Upload
sanjiv-arora
View
165
Download
1
Tags:
Embed Size (px)
DESCRIPTION
Take a walk down the RISKS that face ALL organizations due to IT Infrastrucutre, Business Applications, People and Data Protection.
Citation preview
Business RisksFrom IT
“Lack of IT Alignment”
Presented by Sanjiv Arora [email protected]
www.tech-controls.com
+91 9810293733
About Sanjiv Arora
CISA, CISM, CGEIT, CHPSE, 31 yrs experience Founder – Technologics and Controls
– Business Risks Consultants– IT Strategic Consultants– Enterprise and IT Governance consultants– IT Systems and Security Auditors– Network Security (VAPT) – Trainers
Customer(s)– Insurance, Banking, Manufacturing, IT / ITES, Media, Health, Govt, UN, NGO, Media in Europe, KSA, Qatar, Africa, Malaysia and India
Today’s Business Customer service
Stakeholder commitmentFierce Competition
Stringent RegulationsDirect / indirect Recession
Increased Cost of resourcesExtremely high IT Dependence
Increasing IT Complexity
Impacts
Enterprise GovernancePerspectives are:
FinancialCustomer
Internal ControlDevelopment and Growth
Business Expectations
Better Customer Experience and Satisfaction
Increased Revenue Reduced time to launch and deliver
solutions Secure Information Assets Efficient staffing for growth
Business Expectations from IT
Stable and long term technology solutions
IT to understand Business Low IT Investments, high utilization Reduced IT operation costs
Four Pillars of IT
1. Infrastructure– Servers– Networks (LAN, WAN, VPN, WiFi)– Desktops and Printers
2. Information– Data in RAW form– Data in xls, pdf, doc etc– Data in databases– Technical Knowhow
● Product or Process
Four Pillars of IT
3. Applications– ERP, CRM– Tally– Financial Accounting– HRMS– Data warehouse / Business Intelligence
4. People– IT (Admin, Network, Security) Administrators– Software Developers– Technical Help desk and support– Consultants (SME)
Future: Complete IT Alignment to Business – 4 pillars
DataDataApplicationsApplicationsPeoplePeople
1. Information and Data
Confidentiality
Integrity AvailabilityReliabilty
Compliance
2. IT Infrastructure
Servers
Networking
EfficiencyEffectiveness
3. Business Applications
ERPCBSPOS
BI / DW
4. People
CompetentEthical
Committed
Risks: IT Infrastructure
Risks: IT Infrastructure
Risks: IT Infrastructure
Risks: IT Infrastructure
Risks: IT Infrastructure
Risks: IT Infrastructure
Risks: Data (Information Assets)
Risks: Data (Information Assets)
Risks: Data (Information Assets)
Risks: Data (Information Assets)
Risks: Data (Information Assets)
Risks: Applications
Risks: Applications
Risks: Applications
Risks: Applications
Risks: Applications
Risks: Applications
Risks: Applications
Risks: People
Risks: People
Risks: People
Risks: People
Risks: People
Way Forward: IT Health Check Review the 4 Pillars of IT
– Infrastructure– Data– Applications– People
For Adequacy of– Confidentiality – Integrity of Data– Availability of Infrastructure and services– Efficiency of IT Operations– Effectiveness of use of IT Services and Solutions– Compliance to regulations
Way Forward: Use External Auditors Review of IT by
– Experienced and qualified IS Auditors– IT Strategic consultants and experts– Risk Management Consultants
To provide– Unbiased findings and recommendations– Cost effective solutions– Suggestions of activities to AVOID– Guidance on MOST suitable controls– Assist in developing measurement matrices
Deliver: Business Advantage
Manage and deliver effective Applications Maximize Infrastructure utilization Secure Information Assets Ensure people are accountable to BUSINESS GOALS Be BUSINESS ready for FUTURE