through
01:44
turnaround time for trouble tickets,
01:48
requests for audit information. How soon do they respond with lots of different ways to quantify that?
01:56
So if you dig into these topics a little bit deeper
01:59
before we move on to the next module, you should be, well, well rehearsed for the exam.
02:05
All right, so after this, go ahead and do the module to review questions, and we'll see you in module three. Thank you.

Up Next

IT Governance and Management

What does CISA Domain 2 cover? Domain 2 of the CISA surrounds the governance and management of IT, with included topics ranging from IT monitoring and assurance practices.

Instructed By

Instructor Profile Image
Dean Pompilio
CEO of SteppingStone Solutions
Instructor