Enabling Processes
Enabling Processes
Enabling Processes
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Align, Plan and Organise<br />
APO11 RACI Chart<br />
Key Management PracticeBoard APO11.01<br />
Establish a quality management<br />
system (QMS).<br />
APO11.02<br />
Define and manage quality<br />
standards, practices and<br />
procedures.<br />
APO11.03<br />
Focus quality management<br />
on customers.<br />
APO11.04<br />
Perform quality monitoring,<br />
control and reviews.<br />
APO11.05<br />
Integrate quality management<br />
into solutions for development<br />
and service delivery.<br />
APO11.06<br />
Maintain continuous<br />
improvement.<br />
102<br />
: ENABLING PROCESSES<br />
Chief Executive Officer<br />
Chief Financial Officer<br />
Chief Operating Officer<br />
Business Executives<br />
APO11 Process Practices, Inputs/Outputs and Activities<br />
Business Process Owners<br />
Strategy Executive Committee<br />
�������� ��������������������� ���������<br />
������� ���������� ������<br />
����� ���������� ������<br />
Chief Risk Officer<br />
Chief Information Security Officer<br />
Architecture Board<br />
Enterprise Risk Committee<br />
Head Human Resources<br />
Compliance<br />
Audit<br />
Chief Information Officer<br />
C A C I C I I C C C R C C I R R I I I<br />
C C R C R C C C A R R R R R R R R<br />
A R C I C C R I I I I R I I<br />
C C R C R C R C C A C C C C R C C C<br />
C C I A C R R R<br />
C R C R C C A R R R R R R R<br />
Management Practice Inputs Outputs<br />
APO11.01 Establish a quality management<br />
system (QMS).<br />
Establish and maintain a QMS that provides a standard,<br />
formal and continuous approach to quality management<br />
for information, enabling technology and business<br />
processes that are aligned with business requirements<br />
and enterprise quality management.<br />
From Description Description To<br />
Outside COBIT Enterprisewide quality<br />
system<br />
Head Architect<br />
Head Development<br />
Head IT Operations<br />
Head IT Administration<br />
QMS roles, responsibilities<br />
and decision rights<br />
Service Manager<br />
Information Security Manager<br />
Business Continuity Manager<br />
APO01.02<br />
DSS06.03<br />
Quality management plans BAI01.09<br />
Results of QMS<br />
BAI03.06<br />
effectiveness reviews<br />
Activities<br />
1. Ensure that the IT control framework and the business and IT processes include a standard, formal and continuous approach to quality management<br />
that is aligned with enterprise requirements. Within the IT control framework and the business and IT processes, identify quality requirements and<br />
criteria (e.g., based on legal requirements and requirements from customers).<br />
2. Define roles, tasks, decision rights and responsibilities for quality management in the organisational structure.<br />
�� ������ ������� ���������� ����� ��� ��������� ���������� �������� �� ���������� �� ��������� ���� ���������� ������� ���������� �������� ���<br />
policies. Record quality data.<br />
4. Monitor and measure the effectiveness and acceptance of quality management, and improve them when needed.<br />
5. Align IT quality management with an enterprisewide quality system to encourage a standardised and continuous approach to quality.<br />
6. Obtain input from management and external and internal stakeholders on the definition of quality requirements and quality management criteria.<br />
7. Effectively communicate the approach (e.g., through regular, formal quality training programmes).<br />
8. Regularly review the continued relevance, efficiency and effectiveness of specific quality management processes. Monitor the achievement of<br />
������� �����������<br />
Personal Copy of: Mr. Dong Hong Wang<br />
Privacy Officer