Corporate Governance of ICT

Corporate Governance of ICT, Version 43, August 2012

Corporate Governance of ICT This list of suppliers was pre-qualified for the ICT Management Consultants multi-use list category

of Corporate Governance of ICT.

Version 43.0 – 31 August 2012

Service Type Definition

Refers to the structure and processes an organisation use to direct, evaluate and monitor its portfolio of ICT investments and their performance.

It could cover the design and implementation of the governance structure, roles and responsibilities; quality assurance, risk management and change management policies and processes; stakeholder

engagement mechanisms; and measurements to assess the effectiveness of the governance processes.

Applicants should note that Australian Standard 8015-2005: Corporate governance of information and communication technology, provides guiding principles for directors on the effective, efficient, and acceptable use of Information and Communication Technology (ICT) within their organisation.

Disclaimer

All supplier information is as provided by the supplier in their application. Accordingly, before relying on information provided in the ICT MCL, agencies should independently verify its accuracy, currency, completeness and relevance for

their purposes. Agencies must ensure that any procurement process is undertaken in accordance with agency guidelines.

In selecting suppliers, agencies must comply with the Commonwealth Procurement Rules (July 2012).

If you have any questions about the multi use list (the List), please call on 02 6215 1597 or email [email protected].

http://www.finance.gov.au/procurement/procurement-policy-and-guidance/commonwealth-procurement-rules/index.html

mailto:[email protected]


Organisation Name 451 Consulting Pty Ltd Trading Name

Contact Mr Gerard O'Hara

Address Level 1, 377 Montague Road

Suburb West End

State Queensland Postcode 4101

Telephone 0732550457 Facsimile 0732550119

Website www.451consulting.com.au

Email [email protected]

ABN 90079617575

Company Background Since 2001, 451 Consulting has assisted over 45 government and private sector organisations become more successful through delivery of 400 assignments. We offer highly responsive and scalable solutions through our 32 experienced consultants and access to over 80 highly pre-qualified contractors. Our business and government clients value 451 Consulting as trusted advisors and capability partners in the formulation and realisation of strategic and operational goals. We provide management and technology consulting services to Brisbane (headquarters), Sydney, Melbourne, Canberra, and New Zealand markets. You can be confident in selecting 451 Consulting as over 90% of the organisations we have partnered with since 2001 have nominated 451 as a preferred partner when addressing new organisational challenges; a fact that is fully supported by written testimonials and repeat work. The majority of people in 451 Consulting are long standing members of the Australian consulting and contracting community, having served with international consulting organisations and major public and private organisations over many years. 451 offers you a rich history, deep experience and pragmatic methodology.

Company Accreditation (Optional) 451 Consulting has an outstanding track record of delivery insight, integrity and value on every client assignment. We have a fully operational quality management system and our high-quality performance is demonstrated by our appointment to numerous Government and private sector panels, some of which include: - Department of Defence (Management Consulting Services) - Department of Public Works (Whole-of-Government Panel for Project Management Coaching, Training and Mentoring) - Ergon Energy (Six panels across Project Management, Strategic Consulting and ICT Consulting Services) - Civil Aviation Safety Authority (Aviation Safety Consultancy MUL Panel) - Queensland Health (ICT Contracting Services, and Internal Audit) - Suncorp (ICT Contracting and Project Management Resourcing) - Asia Pacific Utilities Group (Management Consulting Services) - Department of Transport and Main Roads (ICT Consulting and Contracting Services) - Corporate Services Queensland (PMO Panel) - Queensland Investment Corporation (Program Health Checks & PMO Review Panels) - Department of Communities and Disability Services Qld (Project Management Training, Coaching and Mentoring) - Local Government Association Queensland (Learning and Development, and Business Services Consulting) - Gold Coast City Council (Training, Organisational Development and People Management) - City of Townsville (Panel of Providers for Business Management Consultant Services) - Department of Emergency Services (Internal Audit)


Corporate Governance of ICT 451 Consulting possesses proven experience in delivering corporate governance services. Past engagements range from major departmental review and strategic governance assessment to single project / program governance analysis. 451 were engaged by the Department of Communities to undertake a major review of project structure and governance, including delivery of a specialised capability development program to over 50 people to increase their project maturity and governance approach. 451 Project Governance Methodology is founded from several mainstream methodologies (such as RACI) which ensure single point accountability and provide line of sight on all projects; philosophies which are integrated into all 451 methodologies. Our services are tailored solutions and also include fit-for-purpose reviews, strategic analysis and reference group establishment. Recent examples include: a) 451 were engaged to conduct a Governance and Accountability review of Ergon Energy’s major ERP implementation, Project JET. We utilised our Project Review methodology to ensure project accountabilities were efficiently allocated, stakeholders were fully informed and effective processes and controls had been established. 451 developed a series of recommendations which were later adopted. Our advice significantly assisted with future benefits measurement, benefits management and benefits realisation processes. b) 451 Consulting assisted Ipswich City Council (ICC) to restructure and transition its service delivery model for business improvement and ICT services. With an approach focused on change management and business engagement, 451 assisted ICC in successfully establishing governance arrangements to guide the ICT investment portfolio and deliver a business driven performance improvement capability that were well supported by ICT services.


Organisation Name 4impact Pty Ltd Trading Name

Contact Mr Mark Henderson

Address Level 1, 18 National Circuit

Suburb Barton

State ACT Postcode 2603

Telephone 0404564281 Facsimile

Website


ABN 32115749794

Company Background 4impact specialises in People, Project and Technology centric business solutions focusing on integrating people with processes and technology … and business with technology and people. Behind these competencies is the ability to underpin with skills and capability in transformation management, organisational and strategic solutions. Established in 2005, 4impact is an Australian owned IT services company with 75 team members in Sydney, Brisbane, Melbourne and Canberra. We specialise in connecting people and processes with technology, with differentiation through project delivery and first-rate teams We drive our business through the leadership and collaboration of the industry's best people to deliver projects utilising mature and trusted processes and technologies. We are at our best when delivering projects in: • IT Strategy • Business Transformation • IT Governance • Business & Systems Integration • Enterprise architecture • Solution Architecture • Information Architecture • Project & Program Management

Company Accreditation (Optional) Currently progressing ISO9001 QMS and CMMI appraisal.

Corporate Governance of ICT 4impact has a long history in the design and delivery of ICT governance solutions for a range of clients. Our approach is to utilise best practice elements from conceptual models such as COBIT, coupled with the principles provided via Australian Standard 8015-2005. 4impact has recently delivered two large scale enterprise ICT Governance models for the Department of Main Roads (QLD) and Department of Primary Fisheries and Forestry (QLD). These models included the design of the enterprise governance board, responsible for the portfolio of ICT Governance investments across the organisations as well as the provisioning of tools and advice around investment performance and benefits realisation. Further, these solutions included the mapping of ICT capital expenditure against corporate strategy, the oversight of program and project delivery and the design and deployment of an Enterprise PMO whose focus was on the carriage of the ICT Governance principles into practice. Our methodology for ICT Governance is built around each client and its relative maturity level. This approach ensures that a solid baseline is development from which growth in ICT Governance expertise and practices can occur. We do not subscribe to the approach of one size fits all.


Organisation Name Accenture Australia Holdings Pty Ltd Trading Name Accenture

Contact Mr Melissa Waldron

Address Ground Floor, 4 Brindabella Circuit,

Suburb Canberra Airport


Telephone 02 6217 3181 Facsimile 02 6217 3001

Website www.accenture.com


ABN 61096995649

Company Background Accenture is a global management consulting, technology services and outsourcing company. Combining experience and comprehensive capabilities across all industries and business functions with extensive research capabilities, Accenture collaborates with clients to help them become high-performance businesses and governments. With more than 186,000 people in 49 countries, the company generated net revenues of US$23.39 billion for the fiscal year ended Aug. 31, 2008.

Accenture offers a wide range of management consulting services with specialisations across most aspects of management and technology consulting, business service delivery and operation. In addition, Accenture’s comprehensive heritage in systems integration and outsourcing means our consulting advice is pragmatic, outcomes focused, and mindful of implementation challenges.

Globally Accenture operates with one common brand and business model which allows us to serve our clients with consistency. In Australia we operate offices in Canberra, Sydney, Melbourne, Brisbane, Perth and Wollongong. Our clients span a broad range of industries worldwide and include many of the Fortune Global 100 and Fortune Global 500 companies, and numerous Government agencies. Many of our top 100 clients have been clients for at least five years.

Accenture’s culture is strongly customer focused, results oriented and guided by our core values of client value creation, best people, integrity, respect for the individual, one global network and stewardship. We spend over $300 million pa on training each year and we seek out the best talent and actively manage the development of our people to retain the best performers.

Company Accreditation (Optional) Accenture has the following accreditations:

Capability Maturity Model (SW-CMM, CMMI) - Accenture has achieved Level 5 in both SW-CMM and CMMI in key Delivery Centre Network locations, with 93% of seats being in Level 5 centres. We have global CMMI programs in our Delivery Centres and in all 5 Operating Groups and have imbedded CMM into Accenture Delivery Methods. Our APIF (Accelerated Process Improvement Framework) offering helps clients achieve CMMI-based objectives faster.

eServices Capability Model (eSCM) - As founding sponsor and contributing member, Accenture is partnered with Carnegie Mellon University to create the eSCM. eSCM is a capability model that addresses the entire outsourcing process (pre-contract, contract execution, and post-contract), with a focus on building a foundation for sustained improvement of capabilities. Our Bangalore Delivery


Centre is the first BPO organisation in the world to achieve eSCM-SP certification. We are a corporate sponsor of eSCM-SP and have imbedded it into Accenture Delivery Methods.

ISO 9001 - We are certified in ISO 9001:2000 across all 5 global Operating Groups, Spain Delivery Centre and European Service Centre (ESC).

Corporate Governance of ICT Accenture has considerable skills and experience in the delivery of corporate governance services for ICT, especially within large and complex Australian Government Agencies based on our “ICT Governance Maturity Model” which assists in delivery of ICT corporate governance services.

Some recent examples include:

a. Leading Global Pharmaceutical Corporation: Due to recent acquisitions, the client needed to rapidly accommodate new organizational entities, and to strengthen its IT governance to more closely align IT investments with business priorities and harness the full strategic value and potential of IT.

Accenture worked closely with key members of the client’s IT Board to assess IT governance capabilities. The team applied its deep skills and innovative methodologies in IT governance and strategy to deliver an IT Governance Handbook defining principles and distribution of decision-making responsibilities within the new IT governance model, an implementation plan for the new IT governance model and a decision paper for the CFO about the company’s future global IT infrastructure organization.

b. Finnish Government – State-wide Information Society Program: The Finnish Government sought to build a governance, operating and organization model for a new IT function governing all IT activities for the State of Finland. The aim was to coordinate and oversee all government IT spending and to standardize IT services. Accenture led the work group, planning, facilitating and documenting workshop sessions, delivering workgroup materials and ultimately outlined the foundation of a centralized State IT Governance Office. Accenture defined functions, roles and skill requirements for the new department and estimated its resource needs.


Organisation Name Adaptive Frameworks (Projection Management Consultants)

Trading Name Adaptive Frameworks

Contact Mrs Darilyn Evans

Address Suite 709, 343 Little Collins St

Suburb Melbourne

State Victoria Postcode 3000


Website http://www.adaptiveframeworks.com.au/


ABN 33105407627

Company Background Adaptive Frameworks is one of the most successful providers of Project Management and Program Management expertise in Australia. Established in 2004, the company specialises in the application of PRINCE2 and Managing Successful Programs (MSP) and provides consultancy and training in these and other best practice frameworks.

Adaptive Frameworks focuses on providing assistance to organisations transitioning to consistent best practice approaches. Our consultants have significant working knowledge of both public and private sector projects and programmes equipping them to add considerable value to our clients through real-life experiences. Our list of federal government clients includes: The Department of Veterans Affairs, the Department of Employment and Industrial Relations, Centrelink and the Department of Defence.

Other clients include state government departments across Australia and many organisations from the private sector. When providing practical solutions to organisations Adaptive uses its significant project management methodology expertise, particularly PRINCE2, MSP and PMBOK.

Company Accreditation (Optional) Accredited Consulting Organisation (APMG)

Accredited Training Organisation (APMG) for PRINCE2, MSP and P3O

Members of the Australian Institute of Management

All consultants are individual members of the Project Management Institute

Corporate Governance of ICT Adaptive Frameworks understands Australian Standard 8015-2005 and other guidance materials published on corporate governance of ICT as well as the need to tailor these to the specifics of a client's culture and established organisational processes. Information is key and Adaptive Frameworks have established simple tools to extract management information to assist in prioritisation of the portfolio of projects, assist in the resolution of resource issues and provide traffic light summaries to senior ICT management.


Recent assignments of our staff include (1) a health check for the CIO on a major programme at the Department of Infrastructure, (2) establishment of a Project Management Office and embedding of a consistent framework for the same Department and (3) the establishment of appropriate project approval processes for the IT Division of a major WA industrial.


Organisation Name Ajilon Trading Name

Contact Mr Stephen Liston

Address Suite 13, 3-5 Phipps Close

Suburb Deakin



Website www.ajilon.com.au


ABN 25076517354

Company Background Ajilon is one of the largest independent management consulting and systems delivery companies in Australia with over 500 consultants across the country. Ajilon has been successfully delivering hands-on services to Australian and international businesses for over a decade. We have deep expertise in Management Consulting in ‘hands-on’ change management, leadership and organisational development, Corporate Governance, Project Management, PMO creation and management, Project Remediation, Risk Analysis and Management and DR Planning, Benefits Realisation, Business Analysis and BPO, combined with strong partnering capability. Our client list includes a wide range of blue chip companies and industry leaders, who value us because we work as part of their team - helping to achieve business outcomes together. Our success is reflected in our long term business partnerships with many leading organisations including BHP Billiton, Telstra, NSW Department of Lands, HBF Health Funds, HBOS Australia, GE, Telstra and Federal and State Government agencies. Ajilon and our consultants take a longer term view and we stand by the services that we deliver. In fact, one of Ajilon’s strategies is to forge strong relationships with relatively few clients, serving those clients very well

Ajilon and our consultants take a longer term view and we stand by the services that we deliver. In fact, one of Ajilon’s strategies is to forge strong relationships with relatively few clients, serving those clients very well.

Company Accreditation (Optional) At Ajilon, we operate within an ISO9001 quality system and in the areas of financial compliance must also comply with the Sarbanes Oxley accounting standards. We are members of AIM, the AIPM and the AIIA. Over 70% of our consultants are trained in Prince2 as part of our on-going training program. As well as having expertise in industry standards and methodologies such as ITIL, Prince2, and RUP, Ajilon has developed a tried and tested suite of scalable methodologies that provides flexibility and is suitable for any project. Ajilon’s Diamond methodology supports the full scope of services that we offer and provides a mechanism for measuring the resulting organisational benefits.

Corporate Governance of ICT Ajilon services include: - Development of Governance Frameworks - Corporate and IT - Compliance Performance Monitoring Frameworks - Governance and Compliance Audits and


Health Checks Ajilon brings experience of global standards and frameworks including COBIT, ITIL, PMBOK and PRINCE2. Within the Commonwealth Government Ajilon’s approach reflects: - The whole of government ICT investment principles set out by AGIMO - Financial Management and Accountability Act 1997 (FMA Act) - Australian Standards for ICT Governance (AS8015) Ajilon takes the time to understand your business situation and tailors our approach to offer: - Assistance in understanding and documenting your processes, systems and policies. - Gap analysis between your organisation’s processes, systems and policies and the relevant regulations. - Assistance in setting up a monitoring framework for compliance. Clients choose Ajilon because: - We have developed our robust, practical and proven approach over many client assignments. - Our Governance and Compliance methodology and tools work - just ask the clients that we’ve worked with. - Partnership is our ‘mantra’ and we engage with all parties affected by the governance and compliance program. - We deliver a sustainable IT function that is business-focused, process-oriented, controls-based and measurement-driven. - We provide auditable compliance with legislation and policy requirements Examples of our experience: Over a 15 month period, we have, in collaboration with a group of client-based resources and partners, designed, project managed and delivered a COBIT-based IT process and application controls framework, coupled with a COSO-based risk management framework for Telstra. The Chamber of Commerce and Industry (CCIWA) is the premier body in Western Australia that facilitates and assists business and commerce in that state. Ajilon provided consulting services which delivered a report comprised of the following: - High Level Business Model - IT Governance Model - IT Application & Technical Architecture Blueprint - IT Strategy


Organisation Name Andrew Cox & Associates Pty Ltd Trading Name Andrew Cox & Associates Pty Ltd

Contact Mr Andrew Cox

Address 3/19 Ashby Circuit

Suburb Kambah



Website


ABN 16144996350

Company Background Andrew Cox is a corporate governance professional with extensive experience in governance, audit and risk management. He has managed Internal Audit functions over his career including Senior Executive roles as National Manager of Internal Audit at Centrelink and Director of Risk Management Services for the Northern Territory Government. He worked for the Institute of Internal Auditors (IIA) for 3 years to develop improved governance, audit and risk management in Australia, and more widely as a member of an international IIA committee to improve quality in internal auditing. Areas of expertise: Governance ICT Governance Audit and consulting Risk management Auditing auditors Business continuity and ICT disaster recovery Strategic management Project management Change and capacity building programs Fraud and corruption prevention Investigations Security Consulting clients have included Abu Dhabi Investment Authority, ActewAGL, ACT Government, AusAID, Austrade, Australian Broadcasting Corporation, Australian National University, Australian Taxation Office, Corporate Express, Defence Materiel Organisation, Department of Human Services, Department of Immigration and Citizenship, Dubai Investments, Edith Cowan University, Energex, General Practice Education and Training, Hydro Tasmania, Lotterywest, National Blood Authority, Western Power, and Woodside Energy.

Company Accreditation (Optional) Education: Master of Business Administration (Southern Cross University) Master of Electronic Commerce (Murdoch University) Graduate Diploma of Science – Security Science (Edith Cowan University) Graduate Certificate in Performance Auditing (University of Canberra) Advanced Diploma in Accounting (Accounting Education Australia) Diploma in Business Administration (Technical and Further Education) Diploma in Public Administration (Technical and Further Education) Certificate in Software Quality Assurance and Management (University of Western Australia and Australian Computer Society) Professional Certifications: Certified Internal Auditor – CIA Certified Information Systems Auditor – CISA Certified Fraud Examiner – CFE Certified Government Auditing Professional – CGAP Certified Software Quality Analyst – CSQA Certified Fellow Institute of Internal Auditors – CFIIA Associate Institute of Public Accountants – AIPA Accredited Internal Auditor Australia – AIA(Aust) Member Australian Computer Society – MACS Professional Memberships: Association of Certified Fraud Examiners Australian Computer Society Information Systems Audit and Control Association Institute of Internal Auditors Institute of Public Accountants Risk Management Institution of Australasia


Corporate Governance of ICT Significant experience in governance, audit and risk management. Has a network of skilled practitioners who can assist on larger specialist projects. Works in Australia and internationally. Areas of expertise: Governance ICT Governance Audit and consulting Risk management Auditing auditors Business continuity and ICT disaster recovery Strategic management Project management Change and capacity building programs Fraud and corruption prevention Investigations Security Recent Projects: •Department of Human Services – Specialist governance, risk management and business continuity services to the Department of Human Services for its Data Centre Program to amalgamate data centres for Centrelink, Medicare Australia, Department of Veterans’ Affairs, Child Support Program and CRS Australia. •Federal Audit Office of the UAE - Implementation of Oracle e–Business Suite Release 12 finance and human resource modules, with implementation in both the English and Arabic languages, believed to be the first time this had been done anywhere in the world. National Blood Authority - A business continuity plan he developed was enacted in a real crisis situation and won a ‘highly commended’ award at the 2007 Australian Government awards for excellence in risk management. It then featured as a case study in the Australian National Audit Office better practice guide on business continuity.


Organisation Name Aperium Pty Ltd Trading Name Aperium Pty Ltd

Contact Mr Michael Holzer

Address Level 27, 101 Collins Street

Suburb Melbourne

State VIC Postcode 3000


Website http://www.aperium.com/


ABN 20097664018

Company Background Aperium is an independent management consultancy group. Aperium was founded in the year 2000 and subsequently incorporated in 2001, with the view that prevailing consultancy models could no longer meet the client need for demonstrably independent advice. Aperium positions its consultancy services exclusively to encompass the development of strategic and operational business plans that are effective and efficient, by the alignment of identified objectives with proven technological capabilities to create implementation roadmaps at enterprise, business unit and technology levels. We regularly have followed this by the provision of subsequent program and project management direction to assure the best possible implementation process. Aperium employs and deploys only most senior and experienced personnel, adhering rigidly to the principle that the level of service we provide to our clients will be of a consistently high degree of excellence. Our consultants have, on average, 15 years experience designing or managing major and large scale projects and programs Aperium values highly, and vigilantly maintains its independence in its selection of technology providers to avoid compromise in service delivery. Over the past 10 years Aperium’s innovative approach has enabled many successful programs and projects working alongside both private and government organisations throughout Australia.

Company Accreditation (Optional) Aperium services are performed in compliance with ISO 9001:2000.

Additionally, we draw upon the standards that are applicable to our services and the requirements of the client. We have adopted a series of elements from ISO 9001:2000 to utilise in our Quality Management Process.

The Aperium Approach has been developed, to enhance the capability of meeting the quality outcome of our client, this approach draws upon the tools of the appropriate industry bodies such Strategic Planning Category, Version 18, February 2010 as; the Australian Institute of Project Management, the Office of Government Commerce (UK) and the global Project Management Institute.

In each assignment the Aperium Approach is used to maintain compliance with the appropriate client nominated standard and that of ISO 9001:2000.

Applicable Standards that form the foundation of our approach:

Office of Government Commerce (UK) – Managing Successful Programs


Office of Government Commerce (UK) – Project Management Method, PRINCE2

Project Management Institute – The Standard for Program Management

Project Management Institute – PMBoK Guide, Third Edition

AS8015 – Corporate Governance of Information and Communication Technology

Preferred Supplier Panels include: Defence (DMOSS, LISTSS, Financial Systems), DHS(ICT Consulting Services), FaCSIA (ICT Services) and Victorian Whole of Goverment eServices Panel.

Corporate Governance of ICT In the delivery of Corporate Governance Services for ICT, Aperium offers Project Initiation Planning, Program Management Office Design, Program Review, Program Governance, Risk Management and Quality Assurance services encompassing measures, escalations, reports, audits and organization. These services are provided under the Aperium Approach in compliance with AS8015-2005.

As demonstrated below, Aperium has in practice facilitated the development of Corporate Strategy Guidelines, and draws upon the Portfolio, Programme and Project Management Maturity Model (P3M3), and the Organisational Project Management Maturity Model (OPM3) as they apply to organizational governance.

Some recent examples of Aperium’s delivery of services for corporate governance of ICT include Sensis Identity Management Shared Services Corporate Strategy, whereby Aperium assisted the client in defining the strategy that was to apply to all projects surrounding the implementation of the Identity Management Tool. Aperium worked closely the client in the areas of Security and Authentication and Business Rules and Processes.

Aperium has also been engaged by the DMO to develop the Business Model, Organisational Model, Process Model and Implementation Plan for the Defence eBusiness Office.


Organisation Name Apis Consulting (Apis Group Pty Ltd) Trading Name

Contact Ms Carol Pasfield

Address 4/18 Bentham Street

Suburb Yarralumla



Website www.apisgroup.com.au


ABN 91125472899

Company Background Apis Group is a Small to Medium Enterprise specialising in the provision of high-quality, professional business services to Government, leveraging a foundation of core management capabilities. We have access to a range of consultants and contractors who have formal accreditation in project management and/or an extensive track record in managing and implementing projects.

Apis has demonstrated flexibility and adaptability in working with a variety of cultures, methodologies and service delivery frameworks. Our success demonstrates our ability and willingness to use and/or adapt client processes and reporting mechanisms.

Apis is experienced in guiding and informing organisational improvement through technology, and is adept at tailoring leading practice methodologies to the specific needs of client organisations. We emphasise the importance of understanding an organisation’s business and cultural drivers before investing effort in developing and implementing an appropriate solution.

Apis offers more than a predefined number of consultants – we offer a capability that provides the following benefits:

- Access to a broader range of expertise, as and when required;

- Flexibility and responsiveness;

- Quality outcomes through Apis’ peer review system;

- Surge capacity during periods of demanding or conflicting task priorities; and

- Built-in redundancy to ensure seamless delivery of service.

Company Accreditation (Optional) Apis sits on over 40 Government panels, including:

- Australian Communications and Media Authority – provision of IT consultancy services; - Centrelink and Medicare – ICT contractor services;

- Department of Families, Housing, Community Services and Indigenous Affairs – IT contractors

- Australian Customs Service – ICT Market Testing;


- Australian Customs Service – Consultancy and business services;

- Australian Customs Service – ICT contract personnel and related services;

- Australian Public Service Commission – Leadership, learning and development provider;

- Australian Taxation Office – Design and strategy services;

- Austrade – Information management and knowledge management;

- Austrade – IT consulting and solution services;

- Department of Foreign Affairs and Trade and Austrade – Management and professional skills training;

- Department of Broadband, Communications and the Digital Economy – Corporate governance services;

- Department of Human Services – ICT management consultancy services;

- Department of Health and Ageing – Organisational design, change management and facilitation services;

- Department of Health and Ageing – Panel to provide consultancy services 2007-09; and

- Department of Veteran Affairs – Provision of design and strategy services under a parallel arrangement.

Corporate Governance of ICT Corporate governance is a core capability of Apis’ service offerings. Apis offers high-quality, value of money services with a depth of experience to government clients and ICT and infrastructure-related assignments. Apis provides a lean, agile and flexible capability with a principles-based approach applying recognised governance methodologies including PMBOK and PRINCE2.

Apis delivered to the Department of Education, Science and Training a whole-of-department IT portfolio management framework undertaken as a program management review followed by a benefits realisation strategy, an implementation plan and supported by coaching of key staff. Apis tailored a solution to DEST’s culture and environment, drawing on elements of various better practice methodologies and included various tools and templates for monitoring and measuring performance and a handbook for senior executives.

Apis is currently providing a range of consultancy services to the Department of Health and Ageing for the Pharmbiz program. Our services include governance advice and methodology, strategic advice, quality assurance, program and project management, business and work practice analysis, and procurement. Apis has developed and implemented tailored governance and program management methodologies that are ensuring the successful delivery of outcomes.


Organisation Name ASG Group Limited Trading Name ASG Group Limited

Contact Mr Graham O’Sullivan

Address Equinox 1, Level 3, 70 Kent Street

Suburb Deakin



Website www.asggroup.com.au

Email graham.o’[email protected]

ABN 57070045117

Company Background ASG is an award winning and wholly Australian owned IT business solutions provider, offering IT management and consulting services, business intelligence and thought leadership. Established in 1996 our goal is to provide innovative, high quality and cost-effective services to our valued clients. ASG has over 800 consultants’ nationwide providing services in the IT Industry.

Company Accreditation (Optional) Quality Management Standard AS/NZS ISO 9001:2008. IT Service Management ISO/IEC 20000.1:2007. Environmental Management AS/NZS ISO 14001:2004.

Corporate Governance of ICT ASG has experienced senior consultants that are considered by industry as experts and thought leaders in ICT Governance. Our consultants are active contributors to the development of standards such as AS8015, ISO 20000, ISO 38500, AS8018, COBIT and ITIL. We have developed rigorous methodologies, tools and experience based knowledge that we apply to our ICT Governance engagements developed over a number of years and across many customers. CS1: Australia Post We have been the trusted advisors to the CIO and IT management team at Australia Post over many years on all things IT Service Management and Governance. We have developed and implemented the ICT Governance Framework based on AS8015, ISO 2000 and underpinned by leveraging controls from COBIT v4 and ITIL v2 and v3. The project involved multiple executive stakeholders both business and ICT in the development of supporting policies, processes and practices. RACI matrices and performance scorecards were implemented to measure the outputs of processes against best practices and the compliance and effectiveness of the process execution. CS2: SP AusNet We were engaged by SP AusNet to develop a governance model and framework for their business shared services organisation that incorporated service delivery for IT, HR, Finance, Procurement, Property and Fleet Management services. We developed a model, implementation plans and assisted in the roll out (primarily in training and mentoring). The project to implement the IT component of this model and framework was the winner of the ITSMF Most Innovative use of ITIL award in 2007.


Organisation Name ASI Solutions (Anabelle Bits Pty Ltd) Trading Name ASI Solutions Pty Ltd

Contact Mr Darryl Maloney

Address Unit 4, Block A, Trevor Pearcey House Traeger Court, 4/28 Thynee Street

Suburb Bruce



Website www.asi.com.au


ABN 40068649972

Company Background About ASI Solutions: An Overview Anabelle Bits Pty Ltd, a privately owned Australian company (ACN 068 649 972,) trading as ASI Solutions. Since its foundation in 1985, the Company has grown to become one of Australia’s leading ICT companies currently employing approximately 185 staff Australia wide. ASI Solutions’ customer base varies in scope from Federal and State Government Agencies to the SME market. Some of our major customers include: Department of Defence, the Education sector, utilities, Police Forces, Telstra and major commercial franchises. In a market of increasing complexity, ASI Solutions has the ability to blend both technical expertise and business understanding into a unique and exclusive offering to its clients. This is achieved by committing and supplying solutions with the flexibility and foresight which ensures we are one step ahead of the competition. Planning, combined with a structured approach to management and deployment, supports our model. This will help any client with forecasting its needs and with developing its technology plans to align and integrate them with business goals and objectives. Our strengths reside in Strategic Consulting - Service Management - Security Consulting (IRAP etc) - Resumption Strategies - Solution Design & Implementation - Hardware supply

Company Accreditation (Optional) AASI Response ASI Solutions is proudly an AS9001:2000 Quality Assured Company and operates within the ITIL Framework for its service delivery. ASI Solution’s activities comply, with the requirements of the Commonwealth Protective Security Manual (PSM), the Australian Communications Electronic Security Instructions 33 (ACSI-33) and relevant Australian standards. The compliance framework for ASI Solution’s IT security is the Information Security Management ISO/IEC 17799:2001 against which the ASI Solutions undertakes regular Threat Risk Assessments (TRAs)

Corporate Governance of ICT ASI Response ASI Solutions has the capabilities to provide services around Corporate Governance of ICT. We are able to design and facilitate improvements in line with Governance Frameworks. Additionally our staff, have experience in maturing, and integrating the governance capabilities of Government departments. They have been pivotal in: facilitating effective engagements with vendors and stakeholders; assisting key stakeholders to undergo organisational change; and have been able to structure organisations to manage business improvement, organisational development


and communications projects. Our staff have authored documents for the Customs office with respect to the department’s IT service Governance which describe a framework to support Custom’s future ICT sourcing arrangements. Our staff is versed in the AS8015-2005 and have previously provided advice to integrate and streamline procurement processes, change policies, and stakeholder engagement for the managed services outsourcer for the Department of Finance. ASI Solutions staff are able to:

Establish clearly understood responsibilities for ICT

Plan ICT to best support the needs of the organisation

Acquire ICT for the right reasons in the right way

Ensure ICT performs well whenever required

Ensure that ICT conforms to external regulations and internal policies

Ensure ICT use meets evolving needs


Organisation Name Australian Continuous Improvement Group Pty Ltd (ACIG)

Trading Name ACIG

Contact Ms Michelle Scott Tucker

Address 203 Drummond St

Suburb Carlton

State Vic Postcode 3053


Website www.acig.com.au


ABN 51005821821

Company Background At ACIG we collaborate with our clients to improve performance of their core capabilities, processes and assets. We deliver our services within key competency areas such as: • Governance (corporate, supplier, program / project, service) • Strategy (business strategies and supporting functions such as ICT) • Business processes (including practices and standards such as LEAN, ITIL, COBIT, PRINCE2) • Workforce (leadership, culture, performance) The Australian Continuous Improvement Group (ACIG) was founded in 1992. Over twenty years we have built an outstanding reputation for delivering high quality services across industries and markets. We have worked successfully with federal, state and local government agencies as well as with the private sector. ACIG consultants are also active internationally, working with the Asian Development Bank throughout Asia and the Pacific. We understand that it’s all about people – your people. It’s about stakeholders receiving the best possible outcomes. It’s about staff being able to deliver the highest quality services. It’s about people making the best use of scarce resources. And it’s about providing your organisation with practical and innovative options. Our credo is: Working smarter. Increased productivity. Greater profits. Streamlined operations. Improved stakeholder outcomes. And for twenty years we’ve helped our clients every time.

Company Accreditation (Optional) Consultants working in ACIG have accreditation in many different disciplines including Lean Manufacturing, Six Sigma, Governance, Service Management (ITIL) and Prince2. Our people are also members of key professional bodies, including the Australasian Evaluation Society, the Institute of Public Administration Australia, the Institute of Management Consultants, the American Society for Quality, and the Australian Institute of Company Directors. As well, ACIG has operated a quality management system to ISO9001 standard for almost twenty years. We all know, though, that accreditation is not synonymous with high quality, successful delivery or even getting it right. At ACIG we pride ourselves in accurately assessing what is suitable for, and the most beneficial to, our clients. We use existing frameworks as well as tailored approaches. Our greatest asset is our combined practical experience. We have applied our knowledge in the field and learnt from our successes and challenges. We know what works and what doesn’t.


Corporate Governance of ICT ACIG specialises in enabling sound decision-making in organisations: defining governance and operationalising it. We work with stakeholders to define the enterprise role of ICT and specify investment versus risk, relationships with customer bases such as end users, business units, but also suppliers. We ensure leadership, culture, processes and organisational structures are optimised so organisations realise their strategies and objectives. In our practice we have used - where applicable and relevant for our clients - standards, methods and practices including ISO, AS8015, Val IT, Balanced Scorecard, Six Sigma, Lean, TOGAF, Cobit, CMM and ITIL. We have also worked with international ICT governance authorities, with whom we have ongoing working relationships, thus ensuring outstanding backup and research. Clients we developed Governance Frameworks for include Australian, State and Local Governments, and also commercial enterprises. We aim for an integrated view on governance that combines good business practice (ROI, Risk, Strategy, Compliance) with sound planning and reporting on workforce, finance, process efficacy, program / project management practice and leadership and culture change. Project Examples: a)Development of Governance Framework for former Department of Administration and Information Services (South Australia) mandating maturity development, interfaces and reporting arrangements of government agencies and future ICT suppliers in multi sourcing context. b)Development of a Service Governance Framework for Customs governing end to end service management in multi sourcing arrangements for ICT suppliers, using a team of internationally renowned ICT governance and sourcing experts.


Organisation Name BCM in a Box (BCM Solutions Pty Ltd) Trading Name BCM in a Box

Contact Mr Scott Lansley

Address 19 Clothier Rd

Suburb Menai

State NSW Postcode 2234


Website www.bcminabox.com


ABN 33123324390

Company Background BCM Solutions Pty Ltd is a specialist Business Continuity Management (BCM) solutions provider of powerful, flexible and simple BCM solutions comprising of externally hosted software, independently accredited training and experienced consultancy services aligned to the world's most stringent BCM standards, guidelines and principles. We are a 100% Australian owned and operated company. Our clients operate in various industries and include: Westpac, Al Rajhi Bank, Goldman Sachs, Goulburn-Murray Water, Statewater (NSW), Warringah Council, Manningham Council, Darwin City Council and Ausgrid. We have provided services including software deployment, project management, Risk Management consulting and Business Continuity training across our client base. We are experienced practitioners with many years of practical Business Continuity Management (BCM) experience whose primary objective is successful client outcomes. Implementation support is available to assist clients with the deployment of BCM in a Box software and other general BCM, Risk Management and Incident Response activities. Wherever possible, we employ a 'train the trainer' to enable knowledge transfer. We can provide strategic or tactical consulting on a wide variety of topics under the Operational Risk umbrella.

Company Accreditation (Optional) As a small company, we control quality directly through the involvement of the company directors in day to day operations. Our SPRINT rapid application development software design methodology enables us to efficiently manage system change and releases to multiple customers around the world. Our BCM Fundamentals course is independently certified by the IRM (London) to ensure we maintain high quality results with our training programmes.

Corporate Governance of ICT Two recent deployments have included: 1) Establishment of Business Continuity planning and response capabilities across the whole of Warringah Council. This project used the BCM in a Box software to plan, build and test Continuity Plans for all critical processes. Approximately 50 BCPs have been developed. During the project, the client requested us to develop a Tsunami Response Plan for a Day Care Centre and to assist with the documentation of the recovery requirements for Internet-based systems that the Councils stakeholders depend on. The BCM in a Box software design incorporates governance reports so that the status of the project can be instantly reported on. 2) Goulburn-Murray Water also deployed the BCM in a Box software system to address their Business Continuity requirements. Approximately 60 BCPs have been developed for the critical


processes of the organisation. BCM Solutions have project managed the deployment and were recently invited to manage the enhancement of IT's Disaster Recovery capabilities to leverage the use of a new alternate data centre. This DR project required preparation of stakeholder engagement information which resulted in the creation of the IT Service Continuity Principles. This document articulated the approach that G-MW was taking and enabled a common platform for vendors and business owners to understand the key concepts and technology layers and mechanisms being used to enable system availability. All planning for IT DR was aligned to current business requirements by correlating back to information obtained during Business Impact Analysis workshops within the system.


Organisation Name Birdanco Nominees Pty Ltd ATF the Birdanco Practice Trust

Trading Name RSM Bird Cameron

Contact Mr Ged Stenhouse

Address Level 1, 103-105 Northbourne Ave

Suburb Canberra



Website www.rsmi.com.au


ABN 33009321377

Company Background RSM Bird Cameron was founded in 1922. Since that time we have grown to become a truly national firm with 27 offices, 84 partners and over 900 staff. At an international level, RSM Bird Cameron is a core member of RSM International, the sixth largest network of accounting and consulting firms, which groups together approximately 32,000 professionals from 83 countries worldwide. RSM Bird Cameron offers the full suite of corporate and government financial and advisory services including a dedicated Risk Management Services team. An important capability within this team is the IT audit, IT risk management and related IT consulting disciplines. We have only selected those categories where we have particular and specific strengths (Corporate Governance of ICT, Project Governance, Project Outcome Evaluation and Benefit Realisation Management). Our resourcing commitment to identify the most appropriate personnel for each engagement provides our clients with certainty that, where necessary, we can provide quality experienced personnel and, in the event of a staff member leaving, being able to replace staff with similar experience without unnecessary delay. Legal Entity: Birdanco Nominees Pty Limited (ABN: 33 009 321 377) practicing as RSM Bird Cameron (ABN: 65 319 387 479).

Company Accreditation (Optional) RSM Bird Cameron has obtained Quality Assurance certification AS/NZS ISO 9001:2000. This external endorsement supports our commitment to quality and service excellence. Our Directors and staff are members of CPA Australia or The Institute of Chartered Accountants in Australia and adhere to their Joint Code of Professional Conduct. This Code addresses inter alia: Integrity, Objectivity, Independence, Confidentiality, Technical and Professional Standards, Competence and Due Care, and Ethical Behaviour. As a member firm of the Institute of Chartered Accountants in Australia, RSM Bird Cameron is committed to compliance with the Quality Control criteria stipulated in the Institute’s Statement of Quality Control Standard APS4 and its manual “Quality Control Management in Accounting Practices”. The key staff nominated for the selected IT related consulting engagements are all experienced and between them hold the following relevant accreditations. • Certified Information Systems Auditor (CISA) • Certified in the Governance of Enterprise IT (CGEIT) • Accredited Lead Auditor, ISO 20000 IT Service Management • Member British Computer Society ITSM Accreditation & Audit Panel • Member of the Information Systems Audit and Control Association


Corporate Governance of ICT RSM Bird Cameron maintains standard work programs for all IT risk management related assignments, including Corporate Governance of ICT, however in each assignment the programs are tailored to fit the purpose and specific client requirements. Gil Smith is Certified in the Governance of Enterprise IT (CGEIT), is an accredited Lead Auditor for ISO20000, Certified Information Systems Auditor (CISA) and a Member of the British Computer Society ITSM Accreditation & Audit Panel. Recent examples include: NSW Trade & Investment (March 2009) IT Governance Review. The assessment program was consistent with AS8015-2005, COBIT IT Auditing Guideline for IT Governance; also incorporated relevant aspects of ITIL, ISO 20000 and ISO 27002. Assessed effectiveness of the framework and processes implemented through interview/confirmatory interviews (all primary business stakeholders and ICT), examination of documentation and records, and, independent direct testing. A formal report (detailed recommendations and agreed actions) to the Executive and Audit & Risk Committee was augmented with management presentation, interaction/feedback throughout the review and subsequent consultation relating to QA of effectiveness of remedial action. Well received and resulted in significant improvements. City of Sydney (February 2012) entity wide IT Risk Assessment incorporating IT governance as a major focus. Develop a risk baseline for the City’s IT infrastructure, systems, data and ISU resources, from the business perspective focusing on the City’s governance of ISU/IT. Similar basis, scope, approach and outcome to above. Reporting was in the form of a Risk Assessment Report incorporating a risk mitigation plan, identifying areas for improvement.


Organisation Name Blue Zoo (Blue Zoo Holdings Pty Ltd) Trading Name Blue Zoo

Contact Mr Anthony Friday

Address Level 1, 414 Murray Street

Suburb PERTH

State WA Postcode 6000


Website www.bluezoo.com.au


ABN 87119062850

Company Background Blue Zoo is a boutique Australian advisory practice with a substantial international footprint; delivering business in India, Singapore, Indonesia and the UK. The company specialises in governance, strategy and risk; and is widely regarded as one of Australia’s premier advisory firms.

Blue Zoo has an unparalleled depth of advisory experience, and operates across the three broad practice areas of corporate advisory, professional conduct and technology advisory services.

Blue Zoo’s point of difference is the approach that we take to the delivery of these services. Whilst we use the same international frameworks and standards as our competitors; Blue Zoo is much more focused on tailoring them for local conditions. This means that we only use seasoned and experienced professionals within our business, and our recommendations are practical, implementable and measurable.

These claims are based on a wealth of experience, innovation, pragmatic recommendations, and Blue Zoo’s ability to discover and understand business drivers before envisioning how an organisation can best support them.

Many of Australia’s most successful companies rely on Blue Zoo to deliver their products and services more effectively, to enhance shareholder value, and to build more resilient and more sustainable organisations.

Company Accreditation (Optional) The Blue Zoo quality management system is ISO9001-based, and consists of documented, planned and industry developed systems; including internal planning and review processes; and external / third party peer reviews. Control features in the Blue Zoo quality assurance program include thorough planning and project management training; standard methodologies; standard report formats; and thorough multi layered process reviews. All engagements are subject to file and report review involving an internal quality assurance officer. This system ensures consistency of standards in meeting the expectations of clients, the profession and the general public. Blue Zoo Advisors are members of numerous professional bodies and holders of internationally-recognized qualifications. The entrance requirements of these professional bodies and for attainment of these qualifications are high, and continuing annual professional development is a mandatory requirement. Blue Zoo Advisors are selected through their depth of experience in a specific practice area. All have an impressive list of formal qualifications and certifications and, equally importantly, have a wealth of


pragmatic experience in fulfilling these functions. Advisors in the corporate advisory practice area are all serving company directors, Fellows of the Australian Institute of Company Directors, and Fellows of the Corporate Directors Association. All have international exposure and have

Corporate Governance of ICT Blue Zoo has a deep level of domain expertise in delivering the corporate governance of ICT, particularly within Government Agencies and large listed companies. Governance services encompass governance frameworks, maturity modelling, benchmarking, program and project governance, and risk/quality assurance services. In a recent engagement, the Catholic Education Commission contracted Blue Zoo to draft a maturity model and an ICT governance framework to be suitable for deployment throughout all Catholic schools. The model and framework needed to be sufficiently scalable and flexible to accommodate both large and sophisticated metropolitan Colleges as well as remote and poorly-resourced regional areas. The model and framework were piloted successfully before delivery throughout the network of Catholic Education Commission schools. Adoption has been widespread, with extremely positive feedback to the Catholic Education Commission. The Commission has also been pleased, as the framework has supported to more informed decision-making regarding need identification and sector-development spending. The Insurance Commission of Western Australia sought Blue Zoo’s support in redeveloping their ICT governance model. This involved revising the ICT policy suite, developing a set of underpinning standards, and then drafting all supporting procedures. The program of work reached into most executive and operational areas of the business, and met with a very positive reception. The Chief Information Officer of the Commission commented that Blue Zoo’s work had introduced a new sense of rigour and control in the way that the Commission utilised ICT in delivering services to its internal and external customers.


Organisation Name Booz & Company Trading Name Booz & Company (Aust) Pty Ltd

Contact Ms Jaidene Osborne

Address Level 7, 7 Macquarie Place

Suburb Sydney



Website www.booz.com/anzsea


ABN 11130171658

Company Background Booz & Company is a leading global management consulting firm, helping the world’s top businesses, governments, and organizations.

Our founder, Edwin Booz, defined the profession when he established the first management consulting firm in 1914.

Today, with more than 3,300 people in 57 offices around the world, we bring foresight and knowledge, deep functional expertise, and a practical approach to building capabilities and delivering real impact. We work closely with our clients to create and deliver essential advantage.

In Australia, New Zealand and South East Asia (ANZSEA), Booz & Company has been advising clients since 1987. We’ve worked on significant, large scale and high impact assignments for the region’s major corporations and government organisations. We combine extensive global experience with local knowledge and understanding, ensuring our clients receive optimum solutions.

For our management magazine strategy+business, visit www.strategy-business.com.

Visit www.booz.com to learn more about Booz & Company.

Company Accreditation (Optional)

Corporate Governance of ICT Corporate Governance of ICT focuses on linking the strategic intent provided by boards or government with the many decisions made across the organisation day to day, that in effect, implement the strategy. The foundations of ICT Governance are decision making forums, the business processes that feed these forums, and the enabling organisations and communication mechanisms that propagate the outcome of decisions. Booz & Company uses an IT Operating Model as a framework to assess current state and recommend future state governance forums, process, and enablers. Key steps in establishing ICT governance include:

- Establishing appropriate decision making forums aligned to critical IT processes. Governance is required in the key dimensions of an IT operation including establishing and managing portfolios of IT activity; Project Delivery; sourcing; IT Operations. especially the issue of change and end-to-end service management; Enterprise Architecture; and overall management of the IT function.


- Establishing IT processes and ownership. Establishing common, well defined IT processes based on frameworks such as ITIL or CobiT is a key step in ensuring that responsibilities are clear and that the performance of IT can be monitored.

- Establishing Business to IT alignment processes. This is achieved through business engagement in IT governance and through key alignment mechanisms such as portfolio management and end-to-end IT Service management.

Two recent client examples:

1) ICT Strategy for an Australian Government Department. Booz & Company provided guidance in the set-up of ICT governance arrangements for a major Commonwealth agency as part of an ICT Strategy.

2) ICT Strategy for an Australian Government Department. As part of an engagement reviewing ICT sourcing, Booz & Company identified the need for a stronger IT Strategy and developed a future state governance framework to help address issues within the strategy development.


Organisation Name BSR Solutions (Business Strategy Review Pty Ltd)

Trading Name BSR Solutions

Contact Mr Greg Reid

Address Suite 902, 370 Pitt Street

Suburb Sydney



Website www.bsrsolutions.com


ABN 21100950516

Company Background BSR Solutions is a business and technology consulting organisation focused on the delivery of high quality, independent consulting services to public and private sector clients. Our key people have been providing business and ICT strategy services, program management, business improvement services and program/project evaluation services to NSW, Victoria and Commonwealth Government agencies for over 25 years. BSR Solutions has focused largely upon the provision of professional independent consulting services to the Government sector. Of our three directors and principal consultants, two have had long public sector careers holding senior executive positions in the IT and Communications arenas. BSR Solutions is accredited to a range of government panel contracts, including NSW Government ITS 2020, NSW Premiers & Treasury Performance Review Panel, the Victorian Government eServices Panel, Queensland GITC, and is an endorsed supplier in relation to a number of Federal Government Agency Panels. Our understanding of Government policy and strategic management frameworks are second to none enabling our people to offer significant domain experience and knowledge to all potential government clients

Company Accreditation (Optional) The ISO9001:2008 Quality System maintained by BSR Solutions and externally certified by BSi, centres on 3 business processes (1) Sales and Marketing, (2) Tender Response Preparation, and (3) Client Project Engagement and Delivery. Our Project Engagement and Delivery process requires continual monitoring and management by the assigned Director and has stage checkpoints for reviews with the BSR project team and/or with client representatives. Our use of the PRINCE2 methodology provides the basis of developing a project charter and plan which ensures the appropriate management controls and review of stage deliverables. In 25 years BSR has not had a client assignment which did not deliver the agreed quality outcomes, was over time or over budget. All of our past and current clients can attest to this.

Corporate Governance of ICT BSR Solutions has been working with State government agencies for more than 25 years assisting with ICT specification and procurement activities, the development of ICT strategic plans, business cases for ICT investment, post implementation reviews and health checks, together with project and risk management services. We have a clear understanding of Government processes and the need to


ensure the integrity of procurement processes from agency and supplier perspectives. We understand the requirements for maintaining independence, objectivity and the avoidance of conflicts of interest. An ICT Corporate Governance assignment was completed for TransGrid accompanied by a strategic sourcing strategy. The resultant governance model improved the accountability of business units and provided transparency in ICT investment decisions. A similar governance model and processes were developed for NSW businesslink, the shared services provider for the Human Services Cluster, where agency roles and responsibilities for joint ICT investment needed to be clearly articulated.


Organisation Name BSTTech Consulting Pty Ltd Trading Name BSTTech Consulting

Contact Mr Bruce Talbot

Address Level 1, 32 Northbourne Ave

Suburb Canberra City



Website www.bsttechconsulting.com


ABN 79123098671

Company Background BSTTech Consulting is a small to medium enterprise that was established in 2007 by a group of Information and Communications Technology (ICT) professionals with extensive government and industry experience. BSTTech’s focus is the provision of trusted information sharing and management solutions to meet the secure information management needs of government. Rather than focus on ‘perimeter security’ of information networks, BSTTech uses Enterprise Architecture (EA) principles, a consulting methodology, and the documentation of business processes, to create Service Oriented Architecture (SOA) based information management systems. These disciplines enable an organisation’s ICT systems to deliver both information sharing and information security business objectives. BSTTech’s core services are based on a structured consulting methodology that provides expertise in the design, build and management of secure information processing systems. BSTTech are leaders in the design and implementation of system architectures that remove the information sharing constraints imposed by traditional network security implementations, where information is held in isolated domains. This capability has significant potential where the ongoing challenge of sharing information between disparate government agencies’ networks exists. In addition, BSTTech can offer a range of generic ICT services including Project Management, Business Analysis, Systems Architecture, and Technology Implementation.

Company Accreditation (Optional) BSTTech Consulting is a Defence Industrial Security Program (DISP) member for personnel and facilities, and is able to hold information security classified up to RESTRICTED on site. BSTTech consultants hold security clearances ranging from SECRET to TOP SECRET Positive Vetting (PV). BSTTech is an Associate Member of the Rapid Prototyping, Development and Evaluation (RPDE) program at Defence. RPDE is a joint industry/Defence program that facilitates productive and rapid engagement between the two groups to solve Defence business, military and computing problems. BSTTech is a supplier under the Defence Materiel Organisation (DMO) Services Supplier Panel (DMOSS), offering consultants for Systems Engineering, Enterprise Architecture, Project Management and ICT Accreditation. BSTTech consultants hold PRINCE2 and PMBOK certifications for the supply of Project Management capabilities.

Corporate Governance of ICT BSTTech’s experienced consultants can design, implement and transition ICT governance programs for business enterprises. Leveraging extensive government experience in the delivery of ICT


services, BSTTech consultants can guide your organisation in the development and implementation of ICT Governance strategies. We have successfully delivered a number of governance programs for clients within the Canberra Region. As a result of our extensive industry experience, BSTTech can offer vendor independent technology solutions that directly and securely address government information processing needs. These include the implementation of complete Multi-Level Security (MLS) systems, sometimes referred to as “The Holy Grail of computer security”. BSTTech’s architectures and solutions use tightly integrated Commercial Off The Shelf (COTS) products, documented and computerised business processes, and a government compliant Metadata Schema to achieve secure information sharing and management. Recent examples of BSTTech Corporate Governance activities include: • Creation of an ICT governance structure for the management of secure research and development programs within Defence. • Development and circulation of a Systems Assurance framework for the adoption by DMO, Defence CIOG and Defence Capability Development Group (CDG). • Development and implementation of a Shared Services governance model for the Customs to realise improved service delivery and reduce costs. • Creation of the Defence ‘Silver Book’ plan for the provision of ICT services by the CIOG to the wider Defence organisation.


Organisation Name Business Aspect Pty Ltd Trading Name

Contact Mr David Lennon

Address 588 Boundary Street

Suburb Spring Hill

State Queensland Postcode 4000


Website www.businessaspect.com.au


ABN 11112888785

Company Background Business Aspect was founded in Brisbane by a group of professionals in the business consulting discipline of the ICT industry. The principals of Business Aspect are considered leaders in their respective disciplines and have worked together for many years as employees, external consultants and associates of a multi-national ICT infrastructure integration company.

Business Aspect offers a number of consulting services across a range of disciplines, including:

- ICT Strategic Planning and Architecture.

- ICT Program and Portfolio Management.

- Project Guidance and Recovery.

- Business Case Development, Tenders and Responses.

- Risk Management, Business and Service Continuity.

Our goal with every engagement is to deliver completely independent strategies and advice that is focused on deliverable outcomes. We have no financial or other link to any vendors, infrastructure or software providers. Our focus is always what is right for our clients.

What this means is that outcomes are developed with a proper understanding of the business drivers and technology solutions. We assist in bridging the gap between technology integrators and traditional management consulting.

We have developed exceptionally strong methodologies and intellectual property that contribute additional efficiency to our consulting engagements, while also providing a solid framework for the delivery of strong outcomes.

Company Accreditation (Optional) Business Aspect has commenced establishing its Quality Management System and is working towards accreditation in late 2007. Business Aspect is committed to quality in all activities and has set its goals to:

- Achieve the highest degree of customer satisfaction.

- Deliver services that are second to none.


- Ensure all customer services are provided within the agreed time.

- Provide a working environment to attract high quality human resources.

- Strive to continually measure and improve the quality of outcomes and processes.

- Ensure compliance with all legal, legislative and contractual obligations.

- Communicate the quality manual, policies and objectives to all staff and actively encourage participation in quality improvements.

The Business Aspect quality management manual and the subsequent processes will be reviewed formally on an annual basis. Additionally, as processes change or new processes are introduced the quality manual will be updated.

The Business Aspect processes are intended to be preventative (i.e. to avoid creating quality issues), continuously improving (i.e to incorporate learning's), adaptive (i.e. to adjust to changes in circumstances) and controlled (i.e. to measure their effectiveness).

Corporate Governance of ICT Business Aspect’s experience in relation to corporate ICT governance includes:

- ICT management and reporting.

- ICT strategy and architecture.

- Program office and project management.

- IT process (e.g. ITIL based).

- Information Security.

- Risk management.

- Contingency planning.

- Business continuity.

Business Aspect has successfully reviewed and developed ICT governance frameworks across private and public sector clients to address governance and management requirements across the full spectrum of ICT operations. Business Aspect consultants are experienced with a number of ICT governance models that align with contemporary business/ICT architecture frameworks such as TOGAF, Australian Government, Zachman, and Meta/Gartner.

Department of Parliamentary Services - ICT Architecture Review

Business Aspect consultants conducted a broad review of ICT architecture for the Department. Specific focus was given to an appropriate ICT governance arrangement to manage architecture, change and strategy. TOGAF was initially used as a framework for the governance arrangements with later alignment to the Australian Government Architecture as it become available. Specific aspects of the governance arrangements that were addressed included: the change process, project/programme proposal and approval, roles and responsibilities, funding, and risk management.

Queensland Investment Corporation

Business Aspect provides an ongoing role in the provision of the IT Risk Management role at Queensland Investment Corporation (QIC). The role includes information security and risk advisory services, development of information security policy framework, user awareness, business continuity planning and coordination, project risk assessment and coordination of internal and external audit activities within the organisation.

SPARQ - Business Continuity Planning

Business Aspect performed a business impact assessment (BIA) and risk analysis focussing on the availability and continuity of SPARQ’s business operations. Following the BIA and risk analysis, a comprehensive business continuity plan (BCP) was developed. A prerequisite to the BCP was the development of a BCP policy and methodology.


Organisation Name Capstone Asia Pacific P/L Trading Name

Contact Mr Sean Collender

Address Level 57 MLC Building, 19-29 Martin Place

Suburb Sydney



Website


ABN 71118522508

Company Background Capstone Asia Pacific is a boutique risk management and consulting company that provides quality ICT services to a broad range of leading government agencies and companies. We deliver a range of reviews of ICT governance, maturity, program/project portfolio management, individual program risk management and post implementation review services. Our skills and professionalism are on par with the largest Chartered Accounting and consulting firms. However, our compact size enables us to provide highly qualified and experienced people as part of our service offering, delivering significant value for money without sacrificing quality.


Corporate Governance of ICT We offer a wide array of services to organisations wanting to understand and/or improve their ICT corporate governance profile. Our methodology is comprehensive and incorporates leading IT services methodologies including Control Objectives for IT (CoBIT) the IT Information Library (ITIL) and Australian Standard 8015-2005 (Corporate Governance of ICT). We have detailed workplans and programs for all aspects of ICT Corporate Governance.

Our services include Diagnostic, Test of Design and Complete Assurance Effectiveness (IT Audit standard). For example, we perform IT Audits to evaluate the effectiveness of key IT internal controls and how those results impact the overall ICT Corporate Governance profile.

Areas of focus include Application Controls, Computing Services, Problem Management, Security (physical and logical security) and System Change Control (incl project management methodology).

We have performed reviews of some of the largest ICT environments in the government. We have performed IT audits for the following government agencies: Australian Customs Services, Department of Health and Aged Care, Centrelink; Commonwealth Rehabilitation Service and Department of Defence

Performed ICT corporate governance review of outsourced IT processes for ING Australia. Review included Help Desk/Problem Management, Capacity Management, Third party management, Customer Service, and contract management. Evaluated outsourcer performance against contract, Service Level Agreements as well as leading practice (ITIL, CoBIT).


Organisation Name CDRU NSW Pty Ltd (Cost Down Revenue Up) Trading Name Cost Down Revenue Up

Contact Mr Ian Woollett

Address Level 1, 153 Walker Street

Suburb North Sydney



Website www.cdru.com.au


ABN 58134655673

Company Background CDRU provides strategic IT sourcing services to large, complex ASX top 200 or public sector organisations driving sustainable cost reduction initiatives while meeting business requirements for growth. We partner with our clients through a transparent business model that is based on vendor independence and risk-sharing through outcome oriented fee structures. The cornerstone of CDRU’s proven methodology is that cost reduction initiatives require the interlinking between IT strategy development aligned with business needs and IT Procurement, with strong category experience and operational implementation experience to realise cost reduction. How we deliver CDRU applies a proprietary method that integrates the areas of strategy, procurement and implementation in one business case assessment. Step 1: Current State assessment of the enterprise and interrelated core infrastructure across storage, server and desktop, voice and data networks, as well as applications and middleware. Step 2: Financial assessment across operational, capital and staffing budgets. Step 3: Define ‘future state’ operating models and technology options, including the development of infrastructure roadmaps that are best practice whilst reflecting the latest market conditions and vendor offerings. Step 4: Identify Business Case opportunities that can be implemented

Company Accreditation (Optional) CDRU has a proven track record of delivering outstanding results for its clients. All engagements are overseen by a peer review QA system to ensure the highest quality and consistence of deliverables. This quality is demonstrated by the repeat business CDRU obtains from large government and corporate clients, such as Hunter Water, IAG, First Data, Coates Hire, RICOH, Transfield Services, Investors Mutual Limited. Our consultants are qualified in a range of program & project methodologies (PRINCE2, MSP, PMP, etc.).

Corporate Governance of ICT CDRU’s staff have individually 25+ years ICT experience within each team member with strategic assessment, selection and real life implementation experience developing 5-year strategic plans for the governance of ICT services. CDRU has considerable experience in ICT service assessments, cost modelling and strategic recommendations for Government and large ASX 100 companies. CDRU, having just completed one of the ICT industries largest outsourcing deals in January 2012, can evaluate what are fast becoming standardised ‘cloud’ service offerings on a comparative basis between some of the largest global providers of these new and rapidly maturing services. This


market IP and insight we believe is unique to CDRU. CDRU has market insights into the changing desktop and end user services markets, where thin client, virtualised desktops is changing the cost paradigms for ‘full service’ fat clients. By aligning that knowledge with Corporate Governance future strategies for management and governance of an organisations ICT services is achieved. Queensland Rail National was a 5 month engagement to review the entire ICT enterprise applications and infrastructure investment. The outcomes were a baseline ICT cost / benefit analysis, assessment on strategic ICT options in platforms and operating models. The CDRU recommendations were approved by the QRN board and CDRU were engaged to deliver the improvement in QRN EBITDA under a shared risk/reward model. The Insurance Australia Group engagement was for CDRU to review, assess and benchmark Enterprise applications investment and operating model, benchmarking FTE’s and costs across entire enterprise applications development and support groups.


Organisation Name Codarra Advanced Systems Trading Name Codarra Advanced Systems Pty Ltd

Contact Mr Warren Williams

Address 251 Crawford Street

Suburb Queanbeyan



Website http://www.codarra.com.au


ABN 81008651723

Company Background Codarra Advanced System’s primary business imperative is the provision of consulting services in ICT, security, project management and various disciplines of engineering. The development of business solutions is offered to provide niche solutions to clients but only where this can be undertaken without creating conflicts of interest. Codarra’s training business provides a vehicle to ensure the highest standards of professional services within Codarra and also to utilise our expertise to train our clients to accredited standards in project management and related disciplines such as requirements engineering. Codarra is a wholly Australian owned company, having been in business for over 21 years. Codarra is an independent entity and has no parent company dictating its objectives.

Company Accreditation (Optional) Codarra is an ISO9001:2008 certified company, certificate QEC27662. Codarra is a Registered Training Organisation, certificate 2006\12520.

Corporate Governance of ICT Codarra has staff with experience in Corporate Governance of ICT. Examples includes: The development of an IT Architecture for Royal Australian Navy Fleet units and development of governance policy surrounding the delivery of the IT architecture that was signed by Chief of Navy. The development of a full Quality Management System with all of the requisite functional business processes being developed and implemented for BHP Steel in order to gain ISO9000 certification. Our resources acted in the capacity of a desk officer within C4ISREW (Command, Control, Communication, Computing, Intelligence, Surveillance and Electronic Warfare). One of the requirements was interfacing with Defence Business and Finance staff. It also included the management of minor projects (less than $20M), and administratively managing the entire C4 Minor projects program. The ‘Minors program’ in particular involved providing Support to Defence Business and Finance in the areas of budgeting and drafting entries to the Unclassified (public) version of the Defence Capability Plan.


Organisation Name Consulting Insights Pty Ltd Trading Name Consulting Insights

Contact Dr Phil Malcolm

Address PO Box 3218

Suburb Manuka



Website www.cinsights.com.au


ABN 32091631159

Company Background Consulting Insights can help you add significant, measurable, and sustainable value to your organisation. We can help you improve organisational performance, and learn for the future through ongoing alignment of people with business, and performance management systems. We can help you maximising the value added by your information resources by delivery of small amounts of highly relevant, consistent, reliable information, and by focussed, rigorous, cost-effective data quality management & information delivery. We can help you maximise the value delivered by your IT resources by building top management ownership and understanding of IT strategy, by ongoing alignment of IT with business, and by sharing and building on the experience of others. We can work with you to build on the best from your existing organisation, developing a culture of sustainable improvement. We have worked in over 50 successful projects for over 30 agencies, and have facilitated over 250 workshops.


Corporate Governance of ICT Consulting Insights is currently leading the development of a new Standard Operating Model for ICT Strategy and Architecture at the Tax Office. This new model will integrate processes and deliverables across the ICT function within the Enterprise Architecture Framework. We are leading the design of an improved governance structure and processes, including organisational roles and responsibilities. Governance is being applied across the business improvement life cycle at the Tax Office, starting with Strategic Planning by Business Areas, including the inception of new policy development and other improvement initiatives, then through the entire system development lifecycle, and finally to ongoing improvement and Business As Usual. This redesign has involved facilitating workshops for SES Officers from different parts of ICT, enabling them to arrive at an agreed, common view of how they should be working together. A key feature of the new governance processes is to map proposed ICT changes against the Enterprise Architecture, and then to identify those changes which pose the greatest risk. Scarce governance resources with high technical expertise can then be focussed on changes of greatest risk, with devolution to other areas for lower risk changes, albeit with ongoing technical support and performance monitoring to ensure that the Enterprise Architecture is complied with. The governance function is thereby designed to be most efficient and effective for the Tax Office as a whole. Governance design has also been


undertaken as part of other work for the Department of Health and Ageing and the Department of Veterans’ Affairs.


Organisation Name Cordelta Pty Ltd Trading Name Cordelta

Contact Ms Rebecca Edwards

Address Level 1, 44-52 Townshend St

Suburb PHILLIP



Website cordelta.com


ABN 69107788401

Company Background Cordelta is an ACT-based professional services company that helps to improve business outcomes through management and technology services, solutions and capability enhancement. The company was established in 2004 to provide an environment in which people could use their initiative, experience and passion to deliver outstanding results on business and IT projects. Since then the company has worked hard to improve the breadth and depth of its services through selective recruitment, internal development and the successful delivery of client engagements. Cordelta currently has over 150 permanent and contract employees within the ACT and revenue of approximately $20m per annum. The company has successfully completed over 500 engagements and is an active member of various management and ICT panels with Commonwealth Government agencies, including the Department of Defence and the Department of Finance and Deregulation. Our strengths include, experienced staff at competitive rates; detailed knowledge of public sector requirements and reforms; tools and techniques that comply with industry standards and client requirements; commitment to integration with client teams and transfer of knowledge to client staff; a pragmatic and collaborative working style; and an excellent reputation for the successful delivery of projects.

Company Accreditation (Optional) Cordelta has an established quality management system which aligns to ISO9001:2000 within the following categories, document and record management; management responsibility; resource management; and measurement, analysis, and improvement. The components of Cordelta’s quality management system are documented on the company’s intranet site, as well as in management, employee and contractor agreements. The Cordelta management team has defined a set of core values which are frequently promoted and modelled and is responsible for quality assurance on engagements. Employees are mentored in the Cordelta quality management system and every engagement is subject to management review of inputs and outputs. Cordelta has infrastructure in place to support its quality management system, including, time-recording system; document and record management system; integrated engagement and financial management system and employee enablement – email, SOE. In order to measure, analyse and continually improve Cordelta’s quality management system, Cordelta reviews management systems and procedures monthly to identify and resolve issues. Periodic and post implementation reviews of each engagement are also undertaken to identify strengths, weaknesses, opportunities and threats. This


includes a face to face meeting with the client to determine their level of satisfaction and identify opportunities for improvement.

Corporate Governance of ICT Cordelta can analyse, evaluate and advise on the corporate governance of ICT using guidelines within COBIT, ITIL and MoR and enterprise architecture frameworks such as TOGAF and Zachmann. We understand the relative positioning of these frameworks and how they should be used to assess corporate governance activities and operational maturity. Cordelta’s application of these frameworks delivers an objective evaluation of ICT services to ensure ICT initiatives deliver maximum value to the organisation. We acknowledge the increasing reliance of business on technology and help to establish systems that identify and manage the associated challenges for corporate governance. We also help to introduce processes that identify organisational ICT responsibilities, manage procurements and acquisitions, optimise performance and ensure ICT is an effective business enabler that supports the organisation’s objectives. Cordelta redesigned and simplified the governance framework for acquisition projects within the Defence Materiel Organisation to achieve major improvements in effectiveness and efficiency. This included a complete redesign of the acquisition process model, introduction of a gate review process prior to significant milestones and redevelopment of policies and guidance for project management, scheduling and risk management. Cordelta also developed a gate review process for the Australian Customs and Border Protection Service to provide an independent level of assurance over the health and outlook of major projects by reviewing a number of important considerations at key points in the project lifecycle. The process was consistent with both the internal project management framework and the Gateway Process within the Department of Finance and Deregulation.


Organisation Name CPT Global Limited Trading Name

Contact Mr Steve Hickey

Address Level 4, 161 London Circuit

Suburb Canberra



Website www.cptglobal.com


ABN 16083090895

Company Background CPT Global Limited is an established and proven independent technical and IT management consulting services company with over 200 consultants working with almost 70 clients worldwide. CPT’s head office is in Melbourne with offices in Canberra, Sydney, London, Munich and New York, and is listed on the Australian Stock Exchange (ASX:CGO).

With its IT management consulting services, CPT focuses on providing the IT organisation with independent client-side consulting services leading, coaching and partnering with each client’s IT management team. This extensive and proven management consulting practice leverages the extensive experience of our professionals to deliver practical quality business solutions and advice to our clients.

CPT’s professionals have experience in areas such as ICT Strategic Planning, ICT Sourcing Strategies, Business Cases, Business Requirements, Information Architecture and Complex Project Management. These services are predominantly provided to the Government, Health and Banking and Finance industries.

CPT’s independence and experience ensures that our clients receive strategies and ongoing advice that has no conflict of interest with the selection of packages/products or delivery service providers. CPT is always prepared to support the implementation of our recommendations.

Company Accreditation (Optional) CPT Global is an ISO 9001:2000 quality accredited organisation. The application of our business processes and policies ensure that only suitably experienced consultants deliver our services. CPT Global services are delivered through the application of consultant experience, CPT processes and client’s processes to ensure that delivery meets the client’s objectives and risks are mitigated.

Corporate Governance of ICT CPT Global specialises in working with clients to establish an IT operational governance model that is customised to the unique requirements of each client organisation. CPT has enhanced the basic ITIL Service Management framework to a much broader and practical framework that is linked into the CobiT framework. The customisation process provides the IT organisation with a clear governance model that is aligned with the strategic direction and organisational delivery model of the IT organisation.


CPT also specialises in the development and implementation of the transition plan to the new governance model. The models CPT develop allow the organisation to reach AS8018 certification level if they wish.

Recent clients of this service area are Australian Customs Service, State Revenue Office of Victoria, HealthSMART, Office of Housing, VicRoads, CBA, NAB, BT, MLC, Department of Finance and Administration.


Organisation Name Deloitte Touche Tohmatsu Trading Name Deloitte

Contact Mr Dean Grandy

Address 8 Brindabella Circuit

Suburb Brindabella Business Park



Website www.deloitte.com.au


ABN 74490121060

Company Background Deloitte offers a leading global firm with decades of experience servicing Public Sector clients in Australia and internationally. Our key assets are our ability to resource a diverse range of skills and experience across our national practice to meet your needs in an efficient and cost-effective manner. Supporting our key personnel are Deloitte’s global methodologies and tools together with a pool of over 4,500 employees in Australia whose skills and experience are shared through an extensive knowledge management capability.

Deloitte’s depth of experience and our strong technology acumen together with our proven methodologies and tools combine to differentiate us from our competitors. Our solutions are based on the Deloitte CIO Management Framework™ and our Enterprise Programme Management Framework (EPMF). These frameworks assist in the alignment of ICT strategy with business strategy through the assessment of capabilities and opportunities and the optimisation of an organisation’s portfolio of programs and project.

Deloitte has a proven track record working collaboratively with our government clients to successfully implement the frameworks. As a result, we are confident that we can bring a strong combination of knowledge and technical expertise to the ICT Management Consultancy panel.


Corporate Governance of ICT Strategic Portfolio Management is a component of Deloitte’s Enterprise Program Management Framework, focusing on alignment of business strategies with the portfolio of programs and projects to achieve the desired outcomes, benefits and value. The objective is to manage the portfolio in tandem with the evolving business strategy, and ensure the maximum value from business investments.

Deloitte’s approach looks beyond the costs and benefits of projects to understand and manage the broader issues associated with Quality Assurance and Risk management. The methodology also includes a process for change management to orchestrate deployment and manage impacts, both IT and business. This component enables the transition from managing projects to managing for value. Typical key benefits of this component are:

- Visibility of the project portfolio and change management


- Quality assurance & risk management

- Alignment with business objectives

- Right choices when prioritising investments

- Ensuring consistent and efficient execution

We have considerable experience and excellent track record undertaking this work. For example:

- Department of Human Services (Vic) - ICT Strategic Review & HealthSMART Program

- New South Wales Police - IT Portfolio Prioritisation & Governance

- Australia Post Project/Programme Management

- Telstra - numerous large scale Project/Programme Management


Organisation Name Dimension Data Australia Pty Limited Trading Name Dimension Data Australia Pty Limited

Contact Mrs Emily Slawson

Address Unit 7, 18 - 20 Brindabella Circuit, Brindabella Business Park

Suburb Canberra



Website www.dimensiondata.com


ABN 65003371239

Company Background Dimension Data was founded in Sydney in 1987. Dimension Data Australia has a strong national presence, with offices in Adelaide, Brisbane, Canberra, Melbourne, Perth and our head office in Sydney. Dimension Data is a wholly-owned subsidiary of Nippon Telegraph and Telephone Corporation (NTT), a Japanese-based service provider with over $100 billion in annual revenues and nearly 200,000 employees (listed on the Japanese stock exchange). Dimension Data is positioned at the forefront of networking and communications in 47 countries around the world. Dimension Data, a specialist IT services and solutions provider, helps clients plan, build, support and manage their IT infrastructures. Dimension Data applies its expertise in networking, converged communications, security, data centre solutions, Microsoft and contact centre technologies, and its unique skills in consulting, integration and managed services to create customised client solutions. Drawing on our experience in consulting, professional services, project management and managed services, we deliver a full lifecycle of services.

Company Accreditation (Optional) Dimension Data’s comprehensive quality management system has been successfully certified to the internationally recognised ISO 9001:2008 standard in our Sydney office and in our Perth office by BSI Management Systems, a JAS-ANZ accredited certification body.

Corporate Governance of ICT DDSC uses Centre-of-Excellence organisational models to assess the effectiveness of the ICT governance practices by adopting the following approach. Step 1: Define the scope of the organisational structure covering the full ICT service lifecycle of planning, building, running, procuring and governing. Step 2: Assess current governance practices against known models for all known organisational structure types including technology, program and process oriented organisational models for in-sourced and outsourced services. Step 3: Determine the effectiveness of the key accountabilities identified in Steps 1 and 2 and assess against governance best practices. Step 4: Also, use Enterprise Architecture (EA) principles to assess the ICT governance Frameworks effectiveness by analysing policies, compliance practices and Quality Management Frameworks for in-sourced and outsourced services. Step 5: Define governance metrics and ensure that they are measured, analysed and acted upon. Examples: Yarra Valley Water – Evaluated the outsourcing relationship maturity between Yarra Valley Water and Fujitsu and prepared a disaster recovery strategy. In both cases The five steps mentioned above were used to develop the governance


foundation; and Gold Coast City Council - Reviewed Enterprise Architecture practices in accordance with step 5 above covering the following areas: Business , Information, Application and Technical Architectures, Reviewed the Architecture Governance covering its development, communication to stakeholders and ensuring compliance, Reviewed the current security architecture documentation and provided feedback.


Organisation Name Direkt Consulting Pty Ltd Trading Name

Contact Mr David Rowlands

Address 6 Hindon Street

Suburb CORINDA

State QLD Postcode 4075


Website


ABN 37119693275

Company Background Direkt Consulting is a niche consultancy specialising in governance and strategy, standards, performance improvement and informatics, primarily in the health sector. The consultancy has been operating since 2005 and has undertaken a series of strategically oriented projects, primarily for Government agencies and non-Government Organisations. Direkt Consulting uses a networking model, assembling teams of highly experienced experts to match the specific needs of the project at hand. These experts are typically industry leaders with 20-30 years of experience in senior public sector roles, and clearly understand the multiplicity of needs of Government agencies operating in complex environments. Direkt Consulting's principal, David Rowlands, is personally involved in every project. David has 25 years experience in information management and strategic information technology, in particular in ensuring business, information and technology alignment. He is internationally recognised in the e-health arena.

Company Accreditation (Optional) Direkt Consulting has not yet sought third party accreditation but is well versed in quality management, conformance, certification and accreditation. For example, Direkt Consulting has advised both Standards Australia and the National E-Health Transition authority on conformance, certification and accreditation issues in the health sector.

Corporate Governance of ICT Direkt Consulting has advised on both the nature and implementation of governance for substantial areas of Singapore's e-health program in two separate projects. Direkt was first engaged by the Singapore Government, on the basis of international reputation, to advise on the structures, roles, reponsibilities, processes, systems, infrastructure and resources required to establish and operate effective governance for its whole of sector e-health standards program - one of the platforms for a national system of electronic health records. This included obtaining key agency agreement to effective governance principles, and building consensus amongst stakeholders about the migration from governance at existing agency levels to a whole of sector, integrated model. A variety of international approaches were analysed in the process. Following the completion of this work, Direkt Consulting was re-engaged to advise on governance of a new, nation-wide health enterprise architecture. For this project, an enterprise architecture specialist was sub-contracted to provide technical advice and ensure that the governance mechanisms developed were contextually appropriate. Other recent governance projects undertaken by Direkt Consulting have included


review of clinical risk and development of a clinical governance framework for a statewide district nursing organisation, and a governance review of the safety and quality program for a State health Department (in conjunction with another independent consultant). Subsequent review of safety and quality in that State by its Auditor-General strongly endorsed the recommendations made. This indicates that Direkt Consulting has a breadth of governance experience to draw upon.


Organisation Name DMV Consulting (Exeter (AUST) Pty Ltd ATF Exeter Family Trust)

Trading Name DMV Consulting

Contact Mr David Vincent

Address PO Box 909

Suburb Jamison



Website www.dmv.com.au


ABN 88675004297

Company Background DMV Consulting is a Canberra based consulting firm, which brings together a wealth of expertise from a broad base of experience. Our team of highly motivated and skilled consultants are committed to providing high quality, cost-effective outcomes for our clients using proven and contemporary accountancy and business advisory methods and practices. DMV Consulting believe that our professional staff and relevant qualifications and up to date experience, combined with a demonstrated commitment and ability to deliver high quality, competitively priced solutions to clients, make DMV Consulting an excellent candidate for inclusion on this Panel. We are focused on helping clients use technology to create sustainable organisational benefits and to optimise business performance. When we serve our clients on technology issues, we combine our industry knowledge and practical ‘real world’ experience in technology solutions with our traditional strengths in strategy, organisation, and operations.

Company Accreditation (Optional) The DMV Consulting is applying a quality management system that is designed to maintain and continually improve the effectiveness and efficiency of the organisations’ performance. The quality management system manual meets the requirements of ISO 9001:2008.

Corporate Governance of ICT Corporate governance planning and review and development of the governance framework has involved consideration of industry best practice, including Australian Standard 8015-2005, the ANAO Public Sector Governance Better Practice Guide House of Governance Model. DMV Consulting has developed a procurement framework for the Information Services Branch of AusAID, to improve procurement and ICT asset management within the application of the CPG’s, FMA Act and Regulations and Respective CEIs. Our review and development of governance arrangements combining procurement processes, tools, templates, guidelines and management practices was to identify and address fundamental gaps, being accountability and transparency, leading to improved service and reducing AusAID’s risk profile. The transparency improvements delivered more efficient and effective planning, performance monitoring (including KPIs) and reporting and results that AusAID and its customers were then able to see how business is conducted in terms or priorities, costs, standards and performance. A key was to ensure that the


KPIs applied actually measured aspects of contract delivery and were to be reviewed periodically to ensure ongoing relevance. DMV Consulting also developed a governance and CEI framework for AASB as they moved from a CAC Act agency to an FMA Act Agency. This conformity with governance requirements provided by legislative and regulatory requirements, Chief Executive Instructions (CEIs) and delegations, Commonwealth Procurement Guidelines (CPGs) and the organisations policies and instructions.


Organisation Name Doll Martin Associates Pty Ltd Trading Name

Contact Mr Richard Baecher

Address Level 18, 323 Castlereagh Street

Suburb Sydney



Website www.dollmartin.com.au


ABN 52002556710

Company Background Doll Martin Associates (DMA) is an independent Australian management consultancy founded in 1983.

Our goal is to enable our clients to bridge the knowledge gap between corporate direction, information technology and business operations. We have a well-established reputation and have successfully assisted many private sector companies and government agencies throughout Australia. The public sector is our biggest client. We have consulted to a wide range of government agencies, and as a result we understand the culture, imperatives, structure and operation of the public sector.

We are committed to assisting our clients in the formulation of strategies, plans, architectures and specifications for the acquisition, management, quality and use of information, and the implementation of governance, processes, systems and solutions to improve business performance.

Our services focus on the effective use of information as an integrated business resource and in enabling agencies to develop strong information management cultures, architectures and solutions that are aligned with business needs. We primarily operate from Sydney, with a staff of some 25 personnel, and links to a network of complementary specialist firms. Our expertise lies in the areas of strategic planning, information management, business systems requirements and acquisition, and business performance.

Company Accreditation (Optional) Doll Martin Associates has implemented a Quality System and is accredited to ISO9001:2008 by SAI Global (licence QEC6535), with recertification having taken place in 2011.

We are proud of our membership of the following panels:

New South Wales Government

• ICT Services Approved Supplier Panel Contract 2020 (NSW) • RTA NSW - Professional Services (various)

• Land & Property Management Authority of NSW.

Queensland Government

• Government Information Technology Contract GITC


Australian Federal Government

• Australian Government Information Management Office - ICT Management Consultants MultiUse List

• The Treasury - ICT Business Support Services panel

• Australian Securities & Investment Commission - IT Professional Services panel

• Austrade - Information Management panel

• Australian Commission on Safety & Quality in Health Care - Standing Offer

• Department of Education, Employment & Workplace Relations - ICT Technical & Advisory Services panel

• Department of Health & Ageing - Information Technology Services panel.

We have a strategic alliance with Galexia, who are legal, policy and technical specialists in identity management, authentication, privacy, public key infrastructure and e-commerce, with membership of the AGIMO Identity Management and Authentication Consultancy Panel.

Corporate Governance of ICT The successful delivery of ICT strategies depends on effective and robust corporate governance of ICT, and close linkages to the mainstream corporate and business planning and delivery functions. DMA can provide assistance in:

- Working with Executives to increase understanding of the link between ICT and organisational performance, of managing the quality of data through good governance, and of harnessing the potential of ICT to enable change.

- Defining governance frameworks and implementation plans.

- Defining and managing governance process improvements and organisational changes.

- Managing risk and integrating governance with corporate planning and reporting frameworks.

- Defining and reviewing information management and governance performance.

Example projects:

MBF (2007): Developed an Information Management and Governance Framework, including enterprise information and function models, information management principles, governance structures, roles and responsibilities, and a governance implementation plan.

National Native Title Tribunal (2006): Reviewed the National Native Title Tribunal’s Information and Knowledge Management Division for the Registrar, providing recommendations on the information management culture and functions, the role of the CIO, current plans, organisational structure and information governance.


Organisation Name Dowling Consulting (Trustee for the Dowling Group Trust )

Trading Name Dowling Consulting

Contact Mr David Dowling

Address 3/312 St Kilda Rd

Suburb Southbank



Website www.dowlingconsulting.biz


ABN 63286680686

Company Background Dowling Consulting was formed in 2002 and now has over 50 professional service consultants in Adelaide, Melbourne, Sydney and Frankfurt Germany with concrete plans to establish our Canberra office in 2009. Our expertise is mainly in IT Management Consulting, Supply Chain process improvement and transformation, IT Service Management, IT Organisational improvement and Transformation, IT and Business Strategic planning and general management consulting.

Company Accreditation (Optional) Dowling Consulting are accredited ISEB ITIL trainers and Examiners and ISO 20000 consultants and trainers.

We have qualified ITIL experts, 2 x ISO 20,000 accredited trainers, 2 x COBIT accredited auditors,

1 x CMMI accredited , Prince II and PMBok accredited project managers and qualified MSP practitioners.

Corporate Governance of ICT Dowling Consulting has experienced senior consultants that are considered experts or thought leaders in ICT Governance. Our consultants are active contributors to the development of standards such as AS 8015, ISO 20000, ISO 38500, AS8018, Cobit and ITIL. We have rigourous methodologies, tools

and experience based knowledge that we apply to our ICT Governnance projects developed over a number of years and across many customers.

Case Study 1 - ICT Governance project - Australia Post

Dowling Consulting are the incumbent IT service management and governance consultants for Australia Post. We have developed and implemented the ICT Governance framework based on AS8015, ISO 2000 and underpinned by leveraging controls from Cobit V4 and ITIL V2 and ITIL V3. The project involved multiple stakeholders both business and ICT in the development of Policies, Procedures, Accountability and Responsibility matrices and scorecards that measure the outputs of processes against best practices and the compliance and effectiveness of the process execution.


Case Study 2.

Dowling Consulting was engaged by SPAusnet to develop a governance framework for their business shared services organisation that incorporated service delivery for IT, HR, Finance, Procurement, Property and Fleet Managemernt services. We developed a model, implementation plans and assisted in the roll out of the framework. The project to implement the IT component of this framework was the winner of the ITSMF Most Innovatve use of ITIL award in 2007.


Organisation Name DWS Advanced Business Solutions Ltd Trading Name DWS (NSW) Pty Ltd

Contact Mr John Kennedy

Address Level 1, 161 London Circuit,




Website www.dws.com.au


ABN 83085656088

Company Background DWS Advanced Business Solutions is a premier Australian IT Services provider. With established offices in Melbourne, Sydney, Brisbane, Adelaide and Canberra and boasting over 550 full time employees, DWS is the total software solution provider of choice to many of Australia’s largest and well know blue chip organisations. Committed to continuing as the industry pacesetter in the provision of end-to-end IT solutions, DWS has experienced significant success and growth by providing the best possible competitive advantage for its extensive and impressive client base. Providing an honest, reliable, professional and innovative service DWS prides itself on its ability to assist clients in ensuring their organisations reach their greatest potential. By hiring and retaining the best professionals possible through a unique three layer recruitment process, DWS is able to deliver services with unrivalled efficiency and effectiveness. This is just one of the reasons DWS can offer a money back guarantee and a lifetime warranty. The overriding philosophy and approach to business at DWS is one of honesty, integrity, ethical behaviour and transparency. The DWS culture ensures every interaction with clients, suppliers and employees is based on these values and this provides the strongest possible foundation for growth and excellence.

Company Accreditation (Optional) Microsoft Gold Certified Partner DWS is a Microsoft Gold Certified Partner. This was first achieved in 2002. DWS also encourages and facilitates individuals to gain their Microsoft certifications, including Microsoft Certified Systems Engineers (MCSE), Microsoft Certified Product Specialist (MCPS), Microsoft Certified Solution Developers (MCSD), Microsoft Certified Database Administrator (MCDBA) and many more. AS/NZS ISO 9001:2000 Certified DWS’ SpinnakerOne Quality Management System is a cornerstone of our operational activities. Initially developed in 1996 and ISO 9001 accredited since 1998, SpinnakerOne has constantly evolved and continues to mature to the current day having incorporated over 1,500 improvements and major initiatives since it was first certified. SpinnakerOne was one of the first Quality Management Systems to be granted the ISO 9001:2008 certification, achieved quickly as it continues to incorporate industry best practice and the experience of our 550+ strong project consultants. CMMI/ITIL Certification SpinnakerOne incorporates practices, procedures and advocacy programs that cover all our service offerings. These encapsulate our experience and expertise in judiciously applying industry best practices and methodologies from organisations such as PMI, SEI (CMM4), OGC (ITLv3) etc.


Corporate Governance of ICT DWS has expertise and experience in working with organisations to establish ICT Governance structures. This work includes: • reviewing and understanding business goals and vision • reviewing the organisation’s 5 year plan and the resultant ICT requirements and growth strategy • understanding the extent of ICT use within the organisation • establishing clearly understood roles and responsibilities for ICT A dedicated Project Management Office is also available to identify changes to processes and information systems to help deliver good project governance against best practices. DWS adheres to a strict governance and project audit process to ensure all aspects of projects are operating optimally. This includes: • Dedicated DWS account and project managers with clear and visible escalation procedures. • Lifetime warranty on all work performed using our SpinnakerOne project methodology. o SpinnakerOne facilitates the management of appropriate resources, capability and work practices to meet project needs in a systematic and controlled manner, and ensures critical business functions are provided to support our service delivery. In addition, we undertake continual reviews of the methodology to identify process improvements where relevant and implement corrective actions. • DWS has also provided project-oriented web portals for risk and issue logging and tracking, which also facilitates intra-project communications Relevant Projects: • DWS’s current work with the Dept of Climate Change & Energy Efficiency (DCCEE) demonstrates our ability and commitment to the principles of project and corporate governance. • The Australian Taxation Office (ATO) is a long term client of DWS for the development services in support of eTax


Organisation Name e8 Consulting Pty Limited Trading Name

Contact Mr Terry Rowlings

Address Level 11, 189 Kent Street

Suburb Sydney



Website www.e8Consulting.com


ABN 25129731924

Company Background E8 Consulting delivers strategic and business consulting services in four areas: business process management to drive business efficiency, service improvement, and governance, risk management and compliance; enterprise communication and collaboration, leveraging enterprise 2.0 tools, to deliver business efficiency, enable high-performance teams and drive organisational knowledge-capture; project governance that enables organisations to achieve superior returns from projects (ICT and non-ICT); and the management of strategic programmes to realise business benefits.

Our commitment to customers is to help them achieve superior operating performance and above-average returns. The consulting practice was established in 2000 as part of The Frame Group Pty Ltd, providing business process management services, and expanded in 2008 to include communication and collaboration strategy and implementation, governance of projects and management of strategic programmes. Our clients include public and private sector organisations across all industries. We are Australian owned with offices in Sydney, Melbourne, Brisbane and Canberra. Our people are thought-leaders in their field, with unique experience and skills, and we use, teach and contribute to the world’s leading standards, frameworks and toolsets. We ensure knowledge capture and transfer is embedded in all our projects. Our goal is to provide exceptional services to enable our clients to be exceptional.

Company Accreditation (Optional) Systems Audit and Control Association (ISACA), ISACA Representative at Standards Australia on the Standards Committee AS 8015, AS 8016; Corporate members Information Technology Service Management Forum (itSMF); a number of e8 Consulting consultants hold Federal and NSW Government Gateway accreditation.

Corporate Governance of ICT Our e8 consultants are leaders in corporate governance for IT. e8 Consulting Director, Terry Rowlings, contributed to the development of Standards Australia's AS 8015-2005 Corporate governance of information and communication technology standard. He is a speaker for the Information Systems Audit and Control Association (ISACA) on COBIT and IT governance and served on the Board of ISACA. Dr Raymond Young, e8 Consulting governance practice leader, was a founding member of the Standards Australia committee that developed the Australian IT Governance Standards. Dr Young is recognised internationally for his expertise in the area of IT


project governance. His research, published as HB280-2006, is a handbook for board members on the Governance of ICT investments and informed both AS8015 (adopted internationally as ISO38500) and AS8016.

Our client engagements include:

Assisting the Victorian Department of Education and Early Childhood Development (DEECD) to adapt and deliver project sponsor training to support DEECD’s project management framework, and build the project governance capability of both DEECD’s senior management and project management teams. The training material has been recognised by Harvard Professor James McKinney as ‘world class, 3-5 years ahead of the competition’.

e8 Consultants were engaged by the Royal Australian Navy to assist with the implementation of recommendations regarding the Defence HRM system. On our advice, Navy adopted a program governance structure based upon PRINCE2. We also advised Navy regarding the composition of the Project Board, delivered training to senior management, and ensured compliance with the PRINCE2 methodology including the flow of information to the board.


Organisation Name EDS (Australia) Pty Ltd Trading Name

Contact Mr Paul Hogie

Address Level 3, 2 Barry Drive




Website http://www.eds.com


ABN 18002855085

Company Background With $21.3 billion in 2006 revenues, a Fortune 500 ranking of 111 (2007) and 134,000 employees in 60 countries, EDS is one of the world’s leading business, technology and consulting service providers.

EDS has over 40 years experience working with national/federal and state government entities supporting major government initiatives that range from fiscal reforms to defence transformation to improving border security and citizen centric services. With over 20,000 employees serving 500 government clients in 29 countries, EDS understands the business of government.

We offer a broad portfolio of business and technology solutions. Our portfolio comprises information technology, applications, business process and consulting services including Business Transformation, Architecture, Applications Modernisation, Technology Transformation, Change Management, ICT Governance, Enterprise Service Management, and Program and Project Management.

EDS has a dedicated government consulting team based in Canberra. They can be supplemented by 1000 consultants and 600 Canberra-based and 4000 Australia-wide specialist staff.

Our employees contribute to and benefit from a comprehensive global knowledge network. This network comprises formal communities of interest for the purpose of identifying, developing and deploying industry knowledge and expertise.

EDS provides services to numerous Australian Government agencies, including the Australian Taxation Office, Child Support Agency, Australian Customs Service, VicRoads and the South Australian Government.

Company Accreditation (Optional) Quality Management System (QMS) EDS Australia complies with the ISO 9001:2000 Quality Management Standards.

Certification was issued by SAI Global Certification Services Pty Ltd on 12 December 2006 and expires on 21st November 2009. The Certificate Number is QEC2166.

Capability Maturity Model - Integration (CMMI)

Our CMMI certified Australian Solution Centres operate at between CMMI levels 3 and 5.


ITIL

EDS is a global member of the Information Technology Service Management Forum (itSMF) and sits on the BS15000 executive subcommittee and the ITIL Accreditation Board for the ISEB.

EDS Australia maintains a team of ITIL instructors and operates an ISEB-accredited course to provide ITIL Foundation training to our delivery and support organisations. Within Australia, our employees have achieved the following certifications:

-200+ ITIL Foundation Certificates

-26 ITIL Practitioners Certificates

-4 ICTIM Practitioners Certificates

-17 ITIL Manager’s Certificates.

PMI

Our Project Management Methodology (PM2) follows SEI’s CMMI (Capability Maturity Model® Integration) and the Project Management Institute (PMI) guidelines.

We have more than 140 PMI certified staff in Australia.

Six-Sigma

Within Australia we have 18 Six Sigma experts, comprising Yellow, Green and Black Belts.

Corporate Governance of ICT Service Offerings

EDS’ Enterprise Service Management (ESM) offering provides an effective framework for ICT Governance. ESM includes definition of ICT Governance Principles, establishment of a Prioritisation Methodology, Governance structure(s) and charter(s) and definition of ICT Governance processes. The service also includes the option of implementing an ICT Governance software tool to help automate the Governance model.

The ESM Framework is built around COBIT and ITIL and includes:

- IT Operations: Management and monitoring of ICT services with a focus on service reporting, incident management and processes for handling ICT-related changes.

- IT Business Management: Management, monitoring and tracking of supplier contractual obligations.

- Architecture and Development: Establishing architecture and development guidelines and mechanisms.

- Security: Managing, monitoring and addressing security related issues, such as threat vulnerability, identity theft, security administration and compliance.

IT Consumer Interaction: Streamlining ICT’s interaction with business users.

IT Supplier Management: ICT consumer and procurement management.

Capability and Experience

Qualified Consulting Resources - Australia and NZ:18, Asia Pacific:3

State Government Services Organisation - Within a multi-vendor environment managing the infrastructure behind key business systems.

Major Australian Federal Government Service Delivery Agency - IT infrastructure services and transition of responsibilities from the organisation to EDS in less than three months.


Organisation Name Enterprise Architects Pty Ltd Trading Name Enterprise Architects

Contact Mr Mac Lemon

Address Level 46 Rialto Tower South 525 Collins Street

Suburb Melbourne



Website www.enterprisearchitects.com


ABN 76908214788

Company Background Enterprise Architects is an Australian professional services firm specialising in enterprise & IT planning and architecture. We supply expert Consulting, Training & Recruitment services, delivering IT roadmaps and architectures and helping organisations to develop high performance architecture teams. Operating since 2002, many of Australia's leading organisations have engaged us as their strategic partner for IT planning and architectures, to improve architectural thinking and to develop and recruit their Strategy and Architecture teams. As of May 2010 we are represented by around 60 professionals in 3 locations in Australia and overseas. Our Consulting Division works with CIOs, chief architects, strategy and transition managers to develop right-fit enterprise and IT architecture capabilities for their organisation, and to deliver strategic roadmaps at an enterprise, business or local level. Our Training Division is an accredited supplier of TOGAF training and certification courses, world-wide. TOGAF is the Open Group Architecture Framework, a methodology that unites business planning, IT architecture and project management. Our TOGAF expertise enables our consultants to apply rigorous methods to the planning process, leading to robust outcomes that stand the test of time and scrutiny. Our Recruiting Division is a leader and innovator in staffing solutions for business technology architecture internationally.

Company Accreditation (Optional) The Open Group Architecture Framework (TOGAF) - Version 9, Enterprise Edition - is an open, industry consensus framework and method for enterprise architecture. Enterprise Architects is an accredited provider of TOGAF training services. TOGAF is developed and maintained by members of The Open Group, working within the Architecture Forum (refer to www.opengroup.org/architecture). The original development of TOGAF Version 1 in 1995 was based on the Technical Architecture Framework for Information Management (TAFIM), developed by the US Department of Defense (DoD). The DoD gave The Open Group explicit permission and encouragement to create TOGAF by building on the TAFIM, which itself was the result of many years of development effort and many millions of dollars of US Government investment. Starting from this sound foundation, the members of The Open Group Architecture Forum have developed successive versions of TOGAF and published each one on The Open Group public web site.

Corporate Governance of ICT Enterprise Architects specializes in ICT governance, centred on the use of business and IT architectures as points of reference within governance processes. Architectures include


representations of targets for all of the data, applications and technology assets which an enterprise owns and operates. Assets are classified according to their future state: whether they are to be retired, replaced, maintained or upgraded. New assets to be acquired are also identified. It follows that project and investment governance is centred on enterprise architectures. IT initiatives should comply with ratified architectures (or the architecture should be revised accordingly). Investments in an IT asset should be consistent with its target future state – for example, by minimizing investment in an asset that is to be retired. Our methods and deliveries are based on Version 9 of The Open Group Architecture Framework (TOGAF), an industry consensus framework for business and IT planning and architectures. TOGAF incorporates a comprehensive methodology for developing, maintaining and managing business and ICT architectures. We also conduct maturity assessments of Strategy and Architecture functions, and provide structures and methods for their operations and interaction with stakeholders. Specific services include: ? Architectural and ICT investment governance processes ? Enterprise architecture maturity assessment ? Organization and competency optimization for architecture functions ? Technology principles, operating models and standards Reference projects: Aurora Energy (2008 – 09): Delivery of IT operating principles, technology standards, IT governance and project gating National Australia Bank (2008): Architecture governance regime, including principles of operation, operating model and process flows


Organisation Name Ernst & Young Australia Trading Name

Contact Mr Andrew Garner

Address Ernst & Young, GPO Box 281

Suburb Canberra



Website www.ey.com/au


ABN 75288172749

Company Background Ernst & Young helps companies in businesses across all industries — from emerging growth companies to global powerhouses — to deal with a broad range of business issues. Our 114,000 people in 140 countries around the globe pursue the highest levels of integrity, quality and professionalism to provide clients with a broad array of professional services.

Quality In Everything We Do

Ernst & Young’s integrity and professional competence are the cornerstones of our global organisation. We work hard to earn and maintain our clients’ trust and confidence.

Services Offered

Ernst & Young provides a range of services, including advisory, assurance, tax, risk, technology, transactions, and human capital services.

Industry Focus

Globally, Ernst & Young supports 26 industry sectors, including Government. The Centres are dedicated to bringing insights to clients, sponsoring dialogue among industry stakeholders and linking our professionals to facilitate collaboration and knowledge sharing.

Culture

Ernst & Young would not be such a successful organisation without great people and strong teamwork. We provide our people with solid career growth opportunities and a people-oriented workplace environment. Our philosophy, quite simply, is that when our people achieve their best, so do our clients.

Company Accreditation (Optional) We are very proud of the fact that Ernst & Young has held ISO 9001 certification since 1993. All Ernst & Young personnel are responsible for understanding and applying our quality procedures and are appropriately trained upon commencement of their employment. Each person has the responsibility and authority to initiate quality improvement requests for any non-conformance encountered or for suggestions for improvement.


Corporate Governance of ICT Ernst & Young offers a wide range of corporate governance services for an ICT portfolio. Our model is designed from internationally recognized frameworks such as CMMI, COBIT and ITIL and has 4 non-exhaustive domains, associated processes and defined levels of maturity. Maturity assessments of the comprehensive domains provide valuable input in understanding the level of effectiveness of the IT Organization as well overall high-level understanding of the adequacy of the IT internal control environment.

Areas of focus may include:

- Alignment of the IT strategy with the overall organizational strategy.

- IT organization, key roles and responsibilities.

- Organisational expectations of IT.

- IT Service Delivery & Management processes.

- Platform and Technology Architecture.

- Change control procedures.

Department of Families, Community Services and Indigenous Affairs

Conducted an audit of FaCSIA’s ICT Governance against the principles of good corporate governance as outlined in AS/NZS 8015:2005, and aspects of the Control Objectives for Information & Related Technology (COBIT) Framework.

University of Canberra

Reviewed ICT Governance to provide a high level assessment of the effectiveness of selected current ICT governance practices within the University against AS8015:2005, and to recommend improvements where appropriate.


Organisation Name Eventra Trading Name Eventra

Contact Mr Peter Howe

Address 4/75 Lorimer St

Suburb Docklands



Website www.eventra.com.au


ABN 43026013729

Company Background At Eventra we pride ourselves on taking the time to listen and understand your business. We design solutions to meet your current requirements whilst supporting future growth and change. Our strategic consulting services help clients reduce costs, drive efficiencies, improve service quality and create business value by better aligning technology investment with your overall business strategy. Eventra disciplines include: • IT Strategy planning and advice • Enterprise Architecture • Supplier/vendor assessment • Business case preparation • Board and Executive Management facilitation Eventra also provides Programme and Project Management services and resources to large and SMB clients. Each resource has these skill levels to operate within a Prince2 and PMBOK umbrella. These services have included the full spread of Project Management disciplines across the systems development life cycle including (but not limited to) the management of: • Planning • Scope • Cost • Quality • Scheduling • Change & Communications • Risk (identification and mitigation) • Resource Management (internal and external) • Vendor liaison (including procurement) • Implementation (including integration and transition management).

Company Accreditation (Optional) Eve3ntra is progrerssing towards ITIL and CMMI accreditation and intend sto acheive both by the end of 2010 FY

Corporate Governance of ICT Eventra approaches ICT Governance as that part of Corporate Governance that consists of the structure, processes and leadership to ensure organisations ICT resources, investment, capability sustains and extends the organisations strategies and objectives. Eventra has assisted leading organisations in: 1. Clarifying business strategies and the role of ICT in delivery 2. Measuring and managing the amount spent and the value received from IT 3. Assigned accountabilities for the organisational changes required to benefit from ICT capabilities. 4. Learning from each implementation so they become more adept at sharing and using ICT assets Example: a) Australia Post IWC. The Interact With Customer (IWC) program was an initiative that took stock of the current in-flight projects, and then compared what was being developed to where Post needed to develop strategic customer interaction capability. This determined if Post was developing strategic capability or continually delivering "tactical" responses to customer requirements, which would lead to an increase in TCO. It also identified a capability build approach where investment funding for customer systems would be based around executing "foundation" capability first, followed by


"core" capabilities next which would then lead to "extended" development. b) Defence Materiel Organisation (DMO). The programme of work JP2077 2B.1 will provide a single logistic information system to enable end-to-end management of a fully integrated supply chain. A key service component was to establish the appropriate governance framework and operational processes (within programme control) to ensure the key stakeholders and decision makers were fully engaged, informed to


Organisation Name Fujitsu Australia Limited Trading Name

Contact Mr Kym Petney

Address Level 1, 19-25 Moore St

Suburb Turner



Website www.fujitsu.com/au/


ABN 19001011427

Company Background Fujitsu Australia Limited is a full service provider of business and information technology and communications solutions. We partner with our customers to offer services from strategic consulting to application and infrastructure solutions and services. Fujitsu has earned a reputation as a supplier of choice for leading corporate and government organisations and has grown by reputation into a full service provider in this region offering true end-to-end business and IT solutions.

We combine professional expertise, world-class methodologies and consulting and application services with adaptive platforms, advanced solutions and products to deliver the business results our clients are seeking - results that transform businesses and provide a return on investment.

Fujitsu has:

* Over 10 million customers and 160,000 professional staff in 60 countries around the world

* 3,000 Australian and New Zealand staff

* Long-term clients in every sector – government, healthcare, justice, finance, manufacturing, retail, telecommunications, transport, distribution and utilities

* A proven track record for delivering successful projects that achieve real business benefits and return on investment

* An annual investment of more than US$2 billion researching and developing cutting-edge business technologies, resulting in over 32,000 patents with more being added all the time.

Company Accreditation (Optional) Fujitsu’s Quality Management system meets the requirements of AS/NZS ISO 9001:2000. We continually seek ways to improve our processes and ensure they continue to meet the requirements of our customers and the technological and business environment. Fujitsu is registered with SAI Global Assurance Services. The registration covers the Quality Management System for design, sales, consulting, administration, installation, maintenance, service and support of information technology and telecommunications solutions, products, networks and services. These include management consulting; strategic planning; design and development, logistics, integration, configuration and commissioning of hardware and software products;


management and operations of computer processing facilities; provision of help desk facilities and services.

Fujitsu's consultants are well versed in methodology and industry best practices including Portfolio Management Capability Maturity, IT Infrastructure Library (ITIL) and SEI Capability Maturity Model (CMM).

Corporate Governance of ICT Fujitsu can advise on appropriate governance frameworks and take a lead role or coach an organisation through the implementation of the process.

Fujitsu’s approach to providing consulting and solution services includes identifying and developing the following essential components for appropriate governance structures:

* Leadership responsibilities and requirements;

* Definition and communication of the required roles and responsibilities within the agreed governance organisational structure;

* Standard governance processes to be used in the effective identification, prioritisation, stage gating and management of portfolio and business activities and IT processes;

* Accountabilities consistent with your organisations controls to support the agreed governance processes; and

* Reporting requirements to provide adequate information throughout the portfolio and program processes for appropriate management action.

Recent experience includes Australian Custom Service (Investment and Program Office Management) and Centrelink (Program Portfolio Management and Investment Management Framework).


Organisation Name Gecko Consulting Pty Ltd (Grantly Mailes) Trading Name Grantly Mailes

Contact Mr Grantly Mailes

Address 14 Manorwood Place

Suburb Mitcham

State vic Postcode 3132


Website


ABN 34080510667

Company Background Gecko Consulting is a specialist ICT consulting firm established for over 12 years. It focuses exclusively on the public sector in matters such as ICT and social policy, project risk management, strategy development and business case preparation, organisation change and governance. We have extensive experience in Commonwealth and State jurisdictions.


Corporate Governance of ICT Our principal consultant, Grantly Mailes has designed corporate governance structures at whole of government level and at agency level. While CIO of the South Australian Government, he re-designed the government's ICT governance, significantly streamlining the number of groups while increasing the overall accountability of ICT services in government. Governance was based on leading practices, including relevant Australian Standards, and included governance structure, roles and responsibilities. Grantly was the Chair of the peak governance group, the ICT Board, which reported to Cabinet. Gecko Consulting has also advised government agencies on corporate governance of ICT including but not limited to the SA Department of Health (we act as independent chair of the peak ICT governance group), the ATO and the Victorian Office of the CTO. For the Office of the CTO, we advised the CTO on the governance of ICT in the Victorian Government.


Organisation Name Global Sapphire IT (Australia) Pty Ltd Trading Name

Contact Mr Joce Santa Maria

Address 8 Carinya Road

Suburb Picnic Point

State New South Wales

Postcode 2213


Website www.gsiorg.com


ABN 91106950565

Company Background GSI’s core competencies are in the areas of providing ICT solutions, strategic alliances and value-added services. At GSI, we undertake strategic alignments, whether such alignment is between ICT and business strategies, or a re-engineering of business processes. We adopt a solutions-oriented approach to the application of its technology, and doing so with the knowledge and understanding of key industries and business processes to deliver objectives. We work with you to facilitate a one-stop-shop of integrated services which ensures that your objectives are fulfilled in a rapid timeframe. Combining solid industry experience and technology skills, GSI possesses a strong functional perspective that makes it effectively capable to provide counsel on technical information, develop and link it to business strategy in a cost-effective manner. GSI resources have extensive experience in the Information and Communications Technology industry providing consulting to such arenas as Australasia, Asia Pacific, Europe, Middle East and the US. Our experience and reputation for delivering high quality outcomes and achieving outstanding results working with our organisations continue to grow. It will come as no surprise to the market that we consider our experienced team to be GSI’s key winning differentiator.

Company Accreditation (Optional) Oracle Business Partner; Members of Australian Institute of Management; Members of the Australian Computer Society; Members of the Project Management Institute; Members of the Institute of Management Consultants; Prince 2 Practitioners; OPM Practitioners. PMBOK Practitioners BABOK Practitioners

Corporate Governance of ICT GSI helps organisations implement Corporate Governance as an extensive, logical leap through planning, scheduling, budgeting and controlling projects. GSI mentors the organisation through the Corporate Governance process by building maturity in small steps, increasing usage and discipline; providing immediate feedback; mentoring a leadership program; streamlining processes; managing controls and outputs, identify develop and maintain executive sponsorship - Benefit Management - Change Management - Corporate Reporting

Burwood Council: Drive Corporate Governance as an evolutionary model to control and manage change, this was done by providing the structure needed to standardise their ICT project


management practices, facilitate proper portfolio management, and determine methodologies for repeatable processes.

Blue Dot: Corporate Governance helped provide visibility of initiatives across the whole organisation - Focused ROI, improved time-to-value and time-to-market - reduced costs through streamlined processes e.g. TCO - Increased productivity, sales and customer satisfaction - Less duplication of effort (and wasted money)

Sydney Symphony Orchestra: Governance, risk management, benefits realisation, change management, tracking, and reporting to bear, and introduces full portfolio management: a highly effective method for making the most of limited resources.


Organisation Name Goal Professional Services Pty Ltd Trading Name Goal Group

Contact Mr Alan Rankins

Address 7 Riverside Drive

Suburb Mayfield West



Website www.goalgroup.com.au


ABN 65 122 098 695

Company Background Goal and the Goal Group were established in 2006, utilising consultant/PSP experience in Project and Program Management and Change Management, with a particular emphasis on continuous improvement.

Goal and the Goal Group assists organisations to analyse and better understand their operating environments, in order to develop their capabilities in strategic procurement and supply chain capability. We gain a thorough understanding of the commercial and competitive environment and identify specific challenges relating to capabilities, policies and procedures. The Group’s expertise is in developing and implementing strategic solutions for our clients. Key to success is cost control, management of budgets, and capability improvements.

Headquartered in Newcastle and open in Melbourne, Sydney, Adelaide, Canberra and Wellington New Zealand, Goal operates across Australasia and globally. We cover strategic planning, governance, organisational maturity and portfolio/programme/project management consulting, training and delivery support services.

Goal’s clients have included KPMG, PWC, Rolls-Royce, Thales Australia, training providers, the Defence Materiel Organisation (DMO); Federal and State government departments and SMEs. We are innovators in the fields of leadership, learning and development. We have accredited Gateway Reviewers.

Goal is an Accredited Training Organisation for both MSP® and PRINCE2® and the Goal Group boasts an RTO in Project Management accreditation and certification.

Company Accreditation (Optional) Goal Professional Services Pty Ltdis an Accredited Training Organisation for PRINCE2 and MSP. A number of the Goal Group members hold ISO 9001/2000 accreditation. Specific members hold required engineering accreditations.

A Goal Group member is a Registered Training Organisation able to provide Project Management qualifications up to Advanced Diploma level.

Goal offers P3M3 organisational maturity assessments and Gateway Reviews.

Goal Professional Services is a member of the Defence Industrial Security Programme (DISP) and maintains appropriate defence security clearances for its consultants.


Corporate Governance of ICT Goal senior consultants have held senior IT-related management positions in Lend Lease, IBM Global Services Australia, KPMG, Telstra and the Victorian Department of Human Services. A Director of Goal and our Principal Consultant contributed to the development of AS8015, the Australian Standard for Corporate Governance of ICT.

One of our consultants ran a project for the Victorian Office of the CIO, to establish standard procedures across 11 Government Departments and agencies for measuring and analysing IT-related expenditures, with a view to creating synergies at whole-of-Government level.

Goal offers a core group of senior consultants, but in order to be able to offer our clients a national and international delivery capability, we have established strategic relationships with similar organisations both interstate and internationally.

One Goal consultant has been CIO of a major international company. In his role in improving organisational competence in programme and project management, he focuses on improving governance of programmes and projects.

Another of our consultants reviewed the approach and governance arrangements of the Defence OHS Program ($100Million over 10 years) in the Commonwealth Department of Defence and identified organisational and procedural improvements to the program’s approach and management.

Our consultants also offer briefings on governance of major change initiatives to Executive Leadership Teams. Goal consultants include current Managing Directors, Directors and General Managers highly experienced in the operations of major and small companies. Goal consultants are members of the Australian Institute of Company Directors.


Organisation Name Grosvenor Management Consulting Pty Ltd Trading Name Grosvenor Management Consulting Pty Ltd

Contact Mr Peter Macfarlane

Address Level 7/15 London Circuit

Suburb Canberra



Website www.grosvenor.com.au


ABN 47105237590

Company Background Grosvenor Management Consulting is a private, Australian owned company and a leading provider of strategic and operational advice to public and private sector organisations. Grosvenor has a team of highly skilled and qualified consultants located in Melbourne, Canberra and Sydney. We are practitioners in a range of services including strategic sourcing, business improvement and program evaluation across a range of sectors including ICT. Grosvenor has developed significant ICT and technology strategies for organisations as diverse as the National Water Commission (ICT Strategy) right through to Centrelink (Digitisation Strategy). We have provided support in implementation of ICT projects, including business process analysis pre-implementation, project management and procurement support, through to evaluations and post implementation reviews. We have experience across all levels of government and the private sector with clients as diverse as ANZ Bank, Defence and the City of Melbourne. We are highly regarded by our clients, both for our ability to deliver, and for our ability to ensure the advice is practical and business outcome focused. We can provide full details of past projects and clients who will attest to the quality of our support. Further details on our capability can be found at www.grosvenor.com.au

Company Accreditation (Optional) Grosvenor has in place a quality system modelled on ISO9001. Our system has key measures, including meeting or exceeding expectations 100% of the time and resolving issues to the 100% satisfaction of the client. Our post project customer feedback has delivered an average score of 8 out of 10 for meeting expectations (5=met expectations) and 8 out of 10 for quality of consultants versus other firms (5=same).

Corporate Governance of ICT Grosvenor has significant expertise in corporate governance of ICT, including areas such as structures and decision making, planning, performance monitoring and evaluation, reporting, quality, risk and change management. Grosvenor has developed these at the organisational, program, project and individual level. Royal Australian Mint, Transformation Program: Our client wanted to understand the critical organisational risks with staff and their senior managers in readiness for a significant period of disruption to the status quo and implementation of a number of strategic change projects across the organisation. This was a complex and culturally sensitive wholesale transformation project encompassing major change initiatives across people, culture, systems, manufacturing equipment, building, facilities, security and HR processes. This project


included a significant element of managing staff transition, and the development of communications and consultation strategies. We were subsequently engaged to provide more specific change management and communication planning support to the replacement of all the organisation’s core IT systems. City of Melbourne, Best Value review of ICT: Grosvenor conducted a comprehensive review of the City’s ICT management under the Best Value framework. This included a comprehensive review of business needs, detailed analysis of expenditure including expenditure outside approved channels, examination of existing governance and management arrangements (e.g. risk management and change). A new governance framework was developed that covered all aspects of ICT governance to achieve greater control of expenditure, systems in use, use of contractors and management of projects, providing clearer focus in supporting the business needs.


Organisation Name IBM Australia Limited Trading Name IBM

Contact Ms Permenthri Pillay

Address 8 Brisbane Ave

Suburb Barton



Website www.ibm.com.au


ABN 79000024733

Company Background IBM is the largest information technology services company in the world, with $US103.6 billion of revenue, pre-tax profit of $US16.7 billion and total assets of $US109.5 billion. IBM service teams link with IBM industry experts, research divisions and thousands of business partners to help clients succeed in delivering business value by becoming more innovative, efficient and competitive through the use of business insight and information technology (IT) solutions. Worldwide, IBM employs over 355,000 people and has a significant global presence, operating in 170 countries, with approximately 60 percent of its revenue generated outside the United States. Approximately 65 percent of the company’s employees are located outside the United States, including about 30 percent in Asia Pacific.

IBM Australia Limited is a leading supplier of information technology, software and services. IBM is a significant business in Australian terms with more than 14,000 employees Australia wide, and a turn over of $AU 3.9 billion (FY2007). Entrenched professional networks with the wider international IBM community enable IBM to tap into the broad and varied resources of the corporation as a whole. IBM currently has a number of significant commitments under contract and has a well established relationship with the federal government sector

Company Accreditation (Optional) IBM across the whole of Australia and New Zealand has been recognised for its overall quality efforts by the granting of a single AS/NZS ISO 9001:2000 Quality Management System Requirements certification covering all Sales and Services activities. A condition of the certification is that IBM Global Services’ quality processes are audited on a regular basis and the majority of the yearly surveillance program is conducted in Services aspects of our business IBM’s Application Management Services (AMS) Delivery group has been assessed at SEI © CMMi 5, the first organisation within Australia and one of the largest world-wide to be independently assessed to be operating at this, the highest, level by the Software Engineering Institute (SEI).

IBM has undergone a number of audits to the AS/NZS ISO/IEC 17799:2004 Information Technology - code of practice for information security management and on each occasion the systems deployed to support clients have been found to be highly compliant.


Corporate Governance of ICT IBM’s approach to corporate governance of ICT includes the design and implementation of a leadership, process and structure to ensure the organisation’s IT enables and supports the organisation’s strategies and objectives by defining:

- what key decisions need to be made;

- who is responsible for making them including the role of key stakeholders for all key IT related decision making domains, key structures and bodies involved in the decision making;

- how decisions are made; and

- the process and supporting structures for making them, including monitoring adherence to the process and the effectiveness of decisions, management of the change processes and stakeholder engagement.

Reference projects include the following:

- IBM has successfully designed and planned the implementation of an IT governance model for Parsons Brinckerhoff, an end-to-end project management services organization covering a new IT strategic planning process, a new IT funding / budgeting model, a set of IT governance committees with roles, responsibilities and decision making frameworks and an IT portfolio management process including a new prioritization framework.

- As part of an engagement that reviewed the Australian Department of Veterans Affairs service delivery arrangements, IBM recommended changes to the Departments governance, including arrangements for ICT.


Organisation Name ICM Consulting Pty Ltd Trading Name

Contact Dr Bernhard Hurzeler

Address Level 17, Suite 1702, 109 Pitt Street

Suburb Sydney



Website [email protected]


ABN 64143127404

Company Background ICM is a professional services consultancy that helps our clients to achieve measurable business outcomes underpinned by innovative and effective IT. We deliver IT projects successfully using best practices, industry and open standards. ICM comprises talented and highly qualified consultants who have many years of experience in their respective fields and with long-standing careers in corporate enterprises prior to joining our organisation. Our business is to develop innovative and effective solutions that will address your IT objectives today - and in the future. We can assist you in the discovery, analysis and definition of your business strategies. Business functions can be recognized, engineered and ultimately mapped to IT systems. We have the necessary tools identify and eliminate misalignments or superfluous functions that are not aligned to your business strategy. We can select and design new systems to automate missing business functions that may involve high operational cost or be impeding productivity. business functions that map to the business strategy. Enterprise architecture, program/project management and business analysis. These are just some of the services we can provide including Business Process Re-Engineering (BPR) which ties in with modern system integration delivering unprecedented business agility.


Corporate Governance of ICT Corporate Governance of ICT Groupon Australia: ICM Consulting designed and implemented the ICT Governance, facilitating the successful integration of the following policies - Social Media Guidelines, Email and Internet Usage, Equipment and Software, Information Management and Security. The ICT Governance included input from Executive Management via workshops and used industry standards and best practices. Ministry of Transport: ICM Consulting conducted a review of the governance structures, change management, risk and issue management, roles and responsibilities, and technical infrastructure. These were developed through consultation with management and subject matter experts gained via workshops. ICM Consulting subsequently provided recommendations using technical and management best practices and standards.


Organisation Name Infonomics Pty Ltd Trading Name

Contact Mr Mark Toomey

Address 19 Stratford Square

Suburb Wantirna

State Vic Postcode 3152


Website www.infonomics.com.au


ABN 41075866634

Company Background Infonomics is a specialist consulting organisation, based in Melbourne, Australia.

Our business specialisation is in corporate governance of information and communication technology.

We help organisations ensure that their current and future use of IT is effective, efficient and acceptable, by explaining, developing and improving top level systems of control, or governance, of information technology and business change.

We help IT Leaders to build executive and board understanding of, support for and engagement with systems of governance for IT.

We help directors and senior officers to understand their roles in respect of IT, communicate effectively and appreciate their organisation's unique circumstances.

Our founding Principal is a member of the Standards Australia technical committee developed the world’s first standard for corporate governance of IT and is now supervising the development of further related standards.

Infonomics provides unique insight and perspective that is specifically designed to assist those who have little detailed understanding of IT and bridge the gap to those who have intimate, detailed knowledge.

We:

- Inform organisations about Governance of IT;

- Assess their performance in Governance of IT; and

- Improve their performance.

Company Accreditation (Optional) Infonomics is a small business, in which the accreditations are carried by its personnel rather than by the firm itself.

Infonomics founder Mark Toomey is a Senior Member of the Australian Computer Society (ACS), and a Fellow of the Australian Institute of Company Directors (AICD), and a Member of the


Information Systems Audit and Control Association (ISACA). He was awarded the AICD Company Director's Diploma in January 2004.

Most importantly, Mark Toomey is a member of Standards Australia committee responsible for Australian Standards for Corporate Governance of IT, and a member of the international committees responsible for the corresponding (forthcoming) international standards. He is Australia's leading expert in the understanding and application of the Australian Standard.

Corporate Governance of ICT Infonomics founder and principal consultant, Mark Toomey, is Australia’s leading independent advisor on corporate governance of IT. Mark has been continuously involved in the development and application of AS8015 since 2003, and has played a leading role in the forthcoming adoption of AS8015 as an international (ISO) standard.

The Infonomics services portfolio is fully described in the Infonomics Capability and Experience documents accessible from the front page of the www.infonomics.com.au web site. Infonomics Inform helps people and organisations understand what Corporate Governance of IT is. Infonomics Assess helps organisations understand their situation at a point in time, using rigorous diagnostic instruments based on standards and recognisable good practice to identify gaps. Infonomics Improve helps organisations be more effective in Governance of IT.

Infonomics experience in Governance of IT includes:

- Medium financial institution: Board briefing, Governance assessment against AS8015

- Major vertically integrated industrial: Executive briefing, Governance assessment against AS8015

- Metropolitan Council: Governance assessment against AS8015

- Major commonwealth government organisation: IT Governance coaching for IT Leaders

- Major state government agency: Top-level review of a massive ICT investment program

- Leading TAFE Institute: ICT Governance assessment and initial governance system design.

- Regional TAFE institute: Design and implement comprehensive system of governance for IT.


Organisation Name Information Professionals Trading Name Information Professionals

Contact Mr Mark Nicholls

Address PO Box 15390

Suburb City East



Website www.informpros.com


ABN 73094990057

Company Background Information Professionals is a specialist provider of management services for complex IT and related initiatives. Information Professionals was conceived to fulfil the need of providing expertise and experience on the delivery of Programme and Project Management outcomes free of third party agendas. Our clients can be assured that we are product and vendor agnostic, and always respond to client requirements with integrity and objectivity. We were established in 2000, and have grown through successfully delivering services to government as a first priority. We now operate in Canberra, Sydney and Brisbane, with emerging business in Melbourne and Adelaide. We have particular expertise in large complex change projects, and strong capabilities in connecting governance, management, process, and quality. We have an adaptable approach to our assignments and add lasting value to our clients. We work with the main-stream standards (PMBoK, PRINCE2 and MSP), applying them in a pragmatic way. This allows the topping up of an existing environment without constant reinvention of existing practice. Information Professionals consultants are valued by our clients for their deep experience, flexibility, reliability, and quality of the outcomes they deliver. Feedback from a recent survey of clients rated the expertise of our people as “excellent”.

Company Accreditation (Optional) At Information Professionals, we promote a commitment to quality through both quality assurance and quality control methods, and the application of established procedures, standards and tools. Information Professionals has established and maintains an effective quality control system which will operate in conjunction with other management functions within the company to ensure that our customers receive quality service at all times. The basis of the Information Professionals Quality System is the application of ISO9001 to Information Professionals daily business operation. This quality control system is to be continually improved to ensure its effectiveness with changing business and technology conditions. We can assist with developing and implementing practical plans, systems and strategies that address the issues of quality. It is our belief that at the heart of all good quality is the commitment to progress, to learning, and to sustainable and continuous improvement. This is then underpinned by appropriate procedures and methods to capitalise on the learning generated from the organisation. Our methods and skills leverage from PRINCE2, MSP, PMBoK, Capability Maturity Model, ITIL, COBIT and Balanced Scorecard. Many of our consultants hold membership with the Australian Institute of Project Management (AIPM), other relevant professional associations, and relevant post-graduate qualifications.


Corporate Governance of ICT Information Professionals has extensive experience in defining Governance arrangements in multiple industries. Our work assists with managing and directing your team and your organisation towards the definition and clarity of decision making rights. Its associated elements can include value delivery, management of risk, optimisation of resources, strategic and business process alignment, organisational sustainability and the management of performance. Our capability encompasses all major management standards including ITIL, CoBIT, the OGC standards of PRINCE2 and MSP, and AS8015. In 2008, Information Professionals assisted Brisbane City Council in commencing a journey towards a Centre of Excellence approach in project delivery. Their significant project portfolio and associated annual capital spend was under pressure due to shifting stakeholder interests and the federated model they operated within. This engagement required assessment at multiple levels including the governance arrangements associated with project approval, gateway or stage gate approvals, budget and funding arrangements and other elements of governance including those associated with all layers of architecture and business process ownership. In the 2009 Queensland Government Chief Information Office assignment, governance considerations were a major part for considering decision making rights associated with establishing alternative sourcing arrangements for in demand staff on a whole of government basis. While there were the potential for improvements across government, there was also the potential for impact on project and departmental governance structures, and this required a pragmatic assessment of these impacts prior to recommendations being formed.


Organisation Name Integral Technology Solutions Pty Ltd Trading Name

Contact Mr Cameron Tuesley

Address Suite 13 / 83 Leichhardt St

Suburb Spring Hill



Website www.integral-techsolutions.com


ABN 38097602901

Company Background Headquartered in Australia, Integral Technology Solutions (Integral) works predominantly with Telecommunication Companies, Financial Institutions and Government Agencies throughout the Asia Pacific Region (Australia, New Zealand, Indonesia, Singapore, Hong Kong and Thailand).

Integral’s vision is "To deliver a successful outcome, for our clients and our colleagues".

Integral’s heritage has been in Technical Solutions and services based on J2EE technologies. Led by experts in their field, Integral’s mature capabilities in project, program and portfolio management has seen Management Consulting added to complement the Integral brand and service offering. Integral employs only the highest calibre Program and Project Managers in today’s industry. Integral’s Program and Project Managers bring a high level of expertise, acquired through education and experience, to a variety of organisational cultures. They are skilled in knowing how to organise and manage physical and human resources to best suit your organisational needs. Whether it is taking full ownership for achieving the desired outcome, reviewing project success, or simply offering guidance around practical solutions and best practice, Integral’s Program and Project Managers use industry standards and methodologies to address delivery, quality and governance. Integral employs only experienced and qualified professionals who can manage the spectrum from individual projects, portfolio of projects, or an entire program of work through all phases of the lifecycle. Engaging any of Integral’s professional staff can help your organisation reduce risk and increase the probability of success for your projects or programs.

Company Accreditation (Optional) Integral commits to Quality by leveraging a variety of industry best practice principles, standards and partnerships to act as enablers in each unique engagement:

• Australian Standard 4360 - Risk Management; • ISO/IEC 27001 - Information Security Management;

• Australian Standard 8015-2005: Corporate governance of information and communication technology;

• Member of Australian Information Industry Association (AIIA);

• Memberships and accredited personnel in MSP™, PRINCE2™, PMBOK®, AIPM;


• Integral is currently working towards accreditation in both ISO 9000:2001 and CMMI;

• Integral Management Consulting Methodology (MCM);

• Integral Integration Methodology (IIM);

• Integral Software Development Methodology (IDM) Integral is also registered with the Queensland Government’s GITC certification Version 5. GITC Number ‘Q-2443’

Corporate Governance of ICT Integral has significant capability in managing structures and processes relating to Corporate Governance of ICT. This capability has been displayed through a variety of proven quality assurance, engagement, measurement, risk and change management mechanisms across a variety of industries public and private, as well as across multi-government agencies. Whether you're aligning business initiatives with strategic intent and measuring quantifiable benefits or improving your governance mechanisms, Integral leverages its adaptable and digitised frameworks and focus on continuous improvement of your portfolio, program or project systems which link back to the six basic principles of good ICT Governance:

1. Establish Clearly Understood Responsibilities for ICT

2. Plan ICT to best support the organisation

3. Acquire ICT validly

4. Ensure that ICT performs well, whenever required

5. Ensure ICT conforms with formal rules

6. Ensure ICT respects human factors

Example:

a) Integral worked with Oracle Consulting on the Telstra SDF project, providing specialist consulting services around the IT architecture, standards, operation and delivery of the project. This was successfully built on BEA (now Oracle) technologies, including WebLogic.

b) Implementation of project management processes at Delta Group Australia as part of an ERP selection processes. This involved providing basic project management templates, setting up project governance and sponsorship structures and educating those incumbents in their assigned responsibilities. The role also involved running risk management workshops and setting up the selection process, success criteria and a visible reporting mechanism to highlight progress across the management team.


Organisation Name ITNewcom Pty Limited Trading Name ITNewcom

Contact Mr Stuart Gibson

Address Level 6, 71 Walker St

Suburb North Sydney



Website www.itnewcom.com


ABN 50077613828

Company Background ITNewcom is a wholly owned Australian company, with offices in Canberra and Sydney. We have a proven track record for delivering high quality, value for money outcomes for our clients in the Australian and Asia/Pacific regions. We specialise in ICT focused benchmarking, consulting and research services. Some of the many aspects that uniquely position ITNewcom to provide services to government are:

Deep Knowledge of Commonwealth Government - We have worked with a wide variety of Commonwealth Government clients, including the ABC, APSC, ASIC, the ATO, CSIRO, CRS, CSA, Customs, DAFF, DOFD, DoHA, DIAC, DVA, FaHCSIA, IP Australia, Medicare Australia and Tourism Australia.

Strong Track Record - Since 1997, we have performed over 300 benchmarks and advised on over 125 major ICT procurement transactions with a combined contract value of more than $11 billion.

Highly Qualified and Experienced Consultants - ITNewcom’s advisors bring to the table strategic, financial, technical, contracting and negotiation skills, combined with an average of over 20 years ICT industry experience.

Comprehensive Benchmarking Databases - ITNewcom maintains comprehensive Australian and New Zealand benchmarking databases which are second to none.

Rigorous and Proven Methodologies - Our advisers draw upon ITNewcom’s comprehensive methodologies and a suite of over 300 tools.

Company Accreditation (Optional) To deliver reliable and consistent services to our clients, we have ensured that our methodology is highly integrated and compliant with the relevant industry and government standards. Examples of our compliance include: - Our risk management methodology and tools, used to support risk assessments and the development of detailed risk management plans, are aligned with the processes and tools used by Commonwealth government agencies and departments and are compliant with AS/NZS 4360.2004.

- Our procurement methodology is aligned and consistent with the Australian Government Procurement Policy Framework, including the CPGs.


- ITNewcom led the development and establishment of a Benchmarking Code of Practice for Australia and is one of the two founding signatories to the Code. Our methodology has been reviewed and authorised by a range of leading probity, audit and legal advisors that service Commonwealth agencies.

ITNewcom’s processes and deliverables have also been audited against a number of ANAO standards, including Contract Management: Better Practice Guide, and Selecting Suppliers: Managing the Risk Guide. The audits confirmed that all requirements in these guides were met.

Corporate Governance of ICT While ITNewcom can assist organisations in the general design and implementation of ICT governance, we specialise in the governance and management of ICT sourcing arrangements. For example, at Customs, we have assisted with the design of the Customs IT Multi-Party Arrangements that will be used to manage all internal and external ICT providers. These arrangements include a multi-tiered governance framework (strategic, managerial and operational), service management framework (incident, change, quality and other such processes), a scorecard performance framework, innovation and technology planning. The scorecard framework integrates the performance of all providers and is aligned to business outcomes across one of the following dimensions: Strategic Value, Financial Management, Service Performance and Customer Satisfaction. The scorecard will be automated and is focused on incenting collaboration and performance improvement. We will design and implement such a framework at Medicare Australia as part of the ICT Procurement Services project. We have also assisted DIAC in designing and implementing governance frameworks. We are also able to assist organisations to implement quality assurance, risk management and governance effectiveness processes that are specifically designed for ICT management. For example, we provide an on-line survey service which organisations can use to obtain staff and stakeholder feedback on the effectiveness of ICT generally and specifically its governance processes. Similarly as part of our ICT management services we can provide a range of methodologies, tools and processes to assist an organisation to evaluate and monitor its ICT investments, including benefits realisation and performance measurement such as via an ICT scorecard.


Organisation Name Jakeman Business Solutions Pty Ltd Trading Name

Contact Dr Miles Jakeman

Address Unit 1, 10 Kennedy Street

Suburb Kingston



Website www.jakeman.com.au


ABN 72101963240

Company Background JBS is a dynamic Canberra based company and wholly owned subsidiary of The Citadel Group Limited (CGL), a leading professional and managed services provider with 300 staff nationwide, a $65m annual turnover, and an ability to draw on the expertise of over 3,000 people. We provide:

tailored solutions that meet the specific needs of our clients;

relevant products and services;

highly skilled and expert staff; and

management advisory and consultancy support services at competitive rates.

JBS has managed numerous projects with major Government agencies and the private sector and delivered a wide range of products and services on time and within budget. We have a core group of staff with a network of strategic alliances with business associates and partners. We have an impressive history of delivering quality solutions to clients, working closely with clients to define the problem, provide suitable and timely solutions, and then if required, assist with the implementation program.

We have considerable expertise in the development and delivery of Security Risk Management support. We have worked with almost all of the Commonwealth Government's defence, security, border management and law enforcement agencies and represent a low risk solution due to our solid understanding of Australia's complex security environment.

We were an endorsed supplier under the earlier Australian Government Endorsed Supplier program.

Company Accreditation (Optional) JBS is an endorsed Registered Training Organisation (RTO) offering national accredited training up to and including Advanced Diplomas across a range of specialist business education and ICT courses – our RTO Number is 88134 and can be checked at www.ntis.gov.au. This accreditation requires us to maintain a detailed quality management system that is reviewed annually and externally audited.


Corporate Governance of ICT JBS provides Professional Advisory services using highly qualified and experienced consultants that support the corporate governance of ICT requirements of our clients that are fit-for-purpose, workable and address the specific governance needs of our clients. Of particular note is our expertise on Corporate Governance support services in the design and implementation of the relevant structures, quality management, risk management, stakeholder engagement and measurement to assess the effectiveness of the governance processes. Two examples that demonstrate our success are:

On behalf of the Department of Defence, JBS reviewed interactions between the Department and the Minister’s office and provided a range of recommendations aimed at improving group-level governance arrangements.

As part of the Defence CIOG Regional ICT Market Testing project, JBS consultants assisted Defence in the review of the current state of Defence ICT services, benchmarked these against expected service delivery standards under the ITIL methodology and then provided recommendations on how Defence's services could be improved. Specifically, our consultants provided governance support for the full procurement process – Restructure and position the ICT environment for the market test, tender preparation, tender evaluation, negotiation, transition to outsourced arrangements, restructure of remaining ICT support services delivery model.


Organisation Name Kapstone Consulting Pty. Ltd. Trading Name Kapstone Consulting

Contact Mr Martin Steffens

Address 16 WELLS PL

Suburb BELLMOUNT FOREST



Website www.kapstone-consulting.com.au


ABN 93149236635

Company Background Kapstone Consulting is a multi-disciplinary consulting practice specialised in Strategy and ICT Capability Improvement that help our clients optimising their organisational and operational results. Focused on the Information and Communications Technology (ICT) sectors, Kapstone Consulting offers consultancy services to Federal and State Government. In order to put into practice our working philosophy, it is necessary to establish a close collaboration scheme with our clients. By doing this we are able to help the clients to understand their own potential and to recommend the necessary changes to improve their operations and manage possible risks. Our Commitments to Our Clients: Partnership: We have a unique history of highly collaborative client relationships built on mutual respect, trust, and confidence; Customisation: We work with our clients to understand the specific outcomes needed and tailor our services to meet them; Capability Building: We are committed both to meeting our clients’ short-term tactical needs and to developing their strategic capacity to succeed in the long term; Whole-Lifecycle Perspective: We view organisations as whole systems where the people, process and technical elements all need to work together; and Continual Innovation: We are continually creating new, innovative services by drawing on the latest developments.

Company Accreditation (Optional) Kapstone Consulting holds the following certifications: ITIL V3 Expert CobiT Foundation Togaf-9 Architect Prince-2 Masters of Business Leadership (PostGradCert) Gateway Review Traditional Leadership & Mediation

Corporate Governance of ICT Corporate Governance is one of the principal competencies from Kapstone Consulting. Based on an in-depth experience across a number of federal government departments; Kapstone Consulting is able to offer pragmatic and innovative solutions, applying best practice governance methodologies such as CobiT, ITIL and P3M3. Recent examples include the Australian Federal Police; whereby a Governance and ICT Operating Model was developed to improve the capability and performance from ICT. The Operating Model did include two core principles; Conformance & Performance, in order to direct ICT endeavours and to ensure that ICT would meet their objectives. Another example is the delivery of a Service Management Improvement Program for the Child Support Agency, including ICT Governance; which included policies, procedures, establishing a Change Advisory Board and the introduction of a Balance Score Card. More recently Kapstone Consulting


is engaged by ICT vendors in order to develop an ICT Engagement process and governance to manage and align the service delivery activities between Government client and the Service provider. Kapstone Consulting does have successful track record and in-depth of experience in Business and ICT alignment and engagements, including the development of engagement processes, service level agreements and services catalogues.


Organisation Name KDN Services Pty Ltd Trading Name KDN Services Pty Ltd

Contact Mr Domenic Novia

Address PO Box 408

Suburb Mount Barker

State SA Postcode 5251


Website www.kdn.com.au


ABN 39114172600

Company Background KDN Services Pty Ltd (KDN) is a South Australian based company providing consulting services to the ICT industry. KDN is responsive to the needs of organisations with a wealth of experience, processes and a methodology gained from work in the Management Consulting areas of the ICT industry. Our experience comes from working with large consulting organisations and engagement across all tiers of Government (including SA, Federal and Local) and the private sector. KDN maintain a flexible approach and have agreements with companies to cover additional scope and capacity to provide a comprehensive delivery service. To increase the coverage of services and provide greater flexibility for alliances and partnerships, KDN recently established RTI Consulting (RTI) with a focus on the Commercial Sector. Through this expansion we can leverage off of the skills, processes and methodology that have made KDN successful to provide an increased ICT service delivery capabilities and resource pool of experienced consultants. RTI is a KDN company and through these entities KDN is able to provide greater security to its clients with the ability to be able to handle larger assignments while at the same time being flexible and responsive to cost pressures and providing cost-effective solutions.

Company Accreditation (Optional) Not certified

Corporate Governance of ICT The Barossa Council, Light Regional Council and Clare and Gilbert Valley Council formed a consortia Library Network known as the LINK Library Network. KDN was engaged by the three councils to develop the Governance model for the LINK network. The LINK Network has a high reliance on Technology to deliver the library service across a large geographical area. The Governance Model required a strong ICT focus and addressed:

Governance Requirements;

Relationship Management;

Operational Support;

Contract Management;

Financial Management;


Strategic Management;

Management Reporting.

The project was delivered on time and within budget. The success of the model has enabled other Councils such as the Town of Gawler and Adelaide Hills Council to join and expand the library consortia.

KDN assisted SA Health – Workforce Division with the Governance and delivery process of the OHS&W System Design and Implementation Project. The key activities and deliverables were:

Deliverable 1 Project Plan: Independent third party review of the draft Project Plan to ensure adequacy of scope and alignment with current SA Health structural change initiatives; Assistance to complete Stakeholder analysis; Provide recommendations to improve the Project Plan, and provision of templates/qualitative data collection tools. Governance Plan: Independent 3rd party review of governance implementation plan; and Completion of Implementation Plan and Schedule.


Organisation Name Kellogg Brown & Root Pty Ltd Trading Name Kellogg Brown & Root Pty Ltd

Contact Mr Brian Yates

Address L4, 11 Lancaster Place

Suburb Majura Park



Website www.kbr.com


ABN 91007660317

Company Background Kellogg Brown & Root (KBR) Pty. Ltd. is an international company with over 65,000 personnel located in over 43 countries. The technical and financial resources of KBR provide us with the capability to tackle virtually any project. In Australia our Defence and Government Services business unit has over 200 permanent employees with relevant Government experience. This workforce is supported by an extensive network of over 400 long term sub-contractors and sub-consultants. We believe that the capability to provide access to more than 600 personnel at short notice, places KBR in the ideal position to be one of the major providers of support services for the Commonwealth. Specifically, the Defence and Government Services business unit has:

- proven, extensive, and relevant experience in Defence Information and Communications Technology (ICT);

- experience and capability in ICT facilities and personnel security establishment;

- “hands on” knowledge and expertise of over 130 consultants currently working on a large range of Defence projects, who will be available to support our consultants as and when required, within the agreed price;

- acknowledged specialists in the areas of IT, requirements analysis, project management, systems engineering and logistics management; and

- an accredited Quality System.

Company Accreditation (Optional) KBR holds the following accreditations:

- AS/ANZ ISO 9001:2000 Quality System

- Australian Institute of Project Management (AIPM) Corporate Member and Project Managed Organisation (PMO) - OHSAS 18001:2007 Occupation Health and Safety Management Systems.

- ISO 14000:2004 Environmental Management standard

- ACT Security Industry Master License


- ACT Government pre-qualification for Engineering Consultancy, Studies and Project Management Design

- AS/NZS 4801:2001: Occupational Health and Safety Management Systems

KBR is also a Registered Training Organisation (RTO), able to offer the following courses:

Certificate IV in Business (Frontline Management)

Certificate IV in Project Management

Certificate IV in Government (Project Management)

Certificate IV in Government (Procurement)

Certificate IV in Training and Assessment

Diploma of Business (Frontline Management)

Diploma of Project Management

Diploma of Government (Project Management)

Advanced Diploma of Project Management

Corporate Governance of ICT In providing consultancy and investigative work necessary to plan and establish appropriate project governance for ICT projects, KBR can bring a wealth of experience to projects in applying the principles of governance standards and frameworks including ITIL, COBIT, PRINCE2, and the PMBOK. Recent specific experience includes studies that identify, describe and correlate the requisite framework of policies, processes and governance elements in support of ICT corporate governance. KBR’s work is sensitive to establishing clear ICT responsibilities, providing ICT plans that will support the organisation, are valid, verifiable and will perform well, conform to established rules/standards whilst also being cognizant of the human element/issues.

Example: Project CERTE - JP2099 Defence Identity Management. In 2004, under contract to CIOG, KBR began the development of a comprehensive Defence Identity Management Strategy to address issues identified by the Defence e-Business Framework (DeF) Report. The framework subsequently developed by KBR to address the Governance component of the Strategy established the appropriate roles and responsibilities necessary.

Example: e-Business Policy, Process and Governance in Defence – Scoping Study. In 2008 KBR conducted a high level scoping study for the Directorate of eBusiness Services (DEBS) within the Chief Information Officer Group leveraging on current corporate structures and assets with the objective of establishing a larger, integrated and more effective and efficient organisational e-Business capability. KBR conducted stakeholder engagement, developed (PRINCE2 methodology and templates) Risk Management, Change Management, Communication and Quality plans and Schedules for the development of Policy and Governance for Defence e-Business.


Organisation Name Kitbag Consulting Pty Ltd (Government Advisory Group)

Trading Name Government Advisory Group

Contact Ms Joy Murrell

Address 36 Dirrawan Gdns

Suburb REID



Website www.ausgovadvisory.com


ABN 83137685628

Company Background Kitbag Consulting Pty Ltd comprises of two business units; the Government Advisory Group and the Company Secretariat Group located in both Canberra and Sydney. The Government Advisory Group works as a cooperative of like-minded and experienced public sector professionals to meet the needs of its clients’ and employees. The strength of this approach allows team members of the Group to be highly flexible and innovative to perform complex tasks but provides structure and certainty via the application of methodologies and administrative support required to deliver those services. Each discipline specialist has worked in Government and the private sector delivering public value for all Australians. Collectively they are responsible for superior standards of service and a standing relationship committee of peer discipline specialists supports this. Their role is to review all client satisfaction surveys to ensure client needs are being met or exceeded. Specifically the committee will: - review delivery standards, quality and client satisfaction; - coordinate support services and project teams; - coordinate all contracts established under the MUL; - coordinate project teams is utilised - Approve methodologies for use; and - Ensure public value is being delivered. The Government Advisory Group has access to a wide range of consultants and contractors to deliver capability.

Company Accreditation (Optional) All Government Advisory Group members hold current Australian Government security clearances through our association with the Defence Industry Security Program and members hold one or more of the following accreditations. - Australian Institute of Management - Australian Institute of Company Directors - Australian Institute of Project Management - Australian Computer Society - Institute of Actuaries of Australia - Project In Controlled Environments (PRINCE2) - Information Technology Infrastructure Library (ITIL)

Corporate Governance of ICT Corporate governance is the system by which business entities are directed and controlled. In the public sector, the corporate governance structure specifies the distribution of rights and responsibilities among different participants in the agency, such as the board (for CAC agency), managers and other stakeholders, and this spells out the rules and procedures for making decisions on corporate affairs. By doing this, it also provides the structure through which the organisational


objectives are set, and the means of attaining those objectives and monitoring performance. A well operating Planning and Review mechanism gives citizens through the Parliament and the Executive confidence that government business is being prosecuted efficiently and effectively. Key premises used in the development of an effective governance model are that corporate governance: Is not just about regulation and legislation, it is about doing what is right for the stakeholders; Is broader than boards and committees; it extends throughout the organisation, and includes elements of internal controls, ethics, culture, various risk functions, policies and procedures, internal audit, and external audit; and Requires transparency of disclosure, effective communication, and proper measurement and accountability as essential elements for good governance. Adopting an effective governance model or framework helps ensure that all the necessary elements of good governance are considered and appropriately addressed. All stakeholders in an organisation can better understand, plan, and execute activities in response to challenges and risks arising from rapidly changing regulatory, market, financial, and business pressures. Effective governance relies on the interrelations of all checks and balances.

Some of the assigments Kitbag consultants have been involved in are:

- Australian Taxation Office (Consultant) Technical Team Lead of GST Computerisation and project manage the Reasonable Benefits Limit Project.

- Attorney Generals’- Crisis Coordination Centre. Perform high level enterprise business analysis incorporating process definition of the CCC to support detailed design of systems, processes and facilities. Develop CCC business case with supporting user requirements, integrated with the Parliament House Briefing Room, which supports the development, refinement and exercising of selected high priority CCC systems, people, and procedures.


Organisation Name Mahindra Satyam (Satyam Computer Services Limited)

Trading Name Satyam Computer Services Limited

Contact Mr David Castles

Address Level 6, 39 London Circuit

Suburb Canberra



Website www.mahindrasatyam.com


ABN 25084580030

Company Background Mahindra Satyam (MSAT- www.mahindrasatyam.com) (NYSE: SAY) is a leading global business and information technology services company that leverages deep industry and functional expertise, leading technology practices and an advanced global delivery model to help clients transform their highest-value business processes and improve their business performance. MSAT has over 30,000 professionals operating in 60 countries. MSAT is a financially stable and a debt-free MSAT has a clear vision for future. It also has a strong governance structure and a strong management team in place. The core focus areas for MSAT include: • Enterprise Business Solutions • Integrated Engineering Solutions • Infrastructure Management Services • Consulting and Enterprise Solutions • Industry Native solutions • Application Developments and Management Services • Business Process Outsourcing Recent Global accolodaes of MSAT are below • Gartner: MSAT is a reliable brand and has innovative offerings as a Cloud Service Integrator(CSI) • IDC: Recognizes MSAT as a formidable competitive force in the AsiaPac • TPI: MSAT ranked in Top 5 IT Service Providers in AsiaPac • Dataquest: Listed in the Global Top 20 • Mr. Anand Mahindra, Vice Chairman and Managing Director - Mahindra Group, has been invited to join the International Advisory Council (IAC) of the Economic Development Board (EDB) of Singapore

Company Accreditation (Optional) Please find below are the accrediations, the periodicity is 3 years and all are valid: -CMMI Ver 1.2 Development -ISO 9001:2008, (Quality Management System) -ISO 20000, (IT Service Management) -ISO 27001, (Information Security) -BS25999, (Business Continuity) -AS9100/EN9100, (Quality Management System for Aerospace Industry) -OHSAS 18001:2007, (Health & Safety) -ISO 14001:2004, (Environment Management System)

Corporate Governance of ICT MSAT follows the customized COBIT-ITIL framework to bridge the gaps between business risks, control needs and technical issues. The developed IT Governance will ensure that there are agreed objectives for IT, good management controls in place and effective monitoring of performance to keep on track and avoid unexpected outcomes. The framework helps IT Organisations to align their strategic and Tactical goals to the overall Business objectives and addresses - • Plan and Organise • Acquire and Implement • Deliver and Support • Monitor and Evaluate Approach: • Current state


Assessment • Future state design • Program planning • Process Definition, Deployment planning, Tool deployment, Deployment support • Benefits verification Case study:IT services wing of an UN organisation Solution: • COBIT is used at the highest level of IT governance • ITIL specific practices and standards supplements COBIT • Mercury IT Governance Tool helps translate the COBIT and ITIL processes Benefits: • Understanding current process capability and identifying areas of process improvements. • Aligning IT objectives with business objectives. • Ensuring process ownership, clear responsibility and accountability for IT activities. • Minimizing disruption of service and sustaining customer satisfaction • Facilitating continuous process improvement

Case study: One of the largest banks in the Middle East

Solution:

• An integrated implementation of best practice frameworks across application support and infrastructure

• A three year road map that targeted CMMI L 3 and ISO 20000 certifications

• A phased implementation approach that enabled the organization to absorb the changes

• A new IT organization that seamlessly wove process and functional roles

• Minimal disruption

• Implementation of service desk and Project Management Office tools to support processes

Benefits:

• Dramatic improvement in customer satisfaction from improved availability etc

• The first organization in the region to be certified to ISO 20000 and CMMI Level 2

• Renewed determination to improve : focus on another dimension: Speed


Organisation Name McKinsey & Company Trading Name McKinsey Pacific Rim, Inc.

Contact Mr Thomas Roets

Address Level 35, 88 Phillip Street

Suburb Sydney



Website


ABN 66055131443

Company Background McKinsey is the distinctive leader in top management consulting with a deep understanding of ICT challenges faced by governments. We have an extensive track record for delivering significant value in government ICT projects, and have a distinctive business-driven approach to ICT in the public sector. McKinsey has over 8,000 consultants and are present in over 80 offices in over 50 countries, and bring cutting-edge expertise in 18 industry sectors and 6 functional areas. We have been serving clients for over 80 years, and our professional legacy includes 1) Professional values and an enduring code of conduct, 2) Top management/integrated problem-solving perspective, and 3) Tailored approach and custom solutions. Our results-oriented Public Sector Practice that has driven measurable improvements throughout several government agencies worldwide. We have a specialised Business Technology Office (BTO) that serves ICT needs of public- and private-sector clients through rigorous focus on impact. The BTO has competence and expertise in technology with deep technical proficiency in systems design and IT architecture. We are objective and independent from ICT product and service providers, i.e., we provide neutral, fact-based recommendations.

Company Accreditation (Optional) McKinsey & Company does not engage in any external accreditations

Corporate Governance of ICT ICT Governance & Organisation is one of several client services lines in McKinsey’s Business Technology Office. It addresses the organisation structure, leadership mandate, decision making processes, mindsets and skills, and incentives and metrics that enable superior value creation from ICT. We have several proprietary tools that has been used with success at our client, eg, GOLD diagnose and define framework to define the appropriate ICT governance model for a government agency. We believe all ICT governance and organisation structures have inherent tensions the best design for our client locates and manages these pressure points for optimal performance

Two recent projects include:

1) Centralising ICT and redesigning ICT governance for a European government, where McKinsey developed the business case and organisational model for shared service functions for selected administrative areas (ICT, Travel, Payroll, HR, Finance) across all government departments; and


2) ICT Organisation and governance for US government agency, where McKinsey assisted in consolidating IT activities in 4 sub-scale divisions and creating a shared service function, which resulted in a new IT governance plan and common SLAs for all related IT activities and a reduction in operating costs.


Organisation Name NCSI Australia Trading Name NCSI Australia

Contact Mr Andrew Bremner

Address Level 4, North Tower, 1-5 Railway Street

Suburb Chatswood



Website www.ncs.com.sg


ABN 38089983317

Company Background NCS Australia forms part of the NCS Group, a leading information technology (IT) and communications engineering services provider with about 7,000 staff located in 11 countries across the Asia Pacific and Middle East regions. To support its customers’ business and technology needs in Australia, NCS Australia started its operations in the year 2000. Today, Australia remains as one of the key focus markets in NCS Group’s global expansion strategy. NCS Australia has offices and presences in Sydney, Melbourne, Canberra, Brisbane and Adelaide. NCS Australia provides a one-stop, end-to-end suite of IT and communications engineering solutions to its customers. With its in-depth domain knowledge and unique BizvalTM methodology which focuses on defining, realising and sustaining business value for its customers, NCS continually delivers new standards via the innovative use of technology. Serving both the government and commercial markets, NCS Australia is committed to bringing the best in IT and engineering solutions and services to customers. It provides a full spectrum of information technology services: Business and IT Consulting, Project Management, Development, Systems Integration, Outsourcing, Infrastructure Management and Solutions. NCS Australia focuses on the following key industries and domain: Outsourcing, Government, Healthcare, Financial Services and Telecommunications.

Company Accreditation (Optional) NCS Australia holds ISO9001:2008 certification for establishing and applying a Quality Management Systems for: 1. Provision of IT and Communication Engineering based Development & Systems Integration, Infrastructure Integration and Project Management 2. Provision of IT Communication Engineering Management Services which include Application Management, Infrastructure Management and Operations Management 3. Provision of Consultancy Services which include Application Consulting and Infrastructure Consulting Services Our parent NCS Pte Ltd also holds: 1. ISO/IEC 20000 : for IT Service Management Systems 2. ISO/IEC 27001 : for Information Security Management Systems 3. SS 507 : Standard for Business Continuity (BC)/Disaster Recovery (DR) Service Providers, awarded by SPRING Singapore, attained since 2004. 4. People Developer : Awarded by SPRING Singapore, attained since 2000. 5. SQA : Singapore Quality Award, attained since 1999. NCS also are CMMI Maturity Level 5 certified for our offshore Application Development and Application Maintenance projects.


Corporate Governance of ICT As the principal IT solutions provider to the Singapore Government, NCS is experienced in helping our public sector customers design Corporate Governance initiatives for alignment with the enterprise level ICT strategy. Our Business Consultants are experienced in delivering complex large scale projects to governments and commercial organisations with multiple internal and external stakeholders. With their professional exposure, NCS bring with them best practices adopted by the successful customer engagements completed across both Australia and the Asia Pacific. NCS adopts best practices in corporate governance and is aligned to COBIT in our approach. We view corporate governance as a critical aspect of IT project delivery. As such, key aspects of corporate governance are embedded as part of our standard project delivery methodology. NCS was awarded the tender for Standard ICT Operating Environment (“SOE”) for Schools by the Singapore Ministry of Education at an estimated contract value of S$850 million with a subscription of around 120,000 seats. NCS advised on IT governance over IT support and the standardisation of IT infrastructure. In consultation with stakeholders, NCS delivered a suite of recommendations focused on governance and organisation to strengthen decision making and management over ICT investments. CREST is an initiative by five Government Agencies in Singapore to implement SAP ERP solutions in a joint effort to reap economies of scale and ensure sustainable processes from a Whole-of-Government approach. Due to the pervasive impact of the project, NCS emphasised the integration of corporate governance principles within our prescribed approach.


Organisation Name NGIS Australia Trading Name NGIS Australia Pty Ltd

Contact Mr Viren Kalra

Address 103/282 Oxford Street

Suburb Bondi Junction



Website www.ngis.com.au


ABN 56061264793

Company Background For 15 years, NGIS Australia Pty Ltd has been delivering innovative, cost effective spatial information and technology solutions to both public and private sector clients in Australia and the Asia-Pacific region. Since its inception in 1993, NGIS has expanded from its head office in Perth, Western Australia, to have offices in Sydney, Brisbane and Hong Kong and business partners in Vietnam, Cambodia, China, India and Ireland. It is now one of Australia’s leading business and information technology consultancies, with specialist expertise in web development and the application of location-based technology.

NGIS has developed solutions for the resources (mining and oil & gas), environment and agricultural sectors, as well as for a range of government agencies. Recent work has included web mapping applications to support the response to emergency situations. NGIS is also active on international aid projects in Aceh to support the reconstruction activities taking place there.

NGIS’ excellent reputation throughout Australia and the Asia-Pacific region has come from successfully delivering projects on time and within budget. Our collaborative approach to projects and business ensures they understand their client’s unique needs so they can develop a solution that delivers real business benefits in the form of increased efficiency, more effective management and use of organisational data and improved decision making capability.

Company Accreditation (Optional) NGIS has developed and established a Quality Management system which is accredited and certified as meeting the requirements of the Quality Management and Quality Assurance Standards as issued by Standards Australia/New Zealand and in particular AS/NZS ISO 9001:2000.

Corporate Governance of ICT NGIS offers a wide range of corporate governance services, with a constant focus on achieving key business objectives, reducing total cost of ownership and ICT value propositions

Focus areas and methodologies include:

- Business Process Mapping

- Enterprise (Spatial) ICT Strategy development

- Stakeholder Engagement and Communication planning


- Service delivery, support and maintenance planning and process definition

- Technology recommendations and lifecycle planning.

- Risk analysis and mitigation planning

- Change control procedures

- Performance Measurement

Relevant Project Experience:

- NGIS developed the NSW Common Spatial Information Initiative (CS2i) for the NSW Department of Lands, including definition of key objectives, focus areas, roadmap, improvement recommendations and preferred governance framework.

- Barrick Gold, the world’s largest gold producer engaged NGIS Australia to deliver the Australasian component of the Barrick Corporate Operational Reporting System. NGIS devised an approach which was designed to collect the information with minimal impact to the operation involved. The resulting system allows Barrick to report on all their critical operational KPIs worldwide.


Organisation Name Oakton Services Pty Ltd Trading Name Oakton Pty Ltd

Contact Mr John Lewis

Address 45 Wentworth Avenue

Suburb Kingston



Website www.oakton.com.au


ABN 31100103268

Company Background Oakton commenced business in 1988 and listed on the ASX in June 2000.

Oakton has offices in Canberra, Melbourne, Sydney, Brisbane and Hyderabad (India), and offers services across the lifecycle of systems and a range of different technologies.

For over 20 years, Oakton has consistently enabled some of Australia’s largest organisations to meet their business and technology needs with a flexible, cost-effective, results-driven approach to service delivery. With a national coverage and over 1300 permanent Business and ICT professionals, Oakton offers depth in a range of services across the lifecycle of business systems and across a range of different technology and industry sectors.

Oakton’s offers to its clients include:

• Consultant experience – Oakton pride itself in providing consultant staff with the right practical experience required to add value to the client environment and challenges. For example, in all cases Oakton Project lead consultants have had a minimum of five to seven years actual experience before taking up project lead roles.

• Methodology - Oakton continually develop and update its own intellectual property (methods, processes, procedures) based on its consultant’s experience, industry and technology trends, and actual assignment outcomes.

• Track record. Oakton delivers what it says it will, and has demonstrable references to illustrate its track record.

• Oakton’s culture - Practical, pragmatic and business outcome focussed.

In June 2007, Oakton merged with Acumen Alliance, a national management and information technology consultancy firm. Acumen commenced trading in Canberra in 1996 and grew to in excess of 350 consultants with a core emphasis on Assurance and Risk Management, Management Consulting (including portfolio, programme and project management) and Financial Management support. The Oakton service offering now includes these consulting services which it gained from the merger with Acumen Alliance.

The achievements of the Oakton Group have recently been recognised with the award of the Best Professional Service Firm (Revenue $20-200million) in the recent BRW Client Choice Awards.


Company Accreditation (Optional) Oakton is a certified P3M3 Accredited Consulting Organisation (ACO). Oakton underwent a full assessment of its management systems by the APM Group to receive ACO status. This status is re-assessed regularly to ensure compliance with APM Group standards. Oakton also has a number of P3M3 registered consultants who have each undergone an APM Group assessment to receive Registered Consultant status.

Oakton’s delivery and management processes are part of Oakton’s ISO 9001: 2008 0-accredited quality system known as the Oakton Business System which is documented and published on the Oakton Portal.

Oakton has been certified as complying with the requirements of AS/NZS ISO9001:2008 since January 1997 and is registered as a Quality Endorsed Company under the Quality Endorsed Company Program of Quality Assurance Services, a subsidiary of Standards Australia.

Oakton’s ISO 9001 certified quality system incorporates Oakton’s Development Methodology, which is a deliverable oriented framework. Oakton’s Development Methodology is encompassed by a defined Project Management Framework approach that is flexible, customer oriented and result focussed.

Oakton’s consultants have qualifications and a depth of practical experience in methodologies such as PMBOK, PRINCE 2, MSP, P3O, P3M3, ITIL and tailored methodologies.

Corporate Governance of ICT Oakton is able to review, develop and implement corporate governance frameworks. Our capabilities include:

• Development of tailored Corporate Governance Frameworks including:

• Stakeholder Management

• Process and procedure development (including reporting and management frameworks)

• Roles and Responsibilities alignment

• Risk Management

• Embedding Continuous Improvement

• Costing models and business case development

• Ensuring alignment with strategic business needs/direction

Establishment and Implementation of Governance frameworks including:

• Change Management (including stakeholder management, organisational transformation and business process re-engineering)

• Embedding supporting reporting frameworks, processes and procedures leveraging off extant organisational management information systems and processes

• Establishment of supporting Project Management methodologies through Program Management Offices, embedded Project Managers and mentoring of client’s staff

• Review of existing projects and/or frameworks to:

• Identify benefits realisation

• Provide independent audit and assurance (through reviews of areas such as risk management and continuous improvement)


Our solutions are tailored to client requirements and are consistent with Australian Standards 8015-2005

Reference sites:

• Australian Customs Service – Establishment of a Program Management Office

• University of Canberra – ICT Advisory and committee roles, IT workforce review and planning, project communications strategy and risk assessment

• Department of Climate Change – Advice on establishment of ICT support and delivery post separation from Environment

• Murray-Darling Basin Authority – Review of the ICT Governance and operation assessed against CoBIT framework.

• Civil Aviation Safety Authority – Review of the ICT operation assessed against CoBIT and ITIL frameworks.

• Several Internal Audit of ICT governance and service management.


Organisation Name Object Consulting Pty Ltd Trading Name Object Consulting Pty Ltd

Contact Mr Teesaan Koo

Address Level 25 Northpoint, 100 Miller Street

Suburb North Sydney



Website www.objectconsulting.com.au


ABN 55003682693

Company Background For two decades, Object Consulting has successfully delivered innovative solutions and consulting to Australia’s leading organisations. Our 280-strong team delivers projects ranging from business consulting, transformation projects, technical services and specialised training– supported by best practice tools, processes and methodologies. Object delivers high quality, innovative, leading edge solutions to realise business strategy. We are a local, responsive company, consisting of pioneers who believe in continuous innovation. Object investments in intellectual property (iP) and people –translated into deep technology, methodology and industry expertise; for corresponding customer-centric solutions and products. iP helps reduce costs, risks and lead-times of engagements and provides ongoing opportunities to our customers. Object’s Practices provide the path to improving capability and delivering innovation to our clients through customer-centric solutions. Our Practice solutions are aligned with our market, customers, technical and other capability requirements and partners. Object invests heavily in staying ahead of the curve to minimise our customers’ risk on leading edge approaches. We target selected, proven, leading edge technologies to provide increased productivity, usability and longevity of all our solutions. Additionally our mature and reliable processes from Process Mentor® provides a truly industry leading and unique advantage in IT service firms.

Company Accreditation (Optional) Object Consulting uses an ISO9001 compliant process architecture platform called Process Mentor. Process Mentor provides guidance and enhances consistency of outcomes on all Object Consulting engagements. Process Mentor is a commercial product offered by Object Consulting due to the demand for this product and its resulting compliance to both ISO9001 and CMMI Level 3. Object Consulting provides CMMI certification, services, and training and are a registered CMMI transition partner. It is this focus on the quality of outcomes that has placed Object Consulting ahead of many other providers in delivery of ICT management services. Object Consulting’s staff are also qualified in the areas of corporate governance, IT Service Management (ITSM), Project Management, Program Management, Portfolio Management, Benefits Realisation, ISO15504 SPICE, among others.

Corporate Governance of ICT Object Consulting provides corporate ICT governance advice through its Capability Improvement Practice. Object provides clients with a broad range of services from conducting ICT governance


activities to the implementation of portfolio management within large Australian financial institutions. These services range from quality assurance to the implementation of enterprise risk management and its impact on ICT investment performance. The focus of Object’s corporate governance of ICT is benefits realisation across the portfolio and by broader extension use of the ValIT framework for the structure and management of ICT portfolios, in-line with AS8015-2005. Our understanding of ICT portfolios extends further than the standard by also including a framework for Sustainability within an ICT portfolio. Object Consulting assisted WorkCover in the establishment and conduct of steering committees for programmes of work within their portfolio. This required the development and implementation of governance structures appropriate to WorkCover’s portfolio whilst maintaining the needs of a fast-pace, imperative piece of work. Subsequent reporting and metrics from the programme were considered best-practice and adopted by WorkCover as default governance. Working with AMP, Object built and rolled-out new governance structures and processes for AMP projects. Object worked within AMP constraints to deliver the new approach and managed the change in order to ensure that all stakeholders were accounted for. The new structures and processes along with the managed change led to a lauded implementation, where project teams were more productive and portfolio managers had greater assurance of consistency and greater visibility.


Organisation Name Optimice Pty Ltd Trading Name

Contact Dr Laurence Lock Lee

Address 23 Loquat Valley Rd

Suburb Bayview



Website www.optimice.com.au


ABN 92123562854

Company Background Optimice Pty Ltd was formed in 2006 to provide management consulting and develop management toolsets targeting business relationship management. Optimice is acknowledged internationally for its application of network analysis techniques (Organisational Network Analysis and Value Network Analysis) to business change situations. Optimice has provided consultancy and toolsets for analysing major ICT partnerships, both internal and external. It has also provided unique relationship centred analyses of the Australian ICT market place using its proprietary visual markets analysis approach (www.visualmarkets.net. Optimice services clients in Australia, UK, Italy and the USA who are typically large public and private sector organisations looking to improve the way they conduct business partnerships. Optimice has developed a Partnership Scorecard and Stakeholder Engagement toolset to assist in the development and maintenance of profitable business partnerships, both inside and external to organisations.


Corporate Governance of ICT Optimice principal Dr. Laurence Lock Lee has published a book in 2009 with IGI Global entitled "IT Governance in a Networked World: Multi-sourcing Strategies and Social Capital for Corporate Computing". Our approach extends and complements AS 8015-2005 as described in this 300+ page book. Some examples of how our governance techniques are applied include: - A major Italian Bank with over 4,000 ICT staff used our organisational network analysis tools to address their internal governance issues. The analysis was able to identify units which were overloaded (value sources) and underloaded (value sinks) resulting in the opportunity to reconfigure service lines to deal more effectively with client demand. - A second example was the conduct of a value network analysis of an outsourcing relationship and the establishment of a partnership scorecard. This exercise alerted both sides to the importance of the softer relationship aspects of their outsourcing contract and therefore were able to focus their attention on these aspects going forward. - a third example of the application of our techniques is a market research report developed on the Australian ICT market, using contractual and joint venture partnerships as the base for the analyses. The report identifies in particular the buying patterns of both federal and state government agencies and the market "ecosystem" that surrounds them. For government agencies, the insight into the market place is uniquely differentiated from the traditional market research sources, in particular, in terms of how it supports multi-sourcing activities (www.visualmarkets.net)


Organisation Name Petersen & Associates Pty Ltd Trading Name Petersen & Associates

Contact Mr Brett Petersen

Address 33 Darby St

Suburb Kaleen



Website


ABN 15153020092

Company Background Petersen & Associates is an Australian firm that provides independent ICT services. Our purpose is to increase the efficiency and business value of our client’s technology investments. Our services are provided on a consulting and advisory basis applying a comprehensive range of techniques and methods based on the practical application of better practice methodology and frameworks. Services include strategy and governance, business case development, sourcing and procurement, vendor and contract management, project, program and portfolio management, service management and delivery. We have had numerous engagements across the Australian government in the successful delivery of all of these services. Our staff are experienced professionals with a wide range of qualifications, skills, certification and in depth practical experience across all of our service lines. This includes personnel with relevant degrees, Certified Practicing Accountants, ITIL certified, COBIT certified, Prince2 certified and business intelligence system certification (OLAP, TM1, PowerOLAP). Our staff are members of the Australian Computer Society, the Australian Institute of Project Management (AIPM), the Australian Institute of Company Directors (AICD) and CPA Australia.


Corporate Governance of ICT Petersen & Associates has been involved in several corporate governance projects across the commonwealth involving the application of Australian Standard 8015-2005 and its global equivalent ISO/IEC 38500 Corporate Governance of IT. We have procurement & implementation experience for corporate governance toolsets and processes applying Portfolio Management methodology (based on ITIL & COBIT). These include governance process and tool improvement of ICT investment management in government Agencies including the Department of Immigration and Citizenship (DIAC) and the Australian Federal Police (AFP). We implemented management frameworks for ICT at DIAC, Child Support Agency (CSA) and the AFP by delivering and improving processes for optimising ICT investments. This included setting up models that captured all ICT resources and allocated them to services and assets, so that resource consumption including drivers were visible across ICT. These models also provided required information for Gershon and ICT benchmarking purposes. Exposing these costs allowed management to make informed and effective decisions around their ICT investments. We were also involved in governance body establishment and transition to operations for the CSA and AFP for Change and Release


management processes, applying ITIL and ISO20000 frameworks. This involved defining and setting up a Change Advisory Board and formalised Release Management structure. We have a depth of experience in improvement activity in the way business engages with ICT involving development of service catalogues, MoU’s, operational and service level Agreements between ICT providers (both internal and outsourced) and the business. Projects include service management improvement program’s for CSA and the AFP.


Organisation Name Phoenix IT&T Consulting Pty Ltd Trading Name Phoenix IT&T Consulting Pty Ltd

Contact Mr Simon Greig

Address PO Box 7467

Suburb Sutton



Website www.phoenix.com.au


ABN 21090249255

Company Background Phoenix IT&T Consulting (Phoenix) is a privately owned and operated Australian firm offering clients located mainly in Canberra, Melbourne and Sydney the capability of professional project management and subject matter expertise advice to public and private enterprise.

Phoenix operates on the Principal-lead model where all client initial engagement and ongoing assignment governance and progress discussions take place with the Principal assigned to the client. Peer support and review is supplied by the other six Principals, on an as needed contingency-backup basis.

Phoenix began it present operation in January 2003, with three personnel. This has grown to over 150 with all personnel client assigned. We do not operate a ‘bench’, locating specialists relevant to the specific needs of the client, whether they be business analyst juniors or Subject Matter Experts as are more likely required for the type of work that is referenced on this Multi-Use List.

Phoenix is the distributor of a number of software products, however, these are more likely to be used in the financial and legal domains, rather than Federal Government. Details of these services are available on our web site. Generally speaking we are product and supplier agnostic, other than the procurement, evaluation and governance tool authored and constantly upgraded by Dr Ed Lewis, ‘Analysis by Networked Links’. This is an open source tool on the Microsoft Excel operating platform and can be used by any interested party. The key is, however, to be initially tutored in the products use and value proposition.


Corporate Governance of ICT Phoenix provides a unique advantage in its supply of advice about the Corporate Governance of IT. Its staff and associates set the standards for 'governance' in Australia and internationally. They can offer more than just a claimed compliance with AS/NZS 8015 or AS/NZS 8016 (which actually does not yet exist). In particular, one of Phoenix's associate members is Dr Edward Lewis. He is the Chair of the Standards Australia Committee IT030 Governance and Management of IT, which prepared AS/NZS 8015 in 2005 and is about to release AS/NZS 8016 for public comment. He is also the co-chair of the Study Group in Sub-Committee 7 of the Joint Technical Committee 1 (JTC1) of the International Standardization Organization, which recently published ISO/IEC 38500: 2008 Corporate Governance of IT - the international version of AS/NZS 8015. He is the Convenor


for the newly formed Study Group for JTC1 that will determine the structure of Governance standards over the next few years. That is, he is at the forefront of developing the principles and best practice for the Corporate Governance of IT.

Phoenix has made use of this unique expertise in several projects for Commonwealth agencies. They include governance audits, courses, or business cases for:

. Australian Crime Commission

. Australian Customs Service

. Australian Electoral Commission

. Department of Defence

Phoenox has a variety of other subject matter experts available to assist clients with their needs and business plans.


Organisation Name Pitcher Partners Consulting Pty Ltd (The Trustee for Pitcher Partners Consulting Trust)

Trading Name Pitcher Partners Consulting Pty Ltd

Contact Ms Christine Wigg

Address Level 19, 15 William Street

Suburb Melbourne



Website


ABN 40584064318

Company Background Pitcher Partners Consulting (PPC) is a full service business advisory firm which includes a strong and experienced IT Consulting Division. With an indepth understanding of business and technology, PPC is able to provide a diversity of advice and create tailored ICT solutions that achieve tangible benefits. PPC has a national presence, with 42 partners and 520 professional staff in Melbourne alone. The IT Consulting Division has a strong blend principal IT consultants, project managers, business/system analysts and strong development team. PPC is independent of ICT vendors and their resellers. This ensures our advice is independent and objective, and that recommended solutions are in the best interest of our client alone. PPC has a suite of proven methodologies and tools. Our client base is diverse including the following industries – Local & State Govt, Education, Health, Transport, Financial Services, Superannuation, Manufacturing, Primary Industries, Business/Professional Services, Property & Construction. PPC has earned client respect and loyalty through continually exceeding client expectations, transparent communication and integrity. PPC’s IT Consulting Executive Director is Frank Zahra; our Managing Partner is Don Rankin. Should our consultants fall short of expectations, both Frank and Don are openly available as a point of escalation and discussion.

Company Accreditation (Optional) CISA – Certified Information Systems Auditor; Australian Institute of Project Management (AIPM) – Corporate & Individual accreditations; Microsoft - MCTS; MCP; Gold Certified Partner; Lotus Notes – Certified Lotus Specialist; Accounting Professional & Ethical Standards Board – APES 110 (Code of Ethical Standards); APES 320 Quality Control; Subject to the following Regulatory Inspections – ASIC, ICAA, APEC

Corporate Governance of ICT PPC’s key principles in ICT assessments includes early/ongoing engagement of relevant key stakeholders; capability assessment of ICT via interviews, tools and standards; encouragement of ownership/accountability for initiatives identified; value-based thinking; delivery of pragmatic outcomes. Resultant findings increase clarity on how IT can address numerous and conflicting demands whilst providing a path forward to increasing organisation maturity. PPC utilises a maturity assessment framework (CMMI) which supports the assessment of more than 20 ICT


competencies across development, operation, ICT management. The structured framework leads the organisation through the various states of maturity from reactive to proactive and repeatable and beyond, delivering ASIS and TOBE assessments. RACV engaged PPC to undertake an ICT maturity assessment. Martin Byrne, GM-IT&T stated “The RACV IT&T activity benchmarking assignment has provided value insight and direction for us. PPC created a rich and participative environment of key IT&T stakeholders addressing sometimes challenging IT&T issues. This approach, coupled with the expertise of PPC resulted in strong engagement from all at IT&T management team level and high levels of accountability on both the strategic and more practical outcomes.” Swinburne University of Technology (SUT) engaged PPC to undertake an assessment of their IT Governance Framework. The assessment concentrated initially upon the IT Governance Committee Terms of Reference, its effectiveness and maturity within SUT community in the management of IT investment. Our finding and recommendations were as a result of series of interviews with Executive and Senior management, a full review of


Organisation Name Predicate Partners Pty Limited Trading Name Predicate Partners Pty Limited

Contact Mr Aleksandar Vranesevic

Address 5 Torrens Street

Suburb Braddon



Website www.predicatepartners.com.au


ABN 34128711348

Company Background Predicate Partners is a Canberra based company specialising in service delivery for the Federal Government sector. Since 2007, we have established a proven track record of delivering results for a range for Government departments and private sector organisations. Our staff are skilled with industry best practice frameworks and methodologies and have a comprehensive knowledge of the Federal Government sector including agencies such as the Department of Human Services, Australian Taxation Office, Department of Agriculture, Fisheries and Forestry, Airservices Australia, ComSuper, Australian Government Information Management Office and the Department of Finance and Deregulation. Our core business focus is on delivering effective governance, business analysis, business process improvement, quality assurance, and information management services. We believe these services are key to effectively aligning ICT solutions with business outcomes. Key principles of Predicate's approach are to be: a) Innovative: flexible and adaptive approaches which draw on industry best practice, our extensive experience, organisation's internal capabilities and new technologies; and b) Business Driven: identifying true business issues and implementing effective solutions that meet the business need; c) Collaborative: facilitating engagement across the spectrum of stakeholders and communicating complex ICT requirements to business and operational stakeholders.

Company Accreditation (Optional) Predicate Partners has accreditations in a number of relevant areas including; the Managing Successful Program (MSP) method and best practice; PRINCE2 certification for project management best practice; and Lean/Six Sigma certification for process and quality improvement methods and best practice.

Corporate Governance of ICT Based on Predicate's extensive experience working with Federal Government organisations we have distilled the key success factors to establishing effective ICT governance. In particular our focus is on ensuring that ICT governance has strong alignment to the organisation's broader governance structures and processes. Our approach works to define clear roles and responsibilities across the entire lifecycle of ICT investment management and operations. With this as a basis we are able to overlay industry best practice in areas of risk, quality and change management to ensure governance structures operate effectively. This includes reviewing existing ICT investments and their overall performance against defined outcomes and success criteria. Recent experience includes: 1)


Supporting the Department of Human Services (DHS) with the establishment of executive governance arrangements for a large ICT enabled transformation program, including preparing executive accountability statements, documenting roles and responsibilities and defining decision rights frameworks for executive committees. 2) Providing ComSuper with support in the establishment of corporate ICT governance arrangements that align with new ICT strategy and operations, including defining key roles and responsibilities, embedding processes to support risk, quality and change management and establishing reporting arrangements in line with new governance structure.


Organisation Name PricewaterhouseCoopers Trading Name

Contact Mr Ash Bassili

Address 44 Sydney Avenue

Suburb Forrest



Website www.pwc.com/au


ABN 52780433757

Company Background PricewaterhouseCoopers Australia (PwC) brings the power of our global network to help Australian businesses, not-for-profits and governments assess their performance and improve the way they work. Growing from a one-man Melbourne accountancy practice in 1874 to the worldwide merger of Price Waterhouse and Coopers & Lybrand in 1998, PricewaterhouseCoopers Australia now employs over 6,000 people and provided services to 80 per cent of the ASX 200 in FY10.

PwC is brimming with energetic and inspirational people from all backgrounds – accounting, arts, business, economics, engineering, finance, health, law, tax – who ensure our clients receive the depth and breadth of insight and perspective required to negotiate an increasingly complex global environment. Across our Advisory, Assurance and Tax & Legal lines of service, we offer a breadth of services that provide our clients with a range of end-to-end solutions. From improving the structure of the Australian health system, to performing due diligence on some of Australia’s largest deals, to working side-by-side with entrepreneurs and high-net-worth individuals – our teams bring a combination of knowledge and passion to addressing the risks and opportunities facing our community.

PwC’s aim is to set new standards in responsible leadership, working with our clients to create value and sustainable solutions. We realise that it takes more than rhetoric and good intentions to remain a leading professional services firm. It is a mission requiring a daily commitment to innovation and investment in our people, and to continuing a legacy of collaboration with our clients and the communities in which we live.

Company Accreditation (Optional) Company accreditation and/or certification status e.g. ISO9001 certified Quality Management System, Capability Maturity Model Integration (CMMI) appraisal certification status,

Corporate Governance of ICT PwC’s approach to IT governance provides the framework for making and implementing decisions

to manage, control and monitor IT within the business. Our IT Governance Framework seeks to

ensure that:

The IT organisation(s) are aligned to the objectives and priorities of the organisation as


well as to individual divisions, synergies between IT initiatives are enabled

IT and IT resources are effectively and efficiently managed

Compliance requirements are understood and risks are managed

Performance, resource utilisation and benefits are tracked and measured

A shared understanding exists amongst all stakeholders of IT’s added value to the

organisation.

Our recent experience includes:

Queensland Rail (QR) engaged PwC to define a sustainable, business-aligned ICT strategy that

supported the needs of the entire organisation over the next 5 years. PwC reviewed and refreshed

QR’s ICT strategy, focussing on alignment with the business strategies of QR and its subsidiaries.

Queensland Health engaged PwC to provide Change Management and Program Management services, tools and knowledge transfer for the delivery of health care, business change and ICT initiatives over a 5-7 year eHealth program. PwC delivered a planned approach to communicating the program direction and managing change on the eHealth program, improved capability and understanding of change management processes and tools, increased capability and improved processes for stakeholder engagement and communications. This enhanced Queensland Health’s capacity to govern the delivery and execution of ICT projects with improved project delivery cycle times.


Organisation Name ProActive Services Pty Ltd Trading Name As Above

Contact Mr Bob Philipson

Address Level 4, 60 Albert Road

Suburb South Melbourne



Website www.proactiveservices.com.au


ABN 42006674791

Company Background In 1987, ProActive Services was established in Australia with the aim of helping IT service providers to deliver quality, cost-effective services aligned to business needs.

Since then, we have become Australia’s leading supplier of IT Service Management (ITSM) training and consultancy based on the best practice defined in the IT Infrastructure Library, and in the international standard for IT Service Management (ISO/IEC 20000). ProActive is the leader in the ITSM field – it is our single focus. This single focus has enabled us to achieve the honour of having back to back "Student of the Year" award winners presented by the itSMF Australia, in 2007 and 2008.

ProActive were responsible for introducing ITIL into Australia. We are Australia’s longest serving ITIL training and consulting provider and have trained in excess of 22,000 students. An ISO 9001:2000 certified organisation and vendor independent, ProActive were also a founding member of the itSMF Australia.

ProActive prides itself on the competence and expertise of our consultants, who are highly skilled business process analysts. They have many years practical, hands-on experience of ITIL implementation in organisations throughout world-wide. All hold the highest level of accreditation in Service Management, the ITIL V3 Expert certificate.

Company Accreditation (Optional) In 1987, ProActive Services was established in Australia with the aim of helping IT service providers to deliver quality, cost-effective services aligned to business needs.

Since then, we have become Australia’s leading supplier of IT Service Management (ITSM) training and consultancy based on the best practice defined in the IT Infrastructure Library, and in the international standard for IT Service Management (ISO/IEC 20000). ProActive is the leader in the ITSM field – it is our single focus. This single focus has enabled us to achieve the honour of having back to back "Student of the Year" award winners presented by the itSMF Australia, in 2007 and 2008.

ProActive were responsible for introducing ITIL into Australia. We are Australia’s longest serving ITIL training and consulting provider and have trained in excess of 22,000 students. An ISO 9001:2000 certified organisation and vendor independent, ProActive were also a founding member of the itSMF Australia.


ProActive prides itself on the competence and expertise of our consultants, who are highly skilled business process analysts. They have many years practical, hands-on experience of ITIL implementation in organisations throughout world-wide. All hold the highest level of accreditation in Service Management, the ITIL V3 Expert certificate.

Corporate Governance of ICT ProActive Services have a well established ICT Corporate Governance portfolio with focus on best practice, frameworks and industry standards. As a leading provider of IT governance solutions, ProActive Services has been offering consulting and training services in ITIL, Prince 2, Security, CoBIT and ISO/IEC 20000. The Government’s strategic adoption of FEAF (Federal Enterprise Architecture Framework) is supported by process frameworks like ITIL and CoBIT and assessed for compliance with ISO 20000 and ISO 17799. ProActive Services offers guidance in these areas,

The above has been brought together in a innovative way in the form of our Service Management Office concept. The SMO delivers an integrated IT governance framework that encompasses external Service Providers to reduce the risk inherent in external service provision.

ProActive Services helps organisations implement the processes, tools and organisational structures associated with effective support and maintenance. Through our portfolio of services we can assist customers build effective processes, implement supporting technology, and provide on going benchmarking and coaching. Two examples of the work that ProActive have done with Corporate Governance include:

Yarra Valley Water (YVW)

ProActive assisted YVW implement ISO/IEC20000. This was achieved by the conduct of an assessment of their ISO/IEC 20000 compliance, training and the development of an implementation plan.

A major Outsourcing Service Provider

ProActive provided ISO/IEC 20000 scoping services to the above organisation that helped resolve a long standing impasse that had been stopping them proceed with their certification programme.


Organisation Name Project Outcomes Pty Ltd Trading Name Project Outcomes Pty Ltd

Contact Mr Paul Newall

Address Suite 11, 7 Beissel St, Australian Swimming House

Suburb BELCONNEN



Website www.Project-Outcomes.com.au


ABN 86086686811

Company Background Project Outcomes has been providing professional services to a range of Commonwealth Departments and agencies for over ten years. The Company has demonstrated its capability and capacity to manage the delivery of a range of support services in the ICT field. Project Outcomes team of consultants have deep experience, impressive qualifications, and relevant supplementary training. All are either members of, or are eligible for membership of, the Australian Institute of Management, Australian Institute of Project Managers, Project Management Institute, Institution of Engineers, Australian Computer Society, Software Engineering Institute, the Australian Performance Measurement Institute or the Australian Institute of Company Directors. All tasks operate within the Project Outcomes Quality Management System. The company supports clients through either direct participation within the client's team as individuals or small teams, or by developing and delivering consultancy support products. Each task requirement is assessed with the customer to determine the best method of service delivery in order to provide resourcing that is effective and efficient. Project Outcomes skill base covers: -Project Support, -Operating Concept Development, -Requirements Definition, -Test Concept Development, -Systems and Software Engineering, -Communications Engineering, -Electronics Engineering, -Platform Engineering, -Acquisition and Sustainment Logistics, and -Business Support Management.

Company Accreditation (Optional) Project Outcomes has been accredited as a Recognised Defence Supplier for over 5 years. Since its incorporation in 1999, Project Outcomes expertise has also been recognised through inclusion on the following Commonwealth panels of service providers: - Defence Materiel Organisation Support Services (DMOSS) Panel (27 skill sets) (current); -Defence's Electronic Systems Division’s Project Management Support Services Panel (PMSS); -Defence Signals Directorate’s Project Support Services; -Defence Land Systems Division's Integrated Logistic Support; -Australian Public Service Commission’s APS Development Programs and Related Consulting Services (including for Project Management and Risk Management programs) (ended 2006); -Australian Public Service Commission’s Leadership, Learning and Development Panel (2006-2009 and again for the new Panel); -Department of Foreign Affairs and Trade's Management Training; -Defence Information Systems Group’s Project Specification and Project Management (recognised sub-contractor); -Austrade's Multi-use List for Procurement Support Providers; -Defence's Risk Management Services; -Defence Simulation Support Services Standing Offer Panel (current); and -Department of Immigration and Citizenship’s Procurement and Project Management Advisor Panel (current).


Corporate Governance of ICT Project Outcomes has broad experience in the provision of support for governance initiatives for ICT. Examples include: 1. The development of a business case for Defence addressing the conduct of an annual review of its Electronic Warfare capabilities. This required extensive stakeholder consultation and detailed research, including resourcing implications, indicative costings, governance structures and processes, to develop options for the conduct of this review. 2. The provision of Change Management services, in accordance with MSP and PRINCE2, to the Directorate of Change Management within Defence's Chief Information Officer Group in 2009. This required delivery of customer change management services to Branch customers (including high-profile Defence projects), the development of stakeholder and communication strategies, training plans and scheduling in accordance with the Systems Development Life Cycle, the development of a customer change management guide, and facilitation of workshops to address Branch issues. This also included skills transfer/training in the Systems Development Life Cycle, PRINCE2 and MSP to client staff through on-the-job and formal classroom training. 3. The investigation of, and development of, a report into Defence's Battlespace Network Development Program, encompassing the deployable elements of the Defence Information Environment. This task was undertaken in support of a 2 and 3-star steering committee specifically to address concerns raised by the Defence Committee relating to current organisational responsibilities for datalink capability management, development, acquisition, and operational support. The Review successfully investigated and made recommendations on the Defence organisational responsibilities required to deliver the battlespace network.


Organisation Name Protegic Pty Ltd Trading Name Protegic

Contact Chief Executive Officer David Thompson

Address Level 1, 5/54 Melbourne St

Suburb North Adelaide

State South Australia Postcode 5006


Website www.protegic.com.au


ABN 95104218804

Company Background Protegic is an Australian-owned independent Management Consulting Company working across the full spectrum of project management and specialising in the ICT sector.

The company provides strategic and practical project management services-both advisory and delivery-that enable clients to thrive in today’s business environment.

Protegic assists organisations to drive strategy and business improvement through the application of common-sense and best-practice project management. Protegic’s experienced consultants work closely with clients to develop strategy, business and operational requirements and implementation plans to successfully deliver the project, within one division or across the entire enterprise.

Protegic has a passion for excellence. Its people strive to deliver beyond the expectations of clients by providing knowledgeable advisory services and delivering quality project outcomes.

With offices throughout Australia and in Singapore, Protegic is an active member of the Australian Institute of Project Management

Company Accreditation (Optional) Protegic have recently employed a Chief Financial Officer with experience in obtaining the ISO9001 Quality Management System certification for companies. Protegic are in the process of being assessed for ISO9001 Quality Management Systems.

Corporate Governance of ICT Protegic has experience in IT master-planning. An assessment of existing systems is carried out and a series of recommendations are drawn up to provide an appropriate and cost effective solution to meet the needs of our customers computing information and communication requirements. The Master Plan addresses IT infrastructure, applications, IT Policy framework and standard guidelines, human resource development requirements, phased implementation plan and broad cost estimates.

Protegic is experienced in IT infrastructure architectures. Protegic consultants can: design and implement successful infrastructure architectures that meet the requirements of a company’s IT strategy; define, plan and develop an organisation’s business case to support ongoing business applications and communication services; define future requirements based on latest technologies and technical options; design an infrastructure procurement strategy that is timely and cost effective


to the company’s individual stage of growth; conduct reviews and provide recommendations for improvements, in line with company expansion, or upgrade of existing IT infrastructures.

Protegic is experienced in determining future systems solutions to deliver defined benefits to the business. Protegic’s proven strategy development framework is used

to facilitate business strategy development.

Protegic are currently working with BHP Billiton and TAFE Victoria to establish effective delivery governance, provide an efficient PMO framework, Quality Assurance, coaching, mentoring and regular delivery health checks aligned with BHP Billiton’s methodology


Organisation Name PSI Consulting Pty Ltd (The Trustee for PSI Consulting Unit Trust)

Trading Name PSI Consulting Pty Ltd

Contact Mr Alan Osborne

Address Level 1, 11 Torrens St

Suburb Braddon



Website www.psiconsulting.com.au


ABN 83339185408

Company Background PSI Consulting Pty Ltd (PSI) specialises in the provision of support to government procurement, grants programs and probity requirements. Our services focus on assisting clients to implement improved processes that underpin their performance and accountability. Since our establishment in 1991, we have successfully completed nearly 1,600 projects for governments at all levels.

PSI consultants have held senior positions in both the public and private sectors and are expert in the delivery of services at strategic and operational levels. They possess a wide variety of management experience and are members of the Institute of Management Consultants and the Chartered Institute of Purchasing & Supply Australia.

- PSI focuses on the clear identification of client requirements and the satisfaction of those requirements, on time and within budget.

- PSI adheres to tried and proven techniques to provide our clients with a high level of security and confidence in the consultancy outcomes.

- PSI continues on-going development of our unique underlying methodologies to provide our clients with ‘state of the art’ services and solutions.

- PSI provides skills transfer to clients to add real value to our consultancy services.

- PSI assists clients in achieving their project objectives on terms that represent best value for money in an environment of probity and high ethical standards.

Company Accreditation (Optional) As an integral part of its consultancy services, PSI provides an internal quality review process that ensures all client deliverables are reflective of industry best practice and consistent with the achievement of the agreed standards of performance under the consultancy contract.

PSI’s internal quality review is structured to:

- ensure that the expectations of clients are accurately identified and completely satisfied;

- ensure PSI’s services are delivered in an efficient, professional and cost effective manner; and


- provide a base from which PSI is able to develop a process of sustainable continuous improvement.

PSI’s quality system is consistent with Quality Standard AS/NZ ISO 9002. PSI is a member of the Information Communication Technology (ICT) Multi Use List [formerly the Endorsed Supplier Arrangement (ESA)].

PSI utilises the following quality / key performance criteria to indicate success and/or progress of the project tasks.

In accordance with client expectations - 100% Client Satisfaction

Tasks completed to agreed schedule - 99% On time

Timeliness of reports submitted - 98% On time

Timely response to enquiries - 100% Client Satisfaction

Tasks completed within agreed budget -100% Client Satisfaction

Projected cost effectiveness of solution - 100% Client Satisfaction

Skilled and qualified personnel utilised - 100% Client Satisfaction

Maintained best practice quality of outputs - 100% Client Satisfaction

Accuracy of billing - 100% Accurate

Corporate Governance of ICT PSI provides strategic advice and guidance to government agencies regarding the management and governance of contracted ICT and other services. Governance structures are based upon extensive risk analysis and include descriptions of roles and responsibilities for both contracting parties as well as mechanisms and tools to enhance the contract management or other similar capabilities of the agency.

Centrelink - Independent Review of IT Contract Management

Undertook an analysis of the current IT procurement/contract management processes across the agency and provided a comprehensive report. The analysis required documentation and process review, comparison between agencies, risk assessment, and strategy to achieve ‘best practice’. [2006]

Department of Education, Science and Training

Review, document and advise on better practice improvements to the Department’s IT purchasing practices and procedures. Develop service levels and measures against which purchasing performance could be measured, and provide advice on the implementation of the proposed service level monitoring, including data capture and reporting. [2005/6]

Department of Immigration and Citizenship

Conduct of a review, redevelopment and renegotiation of a major border protection IT contract involving complex Intellectual Property issues. [2004-2006]


Organisation Name Pyxis Consulting Group Pty Ltd Trading Name Pyxis Consulting Group Pty Ltd

Contact Mr Albert D'Castro

Address PO Box 858

Suburb Woden



Website www.pyxisconsulting.com.au


ABN 71126406675

Company Background Pyxis Consulting Group Pty Ltd founded in 2007 is an independent professional consulting firm established by Albert D'Castro a leading principal in the Canberra IT market with over 20 years industry-leading experience.

Pyxis through its permanent team of experts and specialist continues to enjoy considerable success in providing Consulting and Project Management services to Australia’s Department of Defence and Federal Government agencies.

Pyxis specialises in providing innovative and leading edge solutions in a number of business areas including: Systems Integration, Data Centre Storage, Managed ITIL Services, Application Integration, End-to-End Project Management, Scoping and Strategic Planning and Business Solutions.

Recent Public Sector clients include: Department of Defence, Australian Customs, Department of Education Employment and Workplace Relations, Australian Tax Office; and Department of Corrective Services.

Pyxis Consulting Group sees its role not only as a trusted adviser to its clients through the companies independence from major suppliers, but also as a counterpoint when it comes to independent evaluation of solutions that have been proposed.

Pyxis Consulting Group through its accumulated knowledge of its permanent staff understands implicitly the needs and outcomes required within the public sector. As a result, Pyxis has a proven track record of successfully implementing its projects and business solutions.

Company Accreditation (Optional) All Pyxis consultants have access to leading research institutions including:

Harvard Business Review IBISWorld

Gartner

Australian Institute of Management

Standards Australian and International


Pyxis staff has professional memberships with a number of industry bodies including:

Association of Professional Engineers, Managers and Scientists Australia

Institution of Company Directors

Australian Institute of Project Management

Australian Business Limited – State Chamber – Defence Industry Forum

Australian Information Industry Association

In addition, all employees of Pyxis Consulting Group (as a result of company policy) hold formal qualifications in industry-shared methodologies, tools and techniques including:

Registered Project Manager /Master Project Director (Australian Institute of Project Management)

UK Office of Government Computing’s Projects in Controlled Environments (PRINCE2)

Project Management Body of Knowledge (PMBOK)

Project Management Professional certification through the Australian Institute of Project Management (AIPM)

Information Technology Infrastructure Library (ITIL)

Information and Communication Technology management and service delivery (Information Technology Infrastructure Library certified)

Corporate Governance of ICT Pyxis Consulting Group has considerable skills and extensive experience in the delivery of corporate governance services for ICT, especially within large and complex Australian Government Agencies based on proven ‘ICT Governance Maturity Models’

Pyxis’ experience covers the areas of quality assurance, risk management, change management, stakeholder engagement, the design and implementation of governance structures including roles and responsibilities.

Areas where Pyxis excels include:

- Developing and implementation plans and defining governance frameworks;

- Reviewing and enhancing information management and governance performance;

- Developing, reviewing and enhancing governance improvements processes and organisational changes; and

- Identifying risk and integrating governance with reporting needs and corporate planning.

Recent client engagements include:

Australian Communication and Media Authority – under a PRINCE2 governance framework, undertook the role of Senior Supplier within the Governance Board for major ICT initiative. The role allowed effective stakeholder mangement, and executive reporting.

Australian Communications and Media Authority, the Department of the Environment and Heritage, Department of Defence (Capability Division) and more recently IBM for the Department of Health and Ageing and Australian Customs.


Organisation Name Quantum Transformations Pty Ltd Trading Name

Contact Mr Robert Peake

Address 1/26 Christie Street

Suburb Wollstonecraft



Website www.QTGlobal.com


ABN 34070914608

Company Background Quantum Transformations has been operating within Australia and Asia through its offices in Sydney since 1992, and recently through its offices in Korea, Singapore, Malaysia and Thailand. During this time, Quantum Transformations has established a strong and loyal “blue-chip” client base and reputation for excellence within the Asia Pacific region, which has translated into strong growth and the decision in 2004 to open Quantum Transformations’ regional offices in Asia. QT has operated directly in its regional companies:- o Australia o Korea, and o Singapore. and through organisations such as:- o META Group o Thoughtweb Inc and o Doll Martin Associates Pty Ltd for 14 years. Quantum Transformations now has assisted over 100 clients in 8 countries. The countries are:- o Australia o New Zealand o Korea o Singapore o Malaysia o Hong Kong o Philippines o India & o USA. Our client list now includes many clients that have now undertaken multiple engagements with QT, which is a testament to their confidence in our capabilities and also in their satisfaction with our work.


Corporate Governance of ICT There are five components to effective technology governance and they are:- Enterprise Architecture; Enterprise Architecture process; Governance Structure; Compliance Process; and Program Management Office. The Governance Structure and the Compliance Process should be closely interdependent in ensuring that technology investments are aligned to the strategy of the client. Compliance is the activity of testing a proposed change initiative against the Enterprise Architecture for conformance. The Governance Structure ensures that the Compliance Process is applied comprehensively with non-conformance resolution, and that the other two roles of Architecture Office and Program Management Office are being effectively managed. The Architecture Office develops and maintains the Enterprise Architecture. The Program Management Office ensures consistency in program and project management, ie ensures that all over-laps and under-laps are identified and issues resolved, and that required resources are sourced appropriately. These components of best-practice change (and technology) management should be defined, established and managed under the authority of the Chief Information Officer (CIO). The Governance Structure The Governance Structure ensures that responsibilities for change initiatives are being appropriately managed and measured:- · Policies defined and implemented; · Architectures developed and maintained; · Accountabilities allocated, accepted and in operation


with appropriate management; · Performance targets defined, measured and reported on; · Periodic monitoring (auditing) of compliance process; · Measured effectiveness of aligning change with the client’s strategy. Responsibility for Governance should reside with the Office of the CIO. It is that authority that ensures Governance, Compliance and the Architecture functions will be operated and managed effectively.

CrimTrac

The Federal Government allocated $52 Million to fund an authority, CrimTrac, whose role is the national integration of criminal information and associated police information that helps apprehend criminals across the 9 jurisdictions of Police Services in Australia. CrimTrac required an Enterprise Architecture to coordinate the available police information across the nine jurisdictions in Australia and also to effectively introduce new technologies, such as Fingerscanning and DNA testing, recording and utilisation.

Quantum Transformations, through META Group, was engaged to develop the Enterprise Architecture and associated governance and compliance processes for CrimTrac. QT, through application of standard methodologies gained an understanding of the overlapping business strategies across the multiple police forces, analysed the aggregated information and technology requirements, and assisted in the development of a comprehensive Enterprise Architecture and governance capability that is now being implemented to facilitate joint operational and management initiatives across the police service of Australia.

Australian Defence Force

The Australian Defence Force had aligned its command and operational standards with both NATO and the US Department of Defence standards. Consequently, there was a continual mapping between the three standards that was an immense maintenance problem.

Furthermore, the need to link Defence procurement, operational expenditure and other budget items to the Government’s Defence strategic objectives could not be achieved because the NATO and US DoD standards were too detailed for an effective business-oriented mapping. The Defence Force is involved in a regional peace keeping mission that involved a number of coalition partners. This exercise exemplified the deficiencies in coordination and cooperation capabilities. There was a need for a reference base to coordinate all strategies plans, activities and procurements to effectively manage and report back to Government.

QT staff through META Group led the establishment of an initial Enterprise Architecture with the associated governance and compliance capabilities and linked it to the US Department of Defence’s C4ISR. This new capability was presented to the US DoD and adopted b y them; a first for the ADF transferring knowledge to DoD.

National Counter-terrorism

While at NSW Police, Robert Peake, QT Director, was asked by The Open Group – the London/Boston-based global standards authority –to lead the establishment of a Counter-Terrorism Enterprise Architecture (CTEA) for Australia as a foundation for improved coordination of first response Government agencies and other relevant stakeholders. The strategy was to use Australia as a model because it is a microcosm of Europe and North America, so enabling the Australian CTEA to be scalable to support these larger and more complex environments.

In June 2006 Robert chaired the inaugural national Forum on Counter-Terrorism Enterprise Architecture to encourage sharing and collaboration. Over 20 agencies responded to Robert’s invitation including most law enforcement agencies, Prime Minister & Cabinet, intelligence agencies, Australian Defence Force and emergency services agencies.

Further information is available at www.QTGlobal.com


Organisation Name Redline Consulting (Aspect Process Services Pty Ltd)

Trading Name Redline Consulting

Contact Ms Cecilia Ridgley

Address PO Box 132

Suburb Bungendore



Website www.redlineconsulting.com.au


ABN 28102238442

Company Background Redline Consulting delivers IT Strategy, Portfolio and Project Management, and Solutions Design to Australian Government Departments and Agencies. With over 13 years experience in Government and Industry, Redline's principal - Cecilia Ridgley - has successfully delivered a number of high profile projects and enterprise strategies for large Government IT systems and business programs. Cecilia’s work enables executives and IT managers to progress their business vision through developing an enterprise approach. Cecilia’s knowledge and experience lie in enterprise and information architecture and organisational modelling, program management, risk management, business and IT analysis and transformation, security and assurance, and the decision-making process. As a leader in her field professionally and academically, Cecilia's strong values and depth of pragmatic knowledge offer an exceptional advisory value proposition for your executive team.

Company Accreditation (Optional) Ms Ridgley holds the following qualifications adn accrediation: Practicing Computing Professional, Member of Australian Computer Society (MACS, PCP), Member of the Institute of Public Administration Australia, Member of the Australian Institute of Management, Bachelor of Arts, Information Systems – UNSW 1994, Graduate Diploma, Information Science– UNSW 2000, PhD Information Systems – UNSW - Current, Graduate Certificate in University Learning and Teaching – UNSW - 2006

Corporate Governance of ICT Cecilia has reviewed ICT Corporate Governance arrangements and presented a number of invited lectures on Corporate Governance of ICT and Ethical Decision Making. She has worked with the Chair of the ICT Governance Committee for Standards Australia on AS8015-2005, Dr Ed Lewis, on the development and role of ethics in ICT Corporate Governance. Cecilia has been invited to publish papers in international journals on Ethics, ICT and Governance. Recent examples of her work with agencies on governance include improving the governance of the Health and Human Services Access Card Program through the development of a cross agency workshop series to assess planning and design assumptions incorporating Centrelink, Medicare Australia, DVA and


AGIMO's AGOSP program; and the recommendation of a number of governance remedies for Lifeline Australia during the review of their Greater Access Program.


Organisation Name Revolution IT Trading Name Revolution IT

Contact Mr Jamie Duffield

Address Level 7, 170 Queen St

Suburb Melbourne



Website www.revolutionit.com.au


ABN 32107913342

Company Background Revolution IT is the leading Quality Assurance and Testing, management consulting firm in Australia. We help our clients deliver IT projects and have core offerings across Project Management, Requirements Management and Application Testing. We have over 250 staff and offices in Melbourne, Sydney, Brisbane, Canberra, Adelaide and Singapore. Our offering includes delivery consulting, methodologies, tool solutions and training and have worked with over 100 public sector and private sector organisations across Australia. We have various engagements models ranging from providing experienced consultants onsite through to offsite and offshore solutions. We have been the leading HP Software Platinum Partner for 4 years running and are a reseller, 1st line technical support, training and services partner. We are also partners with IBM Rational, Oracle, Agile Academy and SAP and have chosen these strategic partnerships to underpin our solutions.

Company Accreditation (Optional) Revolution IT has the following accreditation's; - HP Software Platinum Partner (reseller, certified training, 1st line support, services) - IBM Rational Partner (reseller, services) - SAP Partner (Services) - ORACLE Partner (Services) - AtTask Partner (reseller, services) - Agile Academy Training partner - ISTQB Certified Trainer (Testing and Business Analysis courses) - Australian Computer Society Company Member

Corporate Governance of ICT Revolution IT has extensive experience in providing Corporate Governance of ICT and recent engagements have included the following areas: + Recommendations for improvement of existing governance structure including policies and process, stakeholder engagement and increasing visibility/transparency through reporting + Implementation of software tools to support ICT Corporate Governance structure + Alignment of processes and procedures with Australian Standards AS8015-2005 and AS8016-2005 + Implementation of quality assurance policies into existing ICT governance structures Case Study 1 Project Name: Strengthening Project Governance The Victorian Department of Education and Early Childhood Development (DEECD) engaged Revolution IT to review their Project Management Framework (PMF) and provide recommendations and a strategy on how to make their governance structure more efficient and effective. The scope of the project included a review of the PMF to ensure that it aligned with industry standards in the areas of documentation and processes as well as digitise as many elements


as possible which resulted in us implementing Portfolio and Project Management software to align with the framework. Case Study 2 Project Name: PMO Implementation at Stanwell Corporation The key objectives of this engagement were to establish a Project Management & Governance Framework for the ICT projects. The framework had been an audit requirement and needed to emphasize the benefits realization, project learnings and ensure there were processes and roles for supporting a continuous improvement culture.


Organisation Name RNC Global Projects (RNC Pty Limited) Trading Name RNC Global Projects

Contact Mr Ray Trevisan

Address MLC Centre, 19-29 Martin Place

Suburb Sydney



Website www.rncglobal.com


ABN 18086411467

Company Background RNC is an Australian specialist project and program management company that has been successfully operating for over 13 years. With a mix of permanent and contract staff, the company is presently serving in excess of 29 customers and has over 70 project and program managers in the field. Headquartered in Sydney, RNC has personnel located in every major Australian capital and operates in international markets in accordance with client needs. RNC was founded in 1999 by Diane Dromgold. After many years of delivering projects and programs with Federal Government, KPMG and other top tier organisations, Diane noticed a disturbing trend surrounding project and program management disciplines. Far too much focus was on reporting, documentation and project GANNT charts instead of delivering an actual result. Diane founded RNC – a “Really Nice Company” – to enable her customers to focus on what makes projects and programs really matter – a successful outcome. We totally understand what it takes – to work with and collaborate with others who possess the aptitude and the attitude to succeed – the “x” factor of project and program managers. Since then, Diane and the RNC team have made it their primary goal to deliver success on the client’s terms over


Corporate Governance of ICT RNC has worked with government departments and agencies (as well as commercial enterprises) to evaluate and assess the effectiveness of ICT governance frameworks. We also support the client in the development and implementation of any changes/improvements. RNC can help whether it’s an audit to examine a lapse, or as part of a prudent management process to ensure governance is staying current and adding value. We use a methodical process of review, consideration, consultation, brainstorming, interactive development and case study testing to ensure the theory is supportable in practice. When clients use RNC, they never feel as though they are having something done to them. The Client is always in charge.

We work with each client to ensure governance is appropriate to their particular needs. Once we have agreement on the desired governance we work with the client to design changes; plan their implementation and adoption, and if required assist in the implementation.

RNC sets itself apart as we have an overriding belief that governance should serve and add value to those subject to it.


RNC has undertaken governance for government and enterprise customers including:

Customs and Border Protection sought to improve and develop further one of its large programs.

After an initial consultation RNC determined that ICT governance (generally and project based) was the principal area where large improvements could be made.

RNC developed a report which was accepted in entirety by Customs executives and has been implemented.

SKM (Engineering Consulting Company) wanted to increase responsiveness and effectiveness of ICT.

RNC conducted a governance and success review of SKM’s ICT.

RNC developed a report, including recommendations and was congratulated by executives on its comprehensiveness and pragmatism. All recommendations were implemented.


Organisation Name Rubikon Group Pty Ltd Trading Name RubiKon Group

Contact Mr Chris Otley-Doe

Address PO Box 1799

Suburb New Farm



Website www.rubikon.com.au


ABN 23135108673

Company Background RubiKon is a specialist supply chain consultancy founded on a deep understanding of process analysis and business performance optimisation. With a reputation for delivering value from complex scenarios, RubiKon provides an independent and rigorous approach to solving both localised and enterprise wide business problems. Backed by an impressive track record in the international procurement and defence arenas, our team members thrive on new challenges and are renowned for their innovative and progressive thinking. RubiKon have a wealth of experience in the analysis of business requirements and development of Information Systems. We have a proven track record working with large private companies and Government agencies in direct support as detailed in the examples. The majority of our staff are ex-Defence who have completed similar roles within Defence both in Australia and overseas. These include high profile appointments in the British Army running IS development and delivery programs being responsible for the mentoring of senior officers in their responsibilities as Project Executives within a PRINCE2 structure. Our Staff hold masters qualifications in disciplines related to analysis and development and include a chartered IT professional with the British Computer Society

Company Accreditation (Optional) Quality management is an important aspect of any enterprise. The process of Quality management must suit the operations of the relevant undertaking so as to add value to the process and output rather than it dictating the path to achieve the same. At RubiKon we operate in accordance with AS/NZS ISO 9001:2008 and we follow these standards in producing our Quality Management System (QMS) and quality regime. A QMS must be clearly documented and be a tool to assist in the achievement of project and business goals. At RubiKon we are happy to assist in developing an existing QMS to each these standards or to develop one to meet the needs of the organisation. An understanding of the objectives of a quality management system is a vital stage in the process. Communication of requirements and the development of processes that compliment the activities are also important considerations in the process and there is a large degree of interdependency between this skill and process definition and improvement. Continual improvement of the QMS and the operations are a key consideration and has been the focus of implementations completed.

Corporate Governance of ICT RubiKon staff have held senior appointments directly responsible for the governance of IT systems in large organisations. Two examples are: British Defence Force Logistic System - Responsible for


requirement setting, project direction and acceptance into service of logistic Information systems for the British Defence Forces. The role was to provide the user input at the highest level for all major initiatives across a wide range of disciplines with the logistic area. RubiKon staff reported to the highest levels of the organisation to ensure that governance was maintained and business factors were driving the development of the IT systems. British Defence Force Materiel Flow - Development of initiatives within the Materiel Flow operations of the British Defence Forces. RubiKon provided the leadership of the Materiel Flow Capability Change Team. This team was responsible for the development of initiatives and management of multiple projects to deliver capability. The teams was responsible for all aspects of project and program governance including business case preparation, funding issues (including briefing of British Treasury) management of delivery to time, cost and quality criteria.


Organisation Name Saltbush Consulting Pty Ltd Trading Name Saltbush Consulting Pty Ltd

Contact Mr David Jarvis

Address 43 Rischbieth Crescent

Suburb Gilmore



Website www.saltbushgroup.com


ABN 58134662963

Company Background Saltbush is an Information Management, Australian Owned Company based in Canberra specialising in Information Security and Project Management. We are on 15 Government Agency Panels with over 60 staff located in Canberra, Sydney, Brisbane, Perth and Melbourne. Saltbush also provides accredited training in Information Security to the Federal Government (including Defence).

Company Accreditation (Optional) Saltbush is now certified to ISO9001 - by the British Standards Institute (BSI). The audit was completed on 11th February 2011 so the registration number is yet to be issued. Saltbush is listed on the Federal Governments Computer Network Vulnerability Assessment (CNVA) panel.

Corporate Governance of ICT Saltbush is currently registered on 15 Government Panels (including Centrelink, Immigration, Defence-DMOSS and DAFF) for the Provision of Corporate Governance of ICT Services. Recent and current projects include: 1. Development of the Defence CIOG ICT Security Framework - based on the requirements of the Defence Security Manual (DSM), Information Security Manual (ISM) and the recently released Protective Security Policy Framework (PSPF). The framework provides a description of how CIOG runs ICT Security Management processes within Defence. 2. Completion of numerous Threat and Risk Assessments (TRAs) for the Attorney Generals Department (AGD). Saltbush has been selected from their ICT Service Providers Panel for Risk Assessment of its Corporate Network and assessment of applications such as financial (SAP) VPN remote servicing interfaces with the AGD network. 3. Saltbush is currently engaged by Airservices Australia to undertake regular Penetration and Vulnerability Assessment testing of the Corporate Network. Vulnerabilities are identified and recommendations for improvement are reported to management. 4. Saltbush is currently providing ICT Security services to Immigration where we are performing ICT Systems Threat and Risk Assessments. This has been provided for the last 2 years with another 2 years left on the term of the contract.


Organisation Name SecureLink Pty Ltd Trading Name

Contact Mr David Jarvis

Address 43 Rischbieth Crescent

Suburb Gilmore



Website


ABN 19100713102

Company Background SecureLink is an ICT Security Services company that has been operating in Canberra, Melbourne and Sydney since May 2002. It was recognised previously as an Australian Government Endorsed supplier and is currenttly on a number of Commonwealth Government panels including Centrelink, Human Services, Child Support Agency, Department of Veteran's Affairs and Medicare. SecureLink is a member of the Defence Industry Security Program (DISP) and is the accredited Trainer for the Info-security Registered Assessor Program (I-RAP). SecureLink has 30 consultants and has long term contracts with Geoscience, Airservices, Comcare, AusAID, Defence and Centrelink. It is 100% Australian owned.

Company Accreditation (Optional) SecureLink has ISO 9001 quality processes in place for Defence and DSD services and is working towards 9001 accreditation. It has DISP membership which requires quality procedures for handling security clearances.

Corporate Governance of ICT SecureLink currently provides Information Security Governance Management Services to a number of Government Departments including AusAID, Comcare and Geoscience where we developed and implemented the Security Governance Framework. Governance frameworks implemented used a risk based approach as detailed in ISO/IEC 27001 standard for information security management. the frameworks followed a process where risk treatment plans were subsequently developed and control processes put into place. A compliance process was then implemented to measure and assess performance of the controls, including management controls.

SecureLink is the appoitned subcontractor Trainer and certifer for Standards Australia, the British Standards Intitute and Lloyd's Registry for Governance of information security for industry. Also for the Commonwealth Government SecureLink developed the Certificate IV in ICT Security Management which is the only accredited course designed to meet Government and industry standards. It does this by covering ISO 27001 and the DSD manual ACSI33. SecureLink currently has a project with DSD to re-write ACSI33 which is due for realise in September 2008.


Organisation Name Serenidad Consulting Pty Ltd Trading Name Serenidad Consulting Pty Ltd

Contact Ms Nola Hennessy

Address PO Box 4353

Suburb Kingston



Website www.serenidadconsulting.com


ABN 75140517255

Company Background Serenidad Consulting Pty Ltd (SCPL) is a Small to Medium Enterprise, Australian company, formed in January 2010 to provide a unique and focused international consultancy service in excellence, great leadership and positive personal power. SCPL’s strength and capability is founded in having a team that leads by example, remains committed to 100% client satisfaction and consistently delivers services and products in a timely, cost-effective, efficient and professional manner. SCPL’s Managing Director holds a Secret clearance valid until 2015 and has previously held a Top Secret (NV) clearance. Our other consultants’ clearances include undisclosable high-level international clearances, Top Secret (NV), Secret and Confidential. Our most senior consultants have also previously held Cabinet-in-Confidence clearances. SCPL consultants are formally trained and/or possess years of experience in several ICT project methodologies e.g. PRINCE2, MS Project, PMBOK. Their skills encompass all the major ICT practitioner disciplines - language programming, database programming, systems analysis, systems engineering, applications development, management information system design and development, networking (LAN and WAN), data analysis, business analysis, project management, program management and directorship, ICT training and education, configuration design and assurance, and strategic analysis and governance.

Company Accreditation (Optional) The risk and quality management systems adopted by SCPL are in keeping with AS/NZS ISO 31000:2009 and AS/NZS ISO 9001:2008 respectively. SCPL is underway in gaining full certification under AS/NZS ISO 9001:2008.

Corporate Governance of ICT SCPL’s Managing Director has been designing and delivering (and providing technical support to) whole-of-organisation governance solutions for Government (Federal, State, Local) and private sector clients since 1977. Such clients include CSIRO, the five Parliamentary Departments, The High Court, Foreign Affairs, Austrade, Immigration, General Motors Holden, KODAK Australasia, Scientific Management Associates, the former Joint Intelligence Organisation, and Australian Navy and Air Force. Some of SCPL’s consultants are formally trained in corporate governance (e.g. B. Com); have managed and/or led ICT governance in such organisations as The Family Court, ACTTAB and Attorney-General’s; and worked for major multi-national vendor organisations in Australia and the USA. In addition to the list of clients mentioned above, some specific examples of


SCPL consultant work in the area of ICT corporate governance include (i) From 1974-2000 engineered attitudinal change prior to governance (structural and process) changes in Attorney-General’s, the Family Court, Law Reform Commission, Administrative Appeals Tribunal, Australian Legal Aid Office, and the High Court; (2) Currently (Defence) – managing and monitoring Navy’s international access to Defence Restricted and Secret Networks including liaison with Foreign Affairs and Trade to ensure the delivery of ICT services that meet Navy’s business needs; liaison within Defence (International Policy, CIO Group, and Intelligence and Security) to maintain adequate system performance; monitoring of ICT expenditure in international and non-operational areas; and liaison with Defence Attaches; (3) Chairing the Attorney-General’s Resource Coordination Committee.


Organisation Name Smartnet Pty Ltd Trading Name Smartnet

Contact Ms Suzanne Roche

Address 4/18 Captain Cook Cres

Suburb Manuka



Website


ABN 40121011407

Company Background Smartnet is a specialist solution and business process improvement advisor. We offer expertise in the development of end to end business technology solutions, including

- provision of strategy, policy and business case advice

- analysis of business process and business re-engineering options

- consideration of stakeholder and potential third party issues

- establishment and review of supporting governance structures

- infrastructure and content options

- execution advice and support

- evaluation and review of program and project effectiveness.

The principals of Smartnet have extensive experience in the design and delivery of e-government services, including a deep understanding of best practice solutions in Europe, Asia and North America.

Smartnet works with clients to optimise business outcomes using a combination of proven, modern technologies and business process re-engineering. We assist clients through the project execution, transition and benefits realisation process.

Smartnet’s clients and reference projects include government, healthcare, identity, homeland security (customs and law enforcement), airline operations, transit, finance and logistics. We have extensive experience in areas including privacy, online service delivery, PKI security, registration management, contact/less smart cards, and RFID technologies and standards.

We are very familiar with the operations of Government and have excellent credentials with privacy and consumer advocacy groups.

Company Accreditation (Optional) Member of NSW Government Expert Panel for Performance Reviews and Management Consultancy


(Deignated as specialists in program reviews; strategy, planning and risk analysis of infrastructure and major projects; service delivery improvement and organisational capability review(including business process improvement); and policy, economic and buisness case analysis and developmentt.

Corporate Governance of ICT Smartnet works with its clients to ensure governance arrangements are appropriately developed and embedded in their organisation and will offer transitional and change management assistance as required.

In shaping our governance model for an organisation we provide advice and guidance on:

- the development of principles that underpin the governance framework to be adopted by an organisation;

- leadership and leadership structures, roles and responsibilities;

- reporting and communication frameworks and requirements (this includes identification and shaping of information requirements for management and stakeholders);

- organisation and role based accountabilities;

- integration of IT and business structures, roles, responsibilities and accountabilities;

- performance requirements and performance measurement;

- change management requirements and methods; and

- mechanisms to assess and prioritise issues, risks, and new initiatives.

Smartnet has provided ICT governance and related advice to federal and state government agencies, including the Department of Human Services, Centrelink and national eHealth bodies. Through our work we have helped our clients to identify and manage the risks around technology and business process change in dynamic, mission-critical environments.

In addition, the principals of Smartnet have held executive positions in both the public and private sectors and have extensive experience in developing and implementing ICT governance in organisations such as Medicare Australia, the Health eSignature Authority and the Australian Federal Police. Through this experience Smartnet has a significant background in developing and reshaping ICT governance to reduce risk and increase organisational alignment and adoption of new business processes and technologies.


Organisation Name SMS Consulting Group Limited (SMS Management and Technology)

Trading Name SMS Management and Technology

Contact Mr John Kennedy

Address Ground Floor, 8 Brindabella Circuit

Suburb Canberra Airport



Website www.smsmt.com


ABN 17006515028

Company Background SMS Management & Technology (SMS) [ASX:SMX] is Australia's largest publicly listed consulting, technology services and enterprise solutions company. SMS has revenues in excess of $247 million and around 30% of this revenue dervies from our services in the government sector. SMS employs over 1,400 professionals through offices in Canberra, Melbourne, Sydney, Brisbane, Mackay, Adelaide, Hong Kong and Vietnam.

Established in 1986, SMS helps its clients improve their business performance through the implementation of strategy and the delivery of business and technology projects. Industry expertise spans the government, defence, health, financial services, ICT, utilities, mining, gaming and infrastructure sectors. In the Governement sector, we specialise in assisting agencies to implement new initiatives and new policy.

SMS delivery is organised along practice lines – Business Process Improvement, Opertaional Learning and Change; Program& Project Services, Application Development, Information and Data Management, Systems Integration and Customer Realtionship Management. The practices all have Prinicpal Consultants and are supported by delivery management which ensures delivery quality is actively managed.

What makes us different?

SMS Management & Technology differentiaties by:

• Providing services that focus on Strategy Implementation and Project Delivery

• Providing targeted, end-to-end management and technology services

• Offering ‘Delivery Excellence’ and services designed to improve business performance

• Being a clear alternative to multinational firms

• Continuing to leverage our resources, intellectual capital, infrastruture and financial strengths as compared to smaller firms

• Maintaining vendor independence, while supporting a client’s technology preferences

• Working collaboratively with our clients to deliver outcomes and practical results


• Employing experienced and multi-disciplined professionals working within a culture which focuses on client success

• Specialising in Policy Implementaton Partnering

Company Accreditation (Optional) SMS's Quality Management System is certified to AS/NZS ISO 9001:2000 standards. SMS is one of only 15 companies in Australia accredited as a registered Project Management Organisation by the AIPM.. All SMS consultants have access to leading research institutions including Gartner and Harvard Business Review:

In addition, the majority of SMS consultants hold formal qualifications in industry-shared methodologies, tools & techniques including Registered Project Manager /Master Project Director (Australian Institute of Project Management);/ PRINCE2/ P3M3/ MSP; Project Management Professional certification through the Project Management Institute; Information and Communication Technology management and service delivery (Information Technology Infrastructure Library certified).

Corporate Governance of ICT The SMS Governance Establishment & Implementation service offering establishes governance regimes for our client’s information and communications technology, including policies, programs, projects, processes, applications, costs, assets and (both tangible and intangible). SMS assists clients determine if they are getting the best value from their organisational assets and to minimise the risk over their life. It also ensures they are making the right decisions and have visibility of outcomes.

SMS leverages industry standard frameworks for IT process assessment and best practice in service management, including CobiT (Control Objectives for IT) and ITIL (IT Infrastructure Library). These frameworks and Australian Standards, particularly the AS8000 series, are applied by our expert practitioners in conjunction with SMS developed tools, templates and techniques.

SMS has successfully completed a number of corporate ICT governance engagements including:

* Developing a new information management decision rights and accountability framework and associated guidelines for AirServices Australia to position the organisation to realise its business goals.

* Advising the Victorian Departments of Premier & Cabinet/Treasury and Finance on the development, documentation and deployment of policies, standards and processes to enhance ICT services delivery capability.

* Recommending overall IT requirements, sourcing options and required governance structures for the newly formed Department for Victorian Communities.


Organisation Name Strategem Management Consultants Pty Ltd Trading Name Strategem Management Consultants

Contact Mr Leigh Edwards


Suburb Melbourne



Website www.strategem.net.au


ABN 54964256036

Company Background Headquartered in Melbourne and with staff across Melbourne and Canberra, Strategem Management Consultants (Strategem) is an Australian management and technology consulting services company providing hands-on service and advice to Australian businesses and Government. Combining experience and comprehensive capabilities across a broad range of industries and business functions, our consultants collaborate with clients to define, develop and implement projects which improve performance and reduce costs.

Strategem offers a wide range of management consulting and program/project management services with expertise across most aspects of management and technology consulting, business service delivery and operations. Our consulting advice is pragmatic and focussed on implementation of outcomes. We aim to form long-term, strategic partnerships with our clients offering continuous improvement and ongoing value. We provide objective and fact-based advice and have no affiliations with ICT product and service providers.

Company Accreditation (Optional) Strategem partners and consultants have memberships to the following professional organizations:

- Project Management Institute

- Australian Institute of Management

- Australian Computer Society

- Society of Certified Practicing Accountants

Strategem consultants are conversant with the methodologies and typically have accreditations associated with the following organisations:

- Office of Government Commerce (UK) – Project Management Method, PRINCE2 - Project Management Institute – The Standard for Program Management

- Project Management Institute – PMBoK Guide

- AS8015 – Corporate Governance of Information and Communication Technology

- OCG Information Technology Infrastructure Library – ITIL


- Information Systems Audit and Control Association – CobiT

- Kaplan and Norton Balanced Scorecard

Strategem is also an accredited member of the Victorian Whole of Goverment eServices Panel.

Consultants typically hold post-graduate qualifications in Business, Management or Information Technology.

Corporate Governance of ICT Strategem has broad experience helping organisations communicate, organise and manage the alignment of key strategic intentions to the plans and actions of the organisation. We accomplish this through the establishment of appropriate forums and reviews of practice to ensure continuous line of sight reporting to strategic goals. We also utilize tools such as the balanced scorecard, PRINCE 2, CobiT and other methodologies to support and provide a framework for the selection of performance indicators governance models. Strategem is also experienced in facilitating the introduction and management of ICT change and in the alignment of cross functional entities to core value chain corporate activities. Two examples are below.

Assignment example – Australian Tax Office

Strategem consultants were engaged to review and implement revised governance structures to manage the infrastructure risks associated with the introduction of new applications and ongoing support of existing applications through the facilitation of joint supplier, outsourcer , ATO and third party specialist capacity planning advisors.

Assignment example – Scope – Victorian Government funded Agency

The engagement involved the combined use of client and Strategem supplied subject matter expertise to review the current and recommended target state for Scope’s direction. Key recommendations were provided for technology infrastructure and technology governance. Staff resources and organization structure were reviewed. A 5 year strategic plan was delivered identifying technical issues, proposed changes, estimated costs and rollout timeframes. The plan was presented to the Board and received unanimous support.


Organisation Name Stratica International Pty Ltd Trading Name Stratica

Contact Mr John Rundell

Address Level 2, Professional Chambers, 120 Collins St,

Suburb Melbourne



Website www.stratica.com.au


ABN 73095136208

Company Background Stratica was established in November 2001 and is a specialist consulting firm that is primarily focused on the provision of independent quality strategic sourcing, risk, governance, and information security advice.

The key services offered by Stratica include: IT Strategy, Information security, IT performance management, outsourcing advice, risk assessments, project reviews, governance, contract renegotiation advice, market price ; service level assessments, and business continuity.

Stratica has a scalable team of 15 + fulltime equivalent (FTE) senior staff who have worked together for a number of years on major projects ($250,000+ engagements) and smaller projects, and who have been required to handle multiple projects and of varying complexity.

Stratica undertakes major projects for leading Australian Public Companies (such as Orica, Blue Scope Steel and Worley Parsons) and for various State Government departments (such as Victoria’s DTF/DPC, DOI, and Essential Services Commission)

Company Accreditation (Optional) Stratica’s business processes are ISO9001 accredited.

Corporate Governance of ICT Stratica provides advice and guidance on the fundamentals of sound IT governance and the design of the IT organisation to deliver against the agreed IT strategy. Our reviews cover IT controls, reporting processes and the embedding of sound governance principles into the interaction between IT and business. We also provide organisational change advice.

Advice on sound governance principles and the IT organisation is a sensitive issue and requires senior advisers with both operational IT and executive level experience. Our advisers have the requisite skills and experience to engage with both the IT organisation and business executives.

Recent projects include:

Zoos Victoria - Assisted Zoos Victoria is realignment of its IT organisation and creation of new reporting lines. The realignment included additional positions within IT Department at Zoos Victoria to assist in support and implementation of IT Strategy.


WorleyParsons - Assisted WorleyParsons in IT organisation review and selection. Stratica recommended the new IT structure for WorleyParsons to assist the current IT organisation to deliver and support ongoing business and IT strategies.


Organisation Name STRATSEC.NET PTY LTD Trading Name stratsec.net

Contact Mr Sean Wood

Address Unit 1, 50 Geils Court

Suburb Deakin



Website www.stratsec.net


ABN 14111187270

Company Background Established in 2003, stratsec is one of Australia’s leading independent providers of information risk management services; at the forefront of the information security sector in Australia and the SE-Asian region. Our merger with SIFT in early 2009 further broadened our capability and capacity in the technical sphere of ICT security. We now operate with an employee base of around 50 staff. Our highly skilled and qualified consultants have extensive experience in the successful delivery of large-scale information security, identity and continuity management programs across both public and private sectors. Based in Canberra with offices in Sydney, Melbourne and Singapore and a presence in Perth and Malaysia, our charter is to elevate security and information security management in government and business through a unique, strategic approach: driving business-led solutions enabled by technology. This innovative approach enables our clients to integrate their security programs with their business objectives and operating environments. stratsec delivers services to state government agencies, almost all federal government agencies, along with overseas clients Microsoft, SAIC, SanDisk and the Malaysian Government. stratsec has also worked with several financial institutions and commercial clients, alongside its government and international clients.

Company Accreditation (Optional) stratsec consultants have demonstrated their high level expertise and skills for clients on several ICT security engagements; providing the required services in accordance with professional and industry standards as follows. We have the current certifications/accreditations and can be provided upon request: • Canberra office is approved as a Defence RESTRICTED operating facility • Canberra office operates an ISO 9001 Quality Management system through SAI Global; all other stratsec offices to shortly undertake accreditation requirements • Our Canberra office is ISOIEC 17025 accredited • Canberra has a DSD-approved and licensed Australasian Information Security Evaluation Facility (AISEF) to conduct Common Criteria IT security evaluations. • We are close to being approved (under our NATA ISO 17025 status) as a Digital Forensics facility (also in Canberra) – expected in Nov/Dec 2009. • We have submitted our PCI-DSS application (expected Nov 2009) • We have also submitted an application to be approved as a FIPS140 testing laboratory (testing and site visit expected in Nov 2009). At stratsec we also have a very well qualified and accredited team of over 40 consultants who possess a wide range of tertiary and industry qualifications, and maintain a range of formal security and technical qualifications.


Corporate Governance of ICT stratsec employs a best practice, pragmatic approach to ICT corporate governance, in particular security governance services: the key objective being the development of a “Culture of Security”. We achieve this through a hierarchical propagation of information security requirements relevant to the Board (or Executive Management), management and all users of information systems. We recognise that while all information security governance frameworks are organisation and industry specific, they should comply with a base set of best practice information security principles and standards. stratsec has built a reputation in the federal government ICT market for providing independent, business driven consulting services specifically in the area of corporate governance. One of the major projects that stratsec worked on recently was with the Department of Defence on their Identity Management Capability Development Documentation Suite. stratsec developed Capability Development Documentation for submission as First Pass for Government Approval. This included the development of an Operational Concept Document, reference architectures and Function and Performance Specifications (FPS). This was all wrapped into a detailed business case with a cost model and supporting documentation. The second major component of this project was to develop the supporting Governance and Assurance Framework, Policy and Procedures (including standards and guidelines) encompassing Management Oversight, Risk, Compliance, & Continuity Management, Audit, Service Operations, Monitoring and Integration. Defence also contracted stratsec to provide a business framework for governing a security capability within a Defence agency. The task also involves the development of an ICT security risk assessment and development of policy and minimum standards.


Organisation Name SYPAQ Systems Pty Ltd Trading Name SYPAQ

Contact Mr David Vicino

Address Level 5, 441 St Kilda Road

Suburb Melbourne



Website www.sypaq.com.au


ABN 90058352122

Company Background Since 1992, SYPAQ (ABN 90058352122) has been providing advanced consulting and training services in proposal support, strategic planning, project management, business analysis, systems engineering, systems development &amp; test, systems support strategies, reliability engineering and quality assurance with a focus on effective value-added solutions across a broad range of service applications and technologies in the Defence Aerospace, Information Technology, and Telecommunications industries.

SYPAQ has been successfully operating for over 13 years using proven and scalable processes and methodologies and has an established track record in managing the delivery of complex business-driven projects on time, within budget and above expectations.

SYPAQ is vendor and supplier independent and works to ensure the most cost effective and efficient solutions without conflict of interest.

SYPAQ is currently a member of the following supplier standing offer panels:

• DMO Support Services (DMOSS) Standing Offer Panel as a Major Service Provider (MSP);

• RPDE;

• Victorian Whole of Government E-Services Panel;

• Victoria Police Project Management Support Services;

• West Australian Whole of Government SPIRIT IT Services Panel;

• Customs - Provision Of Consultancy And Business Services Standing Offer Panel; and

• CrimTrac ICT Contract Personnel Services Provider Panel.

Company Accreditation (Optional) SYPAQ has negotiated and executed formal strategic agreements with Institute of Engineers Australia (IEA) and Australian Institute of Project Management (AIPM). This is part of the SYPAQ Professionalisation strategy which will reinvigorate and align our workforce development to that of our major client (Defence).

This will result in improved organisational effectiveness via formal Professional Development Programs (PDPs) with IEA and AIPM, leading to CPENG and RegPM accreditations respectively.


SYPAQ has a Quality Management System certified by Lloyd’s Register as compliant under ISO9001.

SYPAQ is also proud to be an active national corporate member of the following industry associations:

• Australian Information Industry Association (AIIA);

• Australian Industry and Defence Network (AIDN);

• Canberra Business Council;

• Australian Institute of Project Management (AIPM – Strategic Partner);

• Defence Recognised Supplier Scheme;

• Engineers Australia; and

• Systems Engineering Society of Australia (SESA).

Corporate Governance of ICT SYPAQ has extensive experience in the corporate governance of ICT projects. In particular, SYPAQ is the pre-eminent provider of Performance Management utilising Earned Value Management (EVM) in Australia; this system provides an entity with an accurate measure of performance of individual projects against scope, schedule and budget. SYPAQ has also had extensive experience in the provision of consulting to organisations on organisational structure, quality management systems, configuration management, investment logic mapping and risk management.

Telstra engaged SYPAQ to upgrade its ERP capability and include other legacy capabilities to form an integrated system. SYPAQ established a cross discipline team with the highest level of authority to determine business requirements, establish processes, identify Subject Matter Experts and lead the Change Management activity. SYPAQ led an integrated team of project representatives from each business unit and applied the principles and practices of an EVM System to the configuration of the ERP in accordance with AS4817. As a result, Telstra received an industry award from a field of ten for the best ERP implementation in the Southern hemisphere.

SYPAQ also performed Executive Coaching services for Tenix Group IT to institutionalise technological and behavioural change. This involved:

a. Structured, one on one, interactions between a SYPAQ coach and Tenix IT executives aimed at enhancing executive performance;

b. Discussions on background, interests, personal and career goals and workplace challenges;

c. Prioritisation of development needs and strategies;

d. Achievement of performance goals linked to agreed performance plans, to business success and to then executive’s personal life; and

e. Goal setting, planning strategies for change, implementing plans and experimenting with new behaviours.


Organisation Name Tanner James Management Consultants Pty Ltd Trading Name

Contact Mr Daniel Oyston

Address Level 4, Law Society Building, 11 London Circuit




Website www.tannerjames.com.au


ABN 91063977284

Company Background Tanner James is a national company with a head office based in Canberra. Since 1994 we have provided programme and project management training and consulting services to a wide diversity of public and private sector clients. We specialise in non-proprietary programme and project management methods in use by the project management community, including MSP, PMBOK and PRINCE2. In fact, Tanner James introduced both the MSP and PRINCE2 methods to the Australian market. Over the last 12 months, Tanner James has delivered over 800 Face-to-Face training courses with a value in excess of $2m. These figures include in-house courses to over 60 different public and private sector organisations, with the remainder being delegates at our regular public training sessions. In Canberra, we understand the needs of Federal Government Departments and the challenges they face bringing Government initiatives and parliamentary legislation to fruition. Our Federal Government client list includes; Department of the Treasury, Attorney-General’s Department, ComSuper, CrimTrac, Australian Customs Service, Department of Defence, Department of Education Science and Training, Department of Foreign Affairs and Trade, Department of Family and Community Services, Australian Taxation Office, Murray Darling Basin Commission, Department of the Environment and Water Resources, and Child Support Agency

Company Accreditation (Optional) Tanner James is a training organisation and management consultancy. We are accredited as an MSP Accredited Consulting Organisation (Office of Government Commerce - APMG/MSP/ATO, Registration Number MSP/ATO/038) and a PRINCE2 Accredited Training Organisation & Accredited Consulting Organisation (Office of Government Commerce - APMG/P2/ATO, Registration Number P2/ATO/001) Tanner James is a Registered Training Provider (RTO - Registration Number 88098) through the Australian Quality Training Framework. We have a full understanding of the processes involved in conducting training and assessment leading to the issue of nationally and internationally recognised qualifications. Tanner James’ evaluation strategy for existing education and training services are based on the competency-based framework of the Australian Quality Training Framework. All Tanner James training providers are Certificate IV Assessor and Workplace Trainer qualified (BSZ40198/TAA40104). Tanner James is an Australian Government Endorsed Supplier (Tanner James Certificate Number 1521, Issued on 25 May 2000 by the department of Finance and Administration, Last renewed 27 September 2004) As an international ATO and ACO Tanner James have additional requirements placed upon relating to a Quality Management System which exceeds AQTF standards. Tanner James has a QMS designed


by the Managing Director (John Howarth - who is an expert in ISO9000-based Quality Management) which complies with ISO9001.

Corporate Governance of ICT Tanner James can help agencies evaluate their organisational ICT governance through health checks and audits in order to plan, develop and maintain sound corporate ICT governance structures that comply with AS/NZS 4360 Risk Management, AS 8015, AS 8016 and other AS 8000 suite corporate governance Standards. We are aware of the priority placed upon effective ICT corporate governance from recent work of the ITAG (IT Architecture and Governance) Sub-Committee of the Management Advisory Committee (MAC). The Commonwealth spends around $3.5 billion annually on ICT, including ongoing major ICT upgrade programmes at any one time (e.g., DIAC and CSA), yet ICT specialists often tend to set the direction for the application and use of ICT technology rather than the directors and other senior executives, which may lead to suboptimal ICT performance.

Experienced Tanner James consultants, our array of appropriate tools (e.g., Gateway Reviews™, Managing Successful Programmes, the Portfolio, Programme & Project Management Maturity Model (P3M3), and others), and in-depth experience in the establishment of Policy and Governance arrangements can support both executive and ICT professionals to evaluate the use of ICT, prepare and implement effective policies, plans and programmes, and monitor conformance to policies, compliance with legislation and performance against plans.

Recent clients include assisting Defence CIOG with their full programme and project management environment, and currently with The Treasury IT PMO assisting the department to set-up a governance framework for the Information Knowledge Management Programme.


Organisation Name Tarcus Pty Ltd Trading Name

Contact Mr Tarquin Ralph

Address 4 Solander Place

Suburb Yarralumla



Website


ABN 19079612721

Company Background Philosophy

Tarcus Pty Ltd is a Canberra based consulting firm founded on the belief that small to medium engagements can be much more stimulating and fun than large engagements but still require the same disciplines and techniques to be successful. Consequently it engages only staff and associates who have many years of experience in large consulting but who now want to bring their skills to bear on smaller projects. This provides exceptional capability and value and greater certainty around outcomes.

Expertise

Tarcus provides:

- Program and project management

- Change management

- Strategy development and program planning

- Business analysis, modelling and business case development

- Management consultancy and business improvement services

- Quality assurance and program review

- Mid-sized systems design and delivery

- Risk and issue management

- Service design and delivery

- Performance management and monitoring

- Governance


Corporate Governance of ICT Tarcus helped the ICT Division at the Child Support Agency design and implement a range of new processes and procedures to help manage the delivery of CSA’s change program and played a major


role in the design and operation of Centrelink’s Refresh Program Office. It undertook and analysis of IT Governance for the Australian Public Service Commission. This reviewed the current ownership and management of systems within the Commission and proposed a new model which would improve security and control, consolidate and safeguard information, reduce redundant and conflicting data and ensure continuity of service. It is currently helping Centrelink introduce ITIL v3 as a part of its IT Service Management processes.


Organisation Name Terranovate Group Pty Ltd Trading Name Terranovate

Contact Mr John Craven

Address 18/535 Bourke Street

Suburb Melbourne



Website www.terranovate.com.au


ABN 88088994585

Company Background Terranovate was formed in 2002 by a group of senior executives with long careers in multi-national consulting firms. Terranovate exists to help clients to achieve their business vision. In most cases this involves the integration of new systems, technologies and processes through well managed programs that deliver real business value. Terranovate is owned by its two principals, John Craven and Neville Jones and operates from offices in Sydney and Melbourne delivering specialised consulting services through a network of over 50 Experienced Consultants. Terranovate is structured to enable its principals to maintain strong long term relationships with its clients by leading high value consulting and delivery engagements that are focused on achieving tangible results. We take the time to fully understand the needs and then carefully select the expertise that will deliver results quickly and reliably. We work with clients who value the way that we build enjoyable, productive and very effective long term working relationships through which we share our expertise and talent. Of equal importance is the way that we have built our exceptional pool of talent. We have a diverse Team of highly experienced Consultants who deliver exceptional service to each Client.


Corporate Governance of ICT Terranovate’s consultants have extensive experience in the establishment and operation of effective governance of ICT. A number of our senior consultants have had experience as CIO’s or as senior business executives who rely on ICT to deliver business outcomes. By leveraging standard for ICT Governance including the Australian Standard AS8015-2005 and internationally recognised frameworks including COBIT and ITIL we are able to assist our clients to tailor effective governance structures and processes that deliver end to end governance within which ICT investment and delivery can be managed. Harvey Norman – Terranovate worked with the COO to establish an effective and streamlined governance environment to oversee the strategic alignment of its ICT investments and to ensure the effective management of risk. The framework is anchored through an ICT Governance Committee that has been established as a sub-committee of the Board with representation of key directors and management. The ICT Governance Committee is chaired by our MD John Craven. We have worked with the COO and CIO to establish policies and processes for ICT across the organisation in Australia and internationally. Department of Human Services – Terranovate has worked with DHS (and Centrelink) to establish effective Governance of


ICT at both the corporate and program levels. Terranovate has also acted in various capacities to facilitate the execution of the governance principles and is today engaged as Independent External advisors to the ICT Governance Committee. It has also assisted DHS to establish effective governance over other key ICT functions like architecture.


Organisation Name The Birchman Group Asia Pacific Pty Ltd Trading Name

Contact Mr Peter Mahoney

Address Level 8, 256, St Georges Terrace,

Suburb Perth



Website www.birchmangroup.com


ABN 15116571361

Company Background The Birchman Group is an independent, international management consulting company that combines international experience and capability with local knowledge, relationships, and focus. We deliver value to our clients through organisation, process, and technology change and have developed a culture that revolves around: knowledge, integrity, partnership, pragmatism, and focus. Birchman has been instrumental in delivering consulting services to an impressive global client base.

Birchman operates in 4 continents – and in Australia has more than 150 consultants based in offices in Perth and Sydney. We deliver consulting engagements to key clients in the Public Sector including: Western Australia Police, NSW Police, WorkCover Western Australia, NSW Attorney General’s Department, WA Department of Health, and University of New South Wales.

We are a flexible, agile organisation that takes pride in our ability to solve our client’s problems. Birchman is renowned as an independent provider of Value Management services that:

Delivers greater alignment of investments with business objectives,

Determines and communicates the overall value of investments,

Increases the value realised from new initiatives,

Effectively implements major transformation programmes,

Quantifies, justifies and optimises spending, and

Reduces costs and optimises expenditure.


Corporate Governance of ICT Birchman’s consulting team has senior level expertise in corporate governance matters of ICT. They have a long record of setting up and running corporate governance programmes, as well as assessing their effectiveness as a “health check” process. Birchman are well versed in the Australian Standard AS8015-2005 and COBIT frameworks. Importantly, we have an outcomes-based approach to consulting and as such we develop ICT governance models that deliver; workable, robust and appropriate frameworks to our clients that are quickly implementable.


When an assessment is required, the Birchman ICT Health Check model is used. This evaluates the capture, recording, processing and reporting of timely, relevant, and accurate information related to the vision, operational performance and financial performance of ICT. The review looks at all governance levels, both internal and external to ICT. The result of the Birchman ICT Health Check is an assurance for both executive and ICT management that the organisation’s ICT functions not only comply with appropriate external standards and internal framework requirements, but are also delivering value to the organisation through activities aligned with strategies, priorities and budgets.

Recent examples include:

For the Australian School of Business IT, we established the ICT steering committee as well as the reference model framework.

UNSW Central IT engaged Birchman to establish an organisational development and accountabilities framework to a


Organisation Name The Boston Consulting Group Pty Ltd Trading Name As above

Contact Mr Axel Hofmann


Suburb Melbourne



Website www.BCG.com


ABN 70007347131

Company Background The Boston Consulting Group (BCG) is widely regarded as the global leader in strategy consulting and has offices in 66 cities around the world, including Sydney, Melbourne and Canberra.

Our global ICT Practice has 750 consultants and brings together business insight and ICT to achieve extraordinary impact. In the past five years, BCG has undertaken over 1,300 ICT projects for some of the world’s largest organisations, working with CIOs and CEOs to shape their strategic agenda. Our ICT Practice has five focus areas: Strategy, Transformation, Sourcing, Organisation and Performance, each one with various sub-topics. We remain strictly independent of product and service providers to ensure we provide objective and unbiased advice.

We have worked with many Australian public sector agencies, including the ATO, AusTrade, Centrelink, Defence, DEEWR, Finance/AGIMO, Health and Aging, DIAC, Medicare, and Railcorp. Our highly effective stakeholder management skills and experience has resulted in a perfect track record for delivering public sector projects in difficult stakeholder environments on-time, on-budget and with high levels of client satisfaction.

We have received three BRW-St George Annual Client’s Choice Awards – ‘Best Large Consulting Firm’ (2006 and 2008) and ‘Most Innovative Consulting Firm’ (2007) – based on a survey of over 10,000 senior executives.

Company Accreditation (Optional) BCG does not engage in external accreditation and certification

Corporate Governance of ICT Optimising ICT Governance is a core component of the ‘Organisation’ focus area of BCG’s global ICT Practice. We have supported many clients to become ‘high performance ICT organisations’ that increase the value ICT adds to their organisations while optimising its costs. We believe ICT governance must ensure efficient delivery of ICT services and effective alignment between ICT and the rest of the organisation.

To achieve this, we draw on frameworks and tools to optimise governance along five dimensions:

1. ICT strategy, planning and budgeting;

2. ICT architecture and standards;


3. ICT project and program management;

4. ICT product management; and

5. ICT resource management.

Our approach typically involves analysing structures, processes, roles, mandates and capabilities of organisations in terms of whether each of the five governance dimensions can perform effectively individually and also whether there is tight alignment and integration across these five dimensions.

Two recent projects include:

1) Development of a whole-of-government approach to ICT management and governance for the Victorian Government. This included establishing a whole-of-government Chief Information Officer and Chief Technology Officer and designing enhanced processes for governance and project prioritisation.

2) Assessed the organisational arrangements for managing ICT for a major federal agency. BCG helped the client to review the existing governance model and to design a new model with a more ‘activist’ CIO group, sharper accountabilities and clearer management processes.


Organisation Name The Fig Team (The Trustee for The Fig Team Unit Trust)

Trading Name The Fig Team

Contact Mr Jeff Cole

Address 406 Bay Street

Suburb Port Melbourne



Website www.thefigteam.com


ABN 89076307911

Company Background The Fig Team is a SME business based in Melbourne that was established in 2006 by a team of experts who are passionate about successful Portfolio/Program/Project/PMO delivery. Our mission is to partner with clients to deliver successful projects.

We provide practical and hands-on Project and PMO support and solutions. We take care of the project details so that our clients can focus on the key business and technical issues, thereby reducing risk, minimising effort, and consistently delivering successful project solutions for our clients and partners.

Our strengths are our effective communication, planning and stakeholder management skills. In addition, we provide operational risk management, project training and project contract and vendor management.

Our experience is focused in four industry sectors including; Government, Finance, Telecommunications and Retail. Key clients include Victoria Police, Alcatel, Telstra, Medibank, ANZ and Fosters.

Our staff are PMBOK and PRINCE2 certified, are members of the Australian Institute of Project Management (AIPM) and Project Management Institute (PMI) and apply Managing Successful Programmes (MSP) methods.

Fig uses a best practice approach to each engagement using best fit methods and tools. We apply industry standards as well as our own comprehensive methodologies and templates.

Company Accreditation (Optional) Our staff are PMBOK and PRINCE2 certified, are members of the Australian Institute of Project Management (AIPM) and Project Management Institute (PMI) and apply Managing Successful Programmes (MSP) methods.

Fig uses a best practice approach to each engagement using best fit methods and tools. We apply industry standards as well as our own comprehensive method and templates.


Corporate Governance of ICT The Fig Team believes that ensuring that your projects are actually delivering to your business strategy is fundamental to achieving business success.

We can analyse the alignment of your projects to your business strategy and provide recommendations to ensure your project investment is optimised, evaluate your active projects on their financial measures such as ROI and EV, and we can review and monitor the health of your projects and recommend actions to bring them back on track.

We have recent experience in PMO and complex Programme Management, including Risk and Issue Management, Change Management, Health Assessment, EV and ROI analysis, and Project and Schedule Quality Assurance. We also have experience with public service procurement, contract negotiation, contract management and vendor management.

A team from Fig conducted a review of Risk and Issue management for the Telstra Titan Program on behalf of Alcatel-Lucent. Fig subsequently provided a program level risk consultancy and updated R and I process and risk management plan.

Fig staff provided schedule quality assurance and project measurement reporting for the $4.5 bn TITAN Programme (Alcatel-Lucent/Telstra).

Our staff developed & provided a full RandI and Change Management process for Medibank to assist with the introduction of the new client database system.

Our strengths are our effective communication, planning and stakeholder management skills. We will work with your existing teams and organisational structures, and build effective processes and skills. We believe that effective Governance involves good communication, clear accountabilities and processes and the right information at the right time.


Organisation Name The Frame Group Pty Limited Trading Name

Contact Mr Robert Jackson

Address Unit 9, 25 Buckland Street, PO Box 224

Suburb Mitchell



Website www.framegroup.com.au


ABN 48095369403

Company Background Frame is an Australian company with ISO 9001:2000 quality endorsement that provides technology services to a wide range of clients including Federal and State Government Departments and major commercial organisations. We act as a trusted adviser to our customers, using a proven lifecycle approach that is customised to solving their business issues with technology solutions. Our core capabilities are business process consulting, unified communications, information solutions and data centres.

Frame’s business consulting team can assist your organisation in achieving its short, medium and long-term goals. Areas of specialisation include: strategic planning; implementation planning; governance, risk and compliance (GRC); collaborative communications; business process management (performance improvement and alignment); and sourcing and supplier management.

Frame has a demonstrable record of working closely with our clients. We work on building long-term relationships with our clients and work hard on understanding their current and on-going business and technical requirements. Through this understanding we are able to offer them cost-effective, innovative solutions. We provide our clients with ongoing competitive analysis, pro-active initiatives, on-going education and knowledge sharing.

Company Accreditation (Optional) Frames memberships, endorsements, partnerships and certifications include the following:

Memberships:

Corporate Partner, Australian Institute of Management NSW & ACT Limited

Member Queensland BICSI

Member National Committee of BICSI Australia and New Zealand

Member Australian Institute of Project Management (AIPM) Member Information Systems Audit and Control Association (ISACA)

ISACA representative at Standards Australia on the Standards Committee IT-030-01, AS8018, IT Governance

Corporate member Information Technology Service Management Forum (itSMF)


Member Institute Engineers (IE AUST), previously IREE

Endorsements:

ISO 9001:2000 Quality Endorsed Company, QEC 20120

Registered Training Organisation, 2004/08464

Partnerships and certifications:

Cisco Partner

Microsoft Gold Certified Partner

FAST X10 Partner

Network Appliance professional services partner

Novel Authorized Partner

IPFX Certified Partner

Computer Associates partner

3Com Gold Partner

Cyclades Certified Partner

Siemon Certified Designer

Authorised Trend Micro Associate Partner

A number of Frame consultants hold Federal and NSW Government Gateway accreditation.

Corporate Governance of ICT Frame’s Practice Manager, Consulting, Terry Rowlings, contributed to the development of Standards Australia's AS 8015-2005 Corporate governance of information and communication technology standard. He is also a public speaker for the Information Systems Audit and Control Association (ISACA) on COBIT and IT governance and, until recently, was a board member of the Sydney Chapter of ISACA.

Raymond Young, a member of Frame’s consulting team, is a founding member of the Standards Australia committee that developed the Australian IT Governance Standards and is recognised internationally for his expertise in the area of project governance. His research published as HB280-2006 a handbook for board members on the Governance of ICT investments informed both AS8015 (adopted internationally as ISO38500) and AS8016.

Dr Young is currently assisting the Victorian Department of Education and Early Childhood Development (DEECD) to adapt and deliver project sponsor training to support DEECD’s project management framework and build the project governance capability of both DEECD’s senior management and project management teams. The training material has been recognised by Harvard Professor James McKinney as ‘world class, 3-5 years ahead of the competition’.

Frame was engaged by the Royal Australian Navy to assist with the implementation of recommendations regarding its use of the Defence HRM system. On Frame’s advice, Navy adopted a program governance structure based upon PRINCE2. Frame advised Navy regarding the composition of the Project Board, delivered training to senior management, and ensured compliance with the PRINCE2 methodology including the flow of information to the board.


Organisation Name The Nous Group Pty Limited Trading Name The Nous Group

Contact Ms Alison Hawkins

Address Level 9, 347 Bourke Street

Suburb Melbourne



Website www.nousgroup.com.au


ABN 66086210344

Company Background The Nous Group (Nous) is a consulting company specialising in assisting complex businesses to maximise their performance. We exist to achieve positive influence, which means working with clients whose products and services we believe will improve our society’s well being and working on projects critical to our clients’ success. We care about and deliver outstanding results for our clients. We typically work on issues we believe promise character, challenge and multiple layers of benefit for the client. We have expertise in strategy, organisational and information driven change, information management and leadership and management development. Nous brings depth of relevant expertise, a rigorous strategic thinking ability and insightful frameworks to its projects with clients in both the private and public sector. Our clients include major state and federal government departments and top ASX listed organisations across several industry sectors including health, human services, financial services, environment, utilities, science and technology. Nous was established in 1999 because its founders wanted to apply their management consulting and leadership development capability to issues that mattered with clients who shared commonality with Nous’ values.

Company Accreditation (Optional) Nous is an Australian Government Endorsed Supplier. In our governance work, we use the key standards AS/NZS 4360 (a minimum requirement of Victorian Government Risk Management Framework) and the AS 8000 series of standards to identify key governance activities. We have in-depth understanding of AS4360, CoBIT and Victorian/Australian government standard approaches (such as VAGO guidelines for IMT projects, Victorian Dept of Treasury & Finance’s Investment Management standards and the ‘Gateway’ Review processes of both the Victorian DT&F and the federal DF&R) to identify, analyse, evaluate and treat risk to ensure projects effectively deliver the identified benefits. Nous is expert in Prince2 and other project management methodologies and applies ISO and Australian standards for security threat, risk assessment and strategic security management. Nous consultants are skilled in project management toolsets for risk management and we bring to our work the core competencies of deep expertise in organisational culture and performance management along with organisational change management and the workings of government, including e-Government and government service delivery models. This adds rich insight into risk and success drivers in major government IMT projects. For our information management and technology activities, Nous applies AS8015


Corporate Governance of ICT Nous ICT governance work focuses on ICT’s role in an organisation’s performance and risk profile. Five ‘governance pillars’ underpin our risk management plans - roles/decision rights, mission/strategy/culture, accountability, effective relationships and integrity. Nous designs processes linking Board-level governance to operational activities through analysis of business goals, context and current technology against future needs. We consult with stakeholders to agree priorities and key areas for oversight. An example is the Information Systems governance Nous designed for a division of a large Victorian government department. The three year strategy, business case and implementation plan recognised departmental ICT strategy and major investment requirements. The supporting governance structure was designed to manage the project portfolio, cost/risks, investments, benefits, stakeholders, technology, security and information. An implementation plan was developed and agreed. Nous’s wide experience in managing project risk was a key project success factor. Secondly, Nous designed governance arrangements in a business case for jurisdictional law enforcement and federal agencies to share information in a national system. The governance ensured sharing of quality information, appropriate ownership, standard processes, data quality, investment management and risk assessment. Thirdly, Nous reviewed the IT function of a Victorian government central agency to determine its capability to meet external departmental demands in an outsourcing arrangement. A model and service catalogue based on client needs was developed and refined through stakeholder consultations. Key project outcomes included improved individual accountability, new organisational structure, increased service delivery focus, architecture and security functions, and an implementation roadmap.


Organisation Name ThinkPlace Unit Trust Pty Ltd Trading Name ThinkPlace Trust

Contact Mr John Body

Address Level 1, Unit 3, Green Square, Jardine Street

Suburb Kingston



Website www.thinkplace.com.au


ABN 34280130162

Company Background ThinkPlace is a strategic design consultancy focussed on helping organisations articulate their direction, designing services that deliver on that direction and bringing about the organisational change to deliver those services. We have significant experience in designing architectures for enterprise ICT systems that strongly link to agencies’ strategic intent and business architecture (eg Case Management and Customer Relationship Management), and in developing project methodologies, investment and governance arrangements, and design approaches that directly tie ICT to a business and strategic context. We work with complex organisations across the public sector – government, not-for-profits, community, economic development, social development and voluntary organisations. We also work with private sector organisations involved in delivering public and community value. ThinkPlace has accumulated a wealth of experience and knowledge of the public sector context. This means we can hit the ground running on complex projects to turn ideas into reality fast. We have broad experience across multiple government agencies and public sector organisations. We understand government service delivery, regulations, compliance and law enforcement. ThinkPlace’s unique design approach helps our clients view their challenges from a different perspective and with an authentic focus on people, their experiences and opportunities for innovation that creates public value.

Company Accreditation (Optional) N/a

Corporate Governance of ICT ThinkPlace has significant experience in this category including taking an enterprise approach to the governance of ICT and strongly aligning ICT investment and utilisation to business outcomes. ThinkPlace established the mechanism through which a Commonwealth agency would govern, manage and deliver its strategic investment portfolio. This included significant ICT investments that have the potential to transform the agency’s future capability. This involved identifying and forming project teams, establishing project management structures, processes and tools, and engaging program boards to prioritise, manage and evaluate ICT projects. ThinkPlace’s enterprise-wide approach culminated in the prioritisation and approval of ICT projects which we are also currently helping the organisation to implement and evaluate. From 2008 to 2010, ThinkPlace had an ongoing relationship with the Customs and Border Protection Service Corporate Operations area. In this capacity, ThinkPlace worked with the senior leaders across HR, Property, Finance, IT,


Planning and Governance. We worked with the leadership group to develop risk assessments covering all of these capabilities. In addition, ThinkPlace worked with the organisation to assess the proposed portfolio of projects to test for strategic alignment and the HR, Property, Financial and IT capacity to deliver the program.


Organisation Name Third Horizon Consulting Partners (The Trustee for Third Horizon Trust)

Trading Name Third Horizon Consulting Partners

Contact Mr Steven Metzmacher

Address Level 9, 60 Marcus Clarke Street GPO Box 793

Suburb Canberra



Website www.thirdhorizon.com.au


ABN 77149865113

Company Background Third Horizon was established in 2004 by former Arthur Andersen partners to assist clients in the design and implementation of strategy and business transformation. Our focus on ICT includes the assessment, transformation and implementation of IT strategy, operating models, outsourcing programs, project delivery models, project management methodologies, IT cost management, system evaluation and selection, and program management of large scale ICT implementation programs.

The focus of Third Horizon is on being a practical consulting organisation that focuses on implementation to ensure results are delivered. We have grown rapidly since commencement with over 40 experienced consultants in our Canberra, Sydney and Melbourne offices.

Third Horizon uses experience and independence to deliver results to clients. We are a privately held, independent firm that does not have alliances with technology vendors. Therefore we do not have any conflicts of interest in the advice we provide. We have structured quality assurance procedures that ensure we do not enter into any relationships that create conflict for our clients.

We offer an integrated set of consulting services to a wide portfolio of clients in industries including government, financial services, industrial and consumer products, media, transport, water and power utilities and government business enterprises.


Corporate Governance of ICT Third Horizon has significant experience in working with clients to ensure ICT governance arrangements are appropriately developed and embedded in their organisation. Specifically we have deep expertise in the following areas:

- Decision making structures: the IT governance mechanisms such as organisational committees and roles who hold decision-making responsibilities according to intended archetypes.


- Engagement and alignment processes: key alignment processes including the IT investment proposal process, architecture exception process, service level agreements, chargeback, project tracking and formal tracking of business value from IT.

- Formal communications: the way in which management communicates governance mechanisms; namely senior management announcements, formal committees, or office of the CIO.

Specific examples of our work include:

1. AAPT - Third Horizon was engaged to deliver a major, organisation wide business transformation program which included a significant review of the engagement and governance model around the interaction between the IT and business divisions specific to ICT investment management. This included defining an optimal operating model for the IT function, identifying major gaps and issues impacting the effectiveness and cost of the IT operation and designing an optimal IT organisation structure.

2. South East Water - Third Horizon was engaged to identify opportunities to enhance the IT engagement model and governance framework. As part of a revised IT governance framework; Third Horizon developed a business case, portfolio management and system selection processes. Additionally an IT engagement model was implemented to understand and map key business processes, identify issues and execute key strategies.


Organisation Name TPI (Technology Partners International Incorporated

Trading Name TPI

Contact Dr Catherine Jaktman

Address Suite 4, Level 6, 333 George Street

Suburb Sydney



Website www.tpi.net


ABN 85108959360

Company Background As the industry founder and innovator, TPI is the most respected and trusted advisor to public sector entities and corporations worldwide, across the entire lifecycle of information and communication technology (ICT) advisory services. Our Public Sector teams bring the best practices in government transformation to our public sector clients worldwide.

Our Services include the following:

a.) Operational Assessments

b.) Stratgic Sourcing and Procurement Advice

c.) Shared Services

d.) Internal Service Optimisation

e.) ICT Benchmarking

f.) Service Management and Governance

g.) Finanacial Business Case Development

Company Accreditation (Optional) TPI is a global consulting company and we adhere to a corporate quality management and reporting systems.

Corporate Governance of ICT Based on our extensive ICT industry experience TPI has developed a Governance model that defines 30 principal processes within four disciplines:

Performance Management that includes processes for managing risk, change, incident and service delivery;

Financial Management that covers areas such as invoice management and financial analysis and planning;

Relationship Management that encompasses governance, forecasting and demand management, communications management and customer satisfaction; and


Contract Administration that provides processes for contract change management, issue and dispute resolution and audit.

TPI complements this four discipline approach with an operating model for governance that helps to define:

A governance charter

Funding approaches

The governance job roles and capabilities

An organisation structure to execute its accountabilities efficiently

The bodies required to make and ratify decisions, provide guidance and resolve issues and disputes

How internal and external functions will interact and the stakeholder forums to enhance operational effectiveness

The technologies required to support its functional responsibilities

The core process to exercise its mandate

Two recent examples of this service are:

TPI was engaged by a global manufacturer to support the regional operations in operating governance and contract management functions for over 40 global contracts with 7 separate suppliers;

TPI was engaged as part of a broader scope sourcing engagement to review current and advise on establishing on-going service management and governance functions for a large government agency (DIAC)


Organisation Name UXC Limited Trading Name UXC Limited

Contact Mr Joe Coombs

Address 4a Whyalla Street

Suburb Fyshwick



Website www.uxc.com.au


ABN 31060674580

Company Background Opticon Australia is a boutique Information, Communications and Technology consultancy offering professional services in:

- Strategic ICT & IM Consulting, Planning & Governance;

- ICT Project & Portfolio Management Services; and

- ICT Project Services.

In addition to ICT strategic advice, Opticon specialises in:

- Information Management (including strategy, policy, procedures, taxonomies, KM, archiving);

- Enterprise Content Management (document, records, web content, imaging, workflow, e-permanence, email management);

- Electronic Service Delivery (covering all forms of e-Business & online services);

- Contact Centres (including telephony, call handling, customer management, transactional systems and computer aided dispatching)

Choosing a consulting partner is a critical choice but one where many firms appear to have appropriate capabilities. Opticon’s proposition to our clients is that we bring a superior client experience, based on:

- deep and broad experience in developing ICT strategic plans and frameworks for both public and private sector clients;

- ability to bring experience based on current practice, emerging best practice and contemporary academic research;

- excellent knowledge of the Federal Government sector;

- specialist consultants, deeply immersed in ICT strategy and associated activities; and

- proven, robust and efficient methodologies for delivering our strategic and project services to clients.

Company Accreditation (Optional) ISO9001:2000 certified Quality Management System


Corporate Governance of ICT Opticon has extensive experience in developing implementable ICT governance frameworks, including Enterprise Architecture (EA) governance requirements. Our previous experience has driven us towards a pragmatic approach, not religiously applying one specific framework or another. Instead, Opticon defines what is necessary and applies the principles from established and proven governance frameworks to achieve strong, pragmatic outcomes.

Our breadth of experience allows us to combine our expertise in developing complete ICT governance frameworks with our extensive EA experience to develop a comprehensive ICT governance framework. We believe an EA governance component should not be undertaken in isolation from broader ICT governance requirements, as consistent and cohesive governance structures and approaches will ensure better outcomes.

Broader ICT Governance requirements that Opticon generally examines include the following:

- ICT Principles - high level statements about how ICT is to be used within the organisation;

- ICT Budget - management arrangements for infrastructure, and applications development and support;

- Steering Committee or Review Board structures - overarching ICT steering committee with senior business management engagement; and

- Project and Program Governance - project management methodologies, steering committees and boards.

Selected Projects:

ASIC - ICT Governance Review

Royal District Nursing Service -Development & Implement ICT Governance Model


Organisation Name Velrada Trading Name Velrada Capital Pty Ltd

Contact Mr Malcolm de Silva

Address Level 22, 140 St Georges Terrace

Suburb Perth



Website velrada.com


ABN 38136050701

Company Background Velrada is an Australian owned management consultancy with expertise in technical and service delivery. The firm has a strong national presence, as well as an Asian Pacific presence in Singapore. Velrada provides organisations a flexible and customised approach with subject matter experts who own the outcome. Velrada specialises in Government, Earth Resources and related sectors. Established in 2007 by a conglomeration of business executives and specialists from tier one consultancy, systems integration and enterprise systems firms such as: Cap Gemini, Andersen Consulting, Ernst and Young, Oracle and Microsoft, Velrada has grown 276% in FY11 and currently employs 65 experts in various disciplines. Velrada’s growth trajectory will require 250 employees in 2014 to meet client requirements. Velrada recently earned second place in the 2011 SmartCompany Smart50 Awards which recognises Australia’s smartest entrepreneurs and organisations that are changing the business landscape. Velrada’s core business services include enterprise solutions, information management, integrated and remote operations centres, and risk and governance including environmental impact. Velrada’s clients include Department of Indigenous Affairs, WA Department of Water, Office of Environmental Protection, Department for Communities, Woodside Energy, Rio Tinto and Santos to name a few.

Company Accreditation (Optional) Velrada places high importance on the quality of work complying with Quality Management System and Environmental Standards -- ISO 9001:2008 (Quality Management Certification) and ISO 14001:2007 (Environmental Management Certification). Completed audit and certification is scheduled for the first quarter of 2012. Velrada has a number of consultants accredited with ISO 31000:2009 Risk Management Certification. Velrada's consultants have certifications and experience in many methodologies, including Prince2, MSP, P3O, PMP, ITIL, Lean, Six Sigma and RUP. Currently, Velrada has Microsoft Silver certification for SharePoint Portals and Microsoft CRM with Gold Certification to be achieved by December 2011. Velrada is an Australian Computer Society (ACS) Professional Partner Program member; is a full member of the Australian Information Industry Association (AIIA); and has employees with membership in the Australian Institute of Company Directors (AICD).

Corporate Governance of ICT Velrada has undertaken reviews of current and future use of ICT for many organisations. This involved evaluating and directing the plans for the use of ICT, monitoring use to achieve plans, and


developing strategies and policies for using ICT within the organisation. Central TAFE Completed a detailed ICT review and health check for Central TAFE as part of the Central TAFE ICT strategic review. A series of workshops were conducted with senior members of the ICT teams to assess maturity and identify risks and issues with the current environment. Following this, a program of work was undertaken to bring the Central TAFE ICT environment in line with the College’s strategic objectives. Department for Environment and Conservation (DEC) Engaged by the CIO and the Corporate Executive of DEC to review the performance of the agency's IT Department, Velrada undertook a strategic review of DEC' operations, organisation and governance structure and developed a new organisational and governance structure which better aligned DEC to meet the current and future needs of the agency.


Organisation Name WDScott Asia Pty Ltd Trading Name WDScott Asia Pty Ltd

Contact Mr Gary Allan

Address Suite 1, Level 1,25 Bentham Street

Suburb Yarralumla



Website www.wdscott.com


ABN 19125833356

Company Background WDScott is an Australian-owned international professional services firm with a proven reputation of providing ICT services to government and corporate organisations. WDScott has developed a unique service culture known for integrity, attention to client needs, practical recommendations and the desire to work alongside clients across a range of services. In Australia, we are a boutique firm with a powerful workforce of 50 employees and contractors. We believe ‘less is more’, engaging small specialised teams to facilitate skills and knowledge transfer resulting in higher impact for our clients. At WDScott, people are our greatest asset, and our consultants are highly qualified and experienced professionals. They have wide industry and consulting experience enabling them to not only perform better but to work cohesively with clients. Our goal is to help clients improve processes and capabilities enabling them to reach their desired outcomes. The aim of WDScott is to assist clients to interrogate themselves using our analyses and continuously improve their business processes and supporting enablers, to help them reach their objectives. WDScott frames its projects within a ‘Why-What-How’ approach allowing us to better understand how a client’s business works and to help re-design relevant work practices using

Company Accreditation (Optional) WDScott is a member of the Defence Industry Security Program and most staff have AGSVA security accreditation. WDScott has a unique service culture known for integrity, attention to client needs, practical recommendations and working with clients across a range of services. The principles of ISO 9000 are important to our SME consultancy work and the principles are applied to out Lean/6 Sigma approach to Continuous Improvement (CI) to ensure that staff take responsibility for delivery of quality outcomes. Skill sets range across the alignment of business and technology, enabling us to undertake the management of portfolios, programs and projects, and developing business process model frameworks and integrating them into organisations’ work practices. Some staff have accreditation to the AICD and IE (Aust). Individual staff qualifications and accreditations include formal tertiary qualifications Doctorate in Philosophy (PhD), Masters’ Degrees in Business Administration (MBA), Science, Engineering, and Business. Bachelors' Degrees are typically Engineering, Business, Economics, Commerce, Law, Psychology, and Applied Science. Several staff have Program and Project Management accreditation and qualifications including Master Project Director (MPD), Registered Project Manager (RegPM), and accreditation with Project Management Body of Knowledge (PMBOK), and PRINCE2 project management methodology (at practitioner, consultant and trainer levels).


Corporate Governance of ICT WDScott understands that corporate governance of ICT is the system by which the current and future use of ICT is directed and controlled. It involves evaluating and directing the plans for the use of ICT to support the organisation and monitoring this use to achieve plans. It includes the strategy and policies for using ICT within an organisation. The Australian Standard AS8015 provides the principles for good governance of ICT. WDScott's approach aligns with the standard, and is based on our extensive experience with portfolio management, which we implement through the Responsibility, Accountability, Communication, and Information (RACI) matrix. This ensures that all necessary stakeholders are engaged and have the correct information to control the project outputs. WDScott utilised this approach in the recently concluded Defence Spectrum Audit and associated business change management project. The findings of the audit identified areas for improvement and through the identification of improvement opportunities significant improvement in the operation of the organisation was rapidly realised. As part of Defence's Human Resources Reform Program (HRRP), WDScott proposed and implemented the role of Account Manager within the project. The specific task was to manage the business relationship and develop strong and supportive relationships with the client. The role was also to provide coaching and advice in all areas of cross stakeholder communications, all areas of negotiations and vendor engagement management, and to create a strategic partnership using ITIL principles.


Organisation Name Wipro Australia Pty Ltd Trading Name Wipro

Contact Mr Patrick Bodegraven

Address Level 1, 18 National Cct

Suburb Barton



Website www.wipro.com


ABN 80121950463

Company Background Wipro Australia Pty Ltd is part of Wipro Ltd which is a global management consulting, technology services and outsourcing company. With more than 100,000 employee across the globe, the company generated revenues of $US 5.4 billion with 28% YoY growth for the fiscal year 2008-09. Wipro offers a wide range of consulting services with specialisations across most aspects of management and technology consulting, business service delivery and operation. In addition, Wipro provides ‘End to End’ solutions in systems integration and outsourcing means our consulting advice is pragmatic, outcomes focused, and mindful of implementation challenges. Our clients span a broad range of industries worldwide and include many of the Fortune Global 100 and Fortune Global 500 companies and Government agencies. Many of our top 100 clients have been clients for at least five years. Wipro Consulting Service has a vast pool of qualified resources in the following functional tracks - Business Consulting – 200, Architecture Consulting – 400, Portfolio consulting – 200 and Business Process Improvement – 400 consultants. Wipro Australia operate offices in Sydney, Melbourne and Adelaide with over 700 employees servicing our customers across all of our functional domains. Customers include the University of Canberra, Northern Territory Government, Telstra

Company Accreditation (Optional) CMMi Accreditation – Wipro is the first PCMM Level 5, SEI CMM Level 5 and CMMi Level 5 certified software & IT services company globally and the first outside USA to receive the IEEE Software Process Award. ISO & BS Standard Wipro started its Quality Journey in 1993 by adopting ISO 9000. Wipro was certified by BVQI and was recertified ISO 9001:1994. Wipro was certified for the ISO 9001 2000 certification. Wipro is the first software technology and services organization in India, to be certified for complying with the ISO 14001 standards for the Environmental Management System. Wipro was certified as compliant with the BS7799 standards in 2002. Wipro was awarded the BS 15000 in 2004. Wipro has adopted complete BS15000 framework processes and in addition project management which is extremely critical to manage projects for any size organisation. We are able to address IT Infrastructure management and service support needs for our clients while maintaining high standards of quality and cost effectiveness Six Sigma Wipro is the world’s first IT Company to adopt Six Sigmainternally. Six sigma methodologies in practice include Six Steps to Six Sigma (SSSS), for transactional quality, cross functional process mapping, DMADV, and DMAIC, in software development.


Corporate Governance of ICT Wipro provides end to end governance solutions to its clients that includes high-value, high end advisory consulting to define IT governance frameworks and tool based solution implementations. In the context of compliance pressures like Sarbanes-Oxley (SOX), CPIC, organizations need tools and frameworks. We help in making good IT governance a reality. Wipro helps clients to effectively manage their IT portfolio, programs and projects by defining IT governance process frameworks. Our solutions help organizations rationalize their IT investment, set up processes for objective go/no-go decision making. We bring best practices from multiple frameworks like CobiT, CMMI and ITIL and blend them together to suit organization specific needs. Our IT Governance services include - Evaluating current IT Governance frameworks, maturity assessment and transformational roadmap creation, defining unified IT governance framework and processes in line with industry framework like COBIT and Val IT , and implementing standardized IT governance processes, etc Wipro’s customers derive the following benefits: Increase visibility and transparency through Dashboards; Improved productivity and data accuracy; Standardization of project execution and improvement in efficiency; Substantial savings by not allowing redundant projects; Enhancement of resource productivity and utilization; Mature process frameworks meeting compliance requirements with standardized approval processes and audit trails Relevant Experience: • Established a Data Governance organization and enterprise Data Quality Strategy for Lexmark, US • Defined key IT Governance (COBIT) processes and provided process deployment support for Saudi Arabian refining and petro chemicals company.


Organisation Name Yael Bright Consulting PTY LTD Trading Name Bright Consulting

Contact Mr Aviel Vaknin

Address P.O Box 460 Civic Square

Suburb Civic



Website www.brightc.com.au


ABN 85156575647

Company Background Bright Consulting is a delivery-focused company providing management services, Business Analysis and advisory services. We specialise in increasing project management capability as well as delivering highly complicated projects successfully. Bright consultants are contracted to our customers at extremely competitive rates; we believe that a successful delivery can be achieved by providing expert advice at reasonable prices. Bright Consulting targets the best consultants in the market; those with vast experience and knowledge who are passionate about what they do. Our rigorous recruitment process highlights a selected few who are invited to be part of Bright experience. We support our consultants during their engagements and regularly monitor and tracked their progress. This service ensures higher successful rate of delivery as well as continuity. We see this service as demonstration of our values and commitments to the success of our clients; we therefore provide this service at no additional cost.

Company Accreditation (Optional) Bright Consulting targets highly experienced consultants as our permanent staff. Our employees are certified in most of the industry recognised Methodologies : Prince2, PMBOK, MSP, as well as Project lifecycles : waterfall and Agile. We ensure our consultants maintain their high level of accreditation , as well as exposing them to the latest developments in Program and Project Management through training and technical workshops. Our internal Project Management Office ensures that we provide our customers with a superior service. Our practice lead is accredited CMMI (Capability Maturity Model - Integration) who continuously develop and enhance our Project Management capability and support our consultants throughout their assignment. Bright Consultants are a proud member of the ACS, PMI, AIPM and AIM.

Corporate Governance of ICT Corporate governance is one of the key services Bright Consulting provides. Employing High end, business focused Business Analysts and experienced Program / Portfolio Managers, Bright consulting is able to analyse, advise, propose and coach an organization by providing alternatives to enable initiatives prioritisation and realisation, whilst maintaining a realistic and pragmatic approach and reduce costs. Bright Consulting was recently engaged by Airservices Australia to facilitate ICT Future workshops, assisting Airservices ICT staff, Engineering and branch heads to define and progress a new path for ICT management. This activity had a significant impact on the establishment and planning of the new ICT department at Airservices Australia. Bright Consulting


is currently working with University of Canberra (UC), to redefine their Project Management Office (PMO) and to raise the IT delivery team profile within the University. Bright Consulting was engaged by UC after the Board of Directors decided to close the PMO, within a few weeks of analysis, Maturity Roadmap proposal and gaining the buy-in from the directors, this decision was overturned and budget is now allocated for permanent PMO staff. This decision will help the University to increase assurance of outcome for current and new projects.


Organisation Name Zen Ex Machina Pty Ltd Trading Name Zen Ex Machina

Contact Ms Mia Horrigan

Address Unit 7/43 Sandgate Road

Suburb Albion

State Qld Postcode 4000


Website zenexmachina.com


ABN 93153194220

Company Background Zen Ex Machina was founded in 2011 in response to the needs of Australian businesses and government for elegant solutions to modern, complex digital problems. We are outcomes focused, working closely with our clients and their stakeholders to create a shared understanding of the value required of products and services in the government and private sectors in a way that is adaptable to the changing needs and priorities of the modern business environments. Our consultants have over 10 years experience working extensively across Federal Government agencies including Department of Health and Ageing, Department of Defence, Department for Human Services and Department of Employment, Education and Workplace Relations. We believe that the good inherent in 'the machine' of this digital age is most effectively and efficiently delivered through ensuring that the strategies we create, the solutions we develop, and the tactics we employ are: •In harmony with end-users' needs. •Useful, usable and fit-for-purpose. •Balanced across all channels of customer engagement, whether digital or traditional. •Value-driven. •Created collaboratively with our clients. A key element in our approach is the provision of sound project management capability to ensure timely, cost effective delivery of a quality and valued aligned outcomes.

Company Accreditation (Optional) Our Zen Ex Machina Business Strategy and Project Management Consultants have Prince2 certification and Scrum master Certification (Agile Alliance). Our Technology consultants are certified Adobe Instructors and certified technical trainers.

Corporate Governance of ICT Zen Ex Machina has consultants with a minimum of 10 years experience with recent experience in supporting high-profile Federal Government programs with their corporate ICT governance in a way that is aligned with AS 8015-2005. Our services offerings are: •Senior Executive mentoring and advisory services •Project tactics and project management •Agile Project Management governance capability uplift, mentoring and coaching •Governance review and audit Case Study 1: DHS PCEHR - Zen Ex Machina consultants provided senior executives in DHS with project management frameworks to improve the effectiveness of their governance structures that supported both decision-making and evaluation of ICT investment for the PCEHR. These frameworks encompassed strong risk management and mitigation strategies, improved efficiency in program’s change management policies and processes, and an enhanced capability to evaluate the changing needs of the program in response to evolving policy and legislation requirements. The framework


was adopted across DHS and the PCEHR program for key internal stakeholder engagement in alignment of program outcomes. Case Study 2: DOHA Community Pharmacy Branch - Zen Ex Machina consultants provided the Branch Manager, its Directors, staff and ICT project implementation partners with governance frameworks to support executive decision-making to evaluate and monitor the progress of health programs over a period of 2 years. The activities undertaken included the creation of governance structures, increasing the transparency of roles and responsibilities, the continual and proactive management of risk, and providing project Directors with stakeholder engagement mechanisms to include the Pharmacy Guild in program implementation.

Documents

Corporate Governance of ICT