ICT GOVERNANCE AND MANAGEMENT Strategi T
ICT GOVERNANCE AND MANAGEMENT
Strategi Tata Kelola Teknologi Informasi
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Jakarta, 14 November 2013
INTRODUCTION
.theTREND
.theCHALLENGES
.theOPPORTUNITIES
.theEVOLUTION
.newWORLD
PEOPLE
=users
PROCESS
“ The explosion of advanced
technologies now means that
suddenly knowledge pools and
resources have connected all over
the planet, levelling the playing
field as never before, so that
each of us is poten�ally an
equal – and compe�tor – of
the other.”
Thomas Friedman
=applica�ons
TOOLS
=technology
PEOPLE.
.digitalERA
.genera�onDEVICES
The Generation Cohort: Veterans - Baby Boomers - Xers - Millenials
.changingENVIRONMENT
From ““close”” to ““open”” environment:
Society
Communica�on
Market
Mind
Behavior
Value
Millenials
Xers
>1980
1964‐1980
Baby
Boomers
1946‐1964
Veterans
1981
Dedicated to a job
Live to work
Work to live
Live in the moment
Respectful of
authority
Sense of optimism
Contract
Technology savvy
Duty before
pleasure
Champions of
causes
Pragmatic world
Consistent
expectations
Patience is a virtue
Go into debt
Self-reliant
Street smart
Honor and integrity
Team and process
oriented
Attached to the edge
Fun is a must
Reluctant to change
Personal
gratification
Authority is casual
Give respect if they
are respected
Patriotic
Nostalgic of youth
Versatility of skills
Diverse in nature
.livingDOMAIN
VETERANS
BABY BOOMERS
XERS
MILLENIALS
< 1946
1946-1964
1965-1980
>1981
HOME
HOME
HOME
HOME
SCHOOL
SCHOOL
SCHOOL
PUBLIC
PUBLIC
INTERNET
PROCESS.
.digitalisa�onCONCEPT
Digitius = “Jari Jemari””
.technologyMANIPULATION
.productREPLICATION
.processDIGITALISATION
.techINVASION
Internet/Intranet/Extranet
DISTRIBUTORS
CUSTOMERS
Manufacturing
and Production
Finance and
Management
R&D and
Engineering
Inward Focused
Core Business
Process and
Applications
Procurement
Distribution
Supply Chain
Logistics
SUPPLIERS
Marketing
Advertising
Sales
Customer Care
PARTNERS
.globalCOMPETITION
.valueMATRIX
.applica�onsSPECTRUM
E-Learning
E-Government
E-Business
E-Procurement
E-Commerce
E-Money
.compe��veCONCEPTS
.economicCHALLENGES
1
Knowledge
Convergence
7
2
Digitization
Innovation
8
3
Virtualization
Prosumption
9
4
Molecularization
Immediacy
10
5
Integration/Internetworking
Globalization
11
6
Disintermediation
Discordance
12
TECHNOLOGY.
.goingDIGITAL
.gadgetEVERYWHERE
.enablingTECHNOLOGY
.ourNEXTERS
.learnSMARTER
.workFASTER
Social-Networking
Chatting
Email
Blogging
Browsing
Mailing-list
Group-Ware
.technologyRISK
versus
PEOPLE
ISSUES,
NOT
TECHNOLOGY !!!
CYBER CRIMINAL
MORE BENEFITS
MORE RISKS
THE SOLUTION
.theISSUES
.theGOVERNANCE
.theMANAGEMENT
Harapan Pemangku Kepentingan
Mencapai Efektivitas
Mempercepat Proses
Meningkatkan Efisiensi
Memperbaiki Kualitas
Menerapkan Transparansi
Mengurangi Biaya
Memberdayakan Manusia
Mengoptimalkan Sumber
Daya
Mengintegrasikan Organisasi
Menciptakan Inovasi
Mempermudah Aktivitas
Memaksimalkan Pelayanan
Memenuhi Standar
Aturan
Memuaskan Pelanggan
… dan lain sebagainya.
Kenyataan di Lapangan
Biaya Tinggi
Ketergantungan Pihak Ketiga
Perkembangan Cepat
Kompetensi SDM Rendah
Proyek Terlambat
Arsitektur Kompleks
Sistem Kadaluwarsa
Tidak Auditable
Kapabilitas Terbatas
Implementasi Tambal Sulam
Tidak Sesuai Kebutuhan
Perubahan Kebutuhan
Kecenderungan Peristiwa
Kenyataan
BIAYA + RESIKO
>
Harapan akan
MANFAAT
…baik yang bersifat TANGIBLE maupun INTANGIBLE !
Tantangan Manajemen
BIAYA
MANFAAT
Jawaban: ICT Governance !
Communities + Consensus + Coordination
Konsensus Tiga Konstituen IT
MANAGEMENT
PENGGUNA
DIVISI TI
Domain 3C
Perencanaan
Pengadaan
Penerapan
Pengawasan
terhadap sumber daya TIK, yaitu:
INFORMASI
APLIKASI
INFRASTRUKTUR
MANUSIA
(H/W+S/W+B/W)
COLLECTIONS OF BEST PRACTICE BODY OF KNOWLEDGE FRAMEWORKS ™
Source and Reference: ISACA – IASA – ISO – SEI – ITGI – PMI – OPEN GROUP – APM – IIBA – KAPLAN - UK/US GOV – TM FORUM – DAMA INTERNATIONAL
COBIT
ITIL
TOGAF
CMMI
ZACHMAN
ISO-38500
PRINCE-2
ISO-27001
Val-IT
People CMM
DODAF
BABOK
BMIS
IT-Biz SM
ITABOK
IMBOK
KMBOK
DAMA-DMBOK
SWEBOK
PMI-ACP BOK
RISK IT
ITAF
IT BSC
eTOM
IT(GOVERNANCE(AND(MANAGEMENT(FRAMEWORK(FOR(EXECUTIVES(
©ISACAIITGI,(IASA,(and(Prof.(Richardus(Eko(Indrajit(
Halaman 1
ENTERPRISE(STRATEGIC(BUSINESS(PLAN(
determine(
Stakeholder(value(of(business(investments(
2"
Por=olio(of(compe@@ve(products(and(services(
3"
Managed(business(risk((safeguarding(of(assets)(
4"
Compliance(with(external(laws(and(regula@ons(
5"
Financial(transparency(
6"
CustomerIoriented(service(culture(
7"
Business(service(con@nuity(and(availability(
8"
Agile(responses(to(a(changing(business(environment(
9"
Informa@onIbased(strategic(decision(making(
10"
Op@misa@on(of(service(delivery(costs(
11"
Op@misa@on(of(business(process(func@onality(
12"
Op@misa@on(of(business(process(costs(
13"
Managed(business(change(programmes(
14"
Opera@onal(and(staff(produc@vity(
15"
Compliance(with(internal(policies(
16"
Skilled(and(mo@vated(people(
17"
Product(and(business(innova@on(culture(
drive(
enable(
INFORMATION(SYSTEM(AND(TECHNOLOGY(
encapsulate(
transform(
ENTERPRISE(REQUIREMENTS(
1"
Halaman 2
ENTERPRISE(IT(ARCHITECTURE(
(
Hardware,"Network"
(
Business"Process"
Informa;on"and"
and"Technology"
and"Applica;ons"
Database"Systems"
(
Infrastructure"
(
Policy,"Procedures,"
(
Physical"Assets"and" People,"Structure,"
Regula;on,"and"
(
Firm"Facili;es"
and"Culture"
Ethics"
(
should(
serve(
will(
determine(
INFORMATION(TECHNOLOGY(MISSIONS(
1"
Alignment(of(IT(and(business(strategy(
2"
IT(compliance(and(support(for(business(compliance(with(external(laws(
and(regula@ons(
3"
Commitment(of(execu@ve(management(for(making(ITIrelated(decisions(
4"
Managed(ITIrelated(business(risk(
5"
Realised(benefits(from(ITIenabled(investments(and(services(por=olio(
6"
Transparency(of(IT(costs,(benefits(and(risk(
7"
Delivery(of(IT(services(in(line(with(business(requirements(
8"
Adequate(use(of(applica@ons,(informa@on(and(technology(solu@ons(
9"
IT(agility(
10"
Security(of(informa@on,(processing(infrastructure(and(applica@ons(
11"
Op@misa@on(of(IT(assets,(resources(and(capabili@es(
12"
Enablement(and(support(of(business(processes(by(integra@ng(
applica@ons(and(technology(into(business(processes(
13"
Delivery(of(programmes(delivering(benefits,(on(@me,(on(budget,(and(
mee@ng(requirements(and(quality(standards(
14"
Availability(of(reliable(and(useful(informa@on(for(decision(making(
15"
IT(compliance(with(internal(policies(
16"
Competent(and(mo@vated(business(and(IT(personnel(
17"
Knowledge,(exper@se(and(ini@a@ves(for(business(innova@on(
Halaman 3
INFORMATION(TECHNOLOGY(GOVERNANCE(
1" Ensure(Governance(Framework(Se]ng(and(Maintenance(
2" Ensure(Benefits(Delivery(
3" Ensure(Risk(Op@misa@on(
4" Ensure(Resource(Op@misa@on(
5" Ensure(Stakeholder(Transparency(
INFORMATION(TECHNOLOGY(MANAGEMENT(
ALIGN,(PLAN,(AND(ORGANISE(
1" Manage(the(IT(Management(
Framework(
1" Manage(Programmes(and(
Projects(
2" Manage(Strategy(
Halaman 4
BUILD,(ACQUIRE,(AND(
IMPLEMENT(
3" Manage(Enterprise(Architecture(
4" Manage(Innova@on(
5" Manage(Por=olio(
6" Manage(Budget(and(Costs(
7" Manage(Human(Resources(
8" Manage(Rela@onships(
9" Manage(Service(Agreements(
10" Manage(Suppliers(
11" Manage(Quality(
2" Manage(Requirements(
Defini@on(
3" Manage(Solu@ons(Iden@fica@on(
and(Build(
4" Manage(Availability(and(
Capacity(
5" Manage(Organisa@onal(Change(
Enablement(
6" Manage(Changes(
7" Manage(Change(Acceptance(
and(Transi@oning(
8" Manage(Knowledge(
12" Manage(Risk(
9" Manage(Assets(
13" Manage(Security(
10" Manage(Configura@on(
DELIVER,(SERVICE,(AND(SUPPORT(
1" Manage(Opera@ons(
2" Manage(Service(Requests(and(Incidents(
3" Manage(Problems(
4" Manage(Con@nuity(
5" Manage(Security(Services(
6" Manage(Business(Process(Controls(
MONITOR,(EVALUATE,(AND(ASSESS(
1" Monitor,(Evaluate(and(Assess(Performance(and(Conformance(
2" Monitor,(Evaluate(and(Assess(the(System(of(Internal(Control(
3" Monitor,(Evaluate(and(Assess(Compliance(with(External(Requirements(
Terima Kasih
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Using Best Practices to Design
IT Governance and Management
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Terima Kasih
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Strategi Tata Kelola Teknologi Informasi
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Jakarta, 14 November 2013
INTRODUCTION
.theTREND
.theCHALLENGES
.theOPPORTUNITIES
.theEVOLUTION
.newWORLD
PEOPLE
=users
PROCESS
“ The explosion of advanced
technologies now means that
suddenly knowledge pools and
resources have connected all over
the planet, levelling the playing
field as never before, so that
each of us is poten�ally an
equal – and compe�tor – of
the other.”
Thomas Friedman
=applica�ons
TOOLS
=technology
PEOPLE.
.digitalERA
.genera�onDEVICES
The Generation Cohort: Veterans - Baby Boomers - Xers - Millenials
.changingENVIRONMENT
From ““close”” to ““open”” environment:
Society
Communica�on
Market
Mind
Behavior
Value
Millenials
Xers
>1980
1964‐1980
Baby
Boomers
1946‐1964
Veterans
1981
Dedicated to a job
Live to work
Work to live
Live in the moment
Respectful of
authority
Sense of optimism
Contract
Technology savvy
Duty before
pleasure
Champions of
causes
Pragmatic world
Consistent
expectations
Patience is a virtue
Go into debt
Self-reliant
Street smart
Honor and integrity
Team and process
oriented
Attached to the edge
Fun is a must
Reluctant to change
Personal
gratification
Authority is casual
Give respect if they
are respected
Patriotic
Nostalgic of youth
Versatility of skills
Diverse in nature
.livingDOMAIN
VETERANS
BABY BOOMERS
XERS
MILLENIALS
< 1946
1946-1964
1965-1980
>1981
HOME
HOME
HOME
HOME
SCHOOL
SCHOOL
SCHOOL
PUBLIC
PUBLIC
INTERNET
PROCESS.
.digitalisa�onCONCEPT
Digitius = “Jari Jemari””
.technologyMANIPULATION
.productREPLICATION
.processDIGITALISATION
.techINVASION
Internet/Intranet/Extranet
DISTRIBUTORS
CUSTOMERS
Manufacturing
and Production
Finance and
Management
R&D and
Engineering
Inward Focused
Core Business
Process and
Applications
Procurement
Distribution
Supply Chain
Logistics
SUPPLIERS
Marketing
Advertising
Sales
Customer Care
PARTNERS
.globalCOMPETITION
.valueMATRIX
.applica�onsSPECTRUM
E-Learning
E-Government
E-Business
E-Procurement
E-Commerce
E-Money
.compe��veCONCEPTS
.economicCHALLENGES
1
Knowledge
Convergence
7
2
Digitization
Innovation
8
3
Virtualization
Prosumption
9
4
Molecularization
Immediacy
10
5
Integration/Internetworking
Globalization
11
6
Disintermediation
Discordance
12
TECHNOLOGY.
.goingDIGITAL
.gadgetEVERYWHERE
.enablingTECHNOLOGY
.ourNEXTERS
.learnSMARTER
.workFASTER
Social-Networking
Chatting
Blogging
Browsing
Mailing-list
Group-Ware
.technologyRISK
versus
PEOPLE
ISSUES,
NOT
TECHNOLOGY !!!
CYBER CRIMINAL
MORE BENEFITS
MORE RISKS
THE SOLUTION
.theISSUES
.theGOVERNANCE
.theMANAGEMENT
Harapan Pemangku Kepentingan
Mencapai Efektivitas
Mempercepat Proses
Meningkatkan Efisiensi
Memperbaiki Kualitas
Menerapkan Transparansi
Mengurangi Biaya
Memberdayakan Manusia
Mengoptimalkan Sumber
Daya
Mengintegrasikan Organisasi
Menciptakan Inovasi
Mempermudah Aktivitas
Memaksimalkan Pelayanan
Memenuhi Standar
Aturan
Memuaskan Pelanggan
… dan lain sebagainya.
Kenyataan di Lapangan
Biaya Tinggi
Ketergantungan Pihak Ketiga
Perkembangan Cepat
Kompetensi SDM Rendah
Proyek Terlambat
Arsitektur Kompleks
Sistem Kadaluwarsa
Tidak Auditable
Kapabilitas Terbatas
Implementasi Tambal Sulam
Tidak Sesuai Kebutuhan
Perubahan Kebutuhan
Kecenderungan Peristiwa
Kenyataan
BIAYA + RESIKO
>
Harapan akan
MANFAAT
…baik yang bersifat TANGIBLE maupun INTANGIBLE !
Tantangan Manajemen
BIAYA
MANFAAT
Jawaban: ICT Governance !
Communities + Consensus + Coordination
Konsensus Tiga Konstituen IT
MANAGEMENT
PENGGUNA
DIVISI TI
Domain 3C
Perencanaan
Pengadaan
Penerapan
Pengawasan
terhadap sumber daya TIK, yaitu:
INFORMASI
APLIKASI
INFRASTRUKTUR
MANUSIA
(H/W+S/W+B/W)
COLLECTIONS OF BEST PRACTICE BODY OF KNOWLEDGE FRAMEWORKS ™
Source and Reference: ISACA – IASA – ISO – SEI – ITGI – PMI – OPEN GROUP – APM – IIBA – KAPLAN - UK/US GOV – TM FORUM – DAMA INTERNATIONAL
COBIT
ITIL
TOGAF
CMMI
ZACHMAN
ISO-38500
PRINCE-2
ISO-27001
Val-IT
People CMM
DODAF
BABOK
BMIS
IT-Biz SM
ITABOK
IMBOK
KMBOK
DAMA-DMBOK
SWEBOK
PMI-ACP BOK
RISK IT
ITAF
IT BSC
eTOM
IT(GOVERNANCE(AND(MANAGEMENT(FRAMEWORK(FOR(EXECUTIVES(
©ISACAIITGI,(IASA,(and(Prof.(Richardus(Eko(Indrajit(
Halaman 1
ENTERPRISE(STRATEGIC(BUSINESS(PLAN(
determine(
Stakeholder(value(of(business(investments(
2"
Por=olio(of(compe@@ve(products(and(services(
3"
Managed(business(risk((safeguarding(of(assets)(
4"
Compliance(with(external(laws(and(regula@ons(
5"
Financial(transparency(
6"
CustomerIoriented(service(culture(
7"
Business(service(con@nuity(and(availability(
8"
Agile(responses(to(a(changing(business(environment(
9"
Informa@onIbased(strategic(decision(making(
10"
Op@misa@on(of(service(delivery(costs(
11"
Op@misa@on(of(business(process(func@onality(
12"
Op@misa@on(of(business(process(costs(
13"
Managed(business(change(programmes(
14"
Opera@onal(and(staff(produc@vity(
15"
Compliance(with(internal(policies(
16"
Skilled(and(mo@vated(people(
17"
Product(and(business(innova@on(culture(
drive(
enable(
INFORMATION(SYSTEM(AND(TECHNOLOGY(
encapsulate(
transform(
ENTERPRISE(REQUIREMENTS(
1"
Halaman 2
ENTERPRISE(IT(ARCHITECTURE(
(
Hardware,"Network"
(
Business"Process"
Informa;on"and"
and"Technology"
and"Applica;ons"
Database"Systems"
(
Infrastructure"
(
Policy,"Procedures,"
(
Physical"Assets"and" People,"Structure,"
Regula;on,"and"
(
Firm"Facili;es"
and"Culture"
Ethics"
(
should(
serve(
will(
determine(
INFORMATION(TECHNOLOGY(MISSIONS(
1"
Alignment(of(IT(and(business(strategy(
2"
IT(compliance(and(support(for(business(compliance(with(external(laws(
and(regula@ons(
3"
Commitment(of(execu@ve(management(for(making(ITIrelated(decisions(
4"
Managed(ITIrelated(business(risk(
5"
Realised(benefits(from(ITIenabled(investments(and(services(por=olio(
6"
Transparency(of(IT(costs,(benefits(and(risk(
7"
Delivery(of(IT(services(in(line(with(business(requirements(
8"
Adequate(use(of(applica@ons,(informa@on(and(technology(solu@ons(
9"
IT(agility(
10"
Security(of(informa@on,(processing(infrastructure(and(applica@ons(
11"
Op@misa@on(of(IT(assets,(resources(and(capabili@es(
12"
Enablement(and(support(of(business(processes(by(integra@ng(
applica@ons(and(technology(into(business(processes(
13"
Delivery(of(programmes(delivering(benefits,(on(@me,(on(budget,(and(
mee@ng(requirements(and(quality(standards(
14"
Availability(of(reliable(and(useful(informa@on(for(decision(making(
15"
IT(compliance(with(internal(policies(
16"
Competent(and(mo@vated(business(and(IT(personnel(
17"
Knowledge,(exper@se(and(ini@a@ves(for(business(innova@on(
Halaman 3
INFORMATION(TECHNOLOGY(GOVERNANCE(
1" Ensure(Governance(Framework(Se]ng(and(Maintenance(
2" Ensure(Benefits(Delivery(
3" Ensure(Risk(Op@misa@on(
4" Ensure(Resource(Op@misa@on(
5" Ensure(Stakeholder(Transparency(
INFORMATION(TECHNOLOGY(MANAGEMENT(
ALIGN,(PLAN,(AND(ORGANISE(
1" Manage(the(IT(Management(
Framework(
1" Manage(Programmes(and(
Projects(
2" Manage(Strategy(
Halaman 4
BUILD,(ACQUIRE,(AND(
IMPLEMENT(
3" Manage(Enterprise(Architecture(
4" Manage(Innova@on(
5" Manage(Por=olio(
6" Manage(Budget(and(Costs(
7" Manage(Human(Resources(
8" Manage(Rela@onships(
9" Manage(Service(Agreements(
10" Manage(Suppliers(
11" Manage(Quality(
2" Manage(Requirements(
Defini@on(
3" Manage(Solu@ons(Iden@fica@on(
and(Build(
4" Manage(Availability(and(
Capacity(
5" Manage(Organisa@onal(Change(
Enablement(
6" Manage(Changes(
7" Manage(Change(Acceptance(
and(Transi@oning(
8" Manage(Knowledge(
12" Manage(Risk(
9" Manage(Assets(
13" Manage(Security(
10" Manage(Configura@on(
DELIVER,(SERVICE,(AND(SUPPORT(
1" Manage(Opera@ons(
2" Manage(Service(Requests(and(Incidents(
3" Manage(Problems(
4" Manage(Con@nuity(
5" Manage(Security(Services(
6" Manage(Business(Process(Controls(
MONITOR,(EVALUATE,(AND(ASSESS(
1" Monitor,(Evaluate(and(Assess(Performance(and(Conformance(
2" Monitor,(Evaluate(and(Assess(the(System(of(Internal(Control(
3" Monitor,(Evaluate(and(Assess(Compliance(with(External(Requirements(
Terima Kasih
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Using Best Practices to Design
IT Governance and Management
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu
Terima Kasih
Prof.
Richardus Eko Indrajit
indrajit@post.harvard.edu