Skip to main content
SpringerLink
Log in

Assessing IT Governance Processes Using a COBIT5 Model

  • Conference paper
  • First Online:
Information Systems (EMCIS 2017)

Part of the book series: Lecture Notes in Business Information Processing ((LNBIP,volume 299))

Abstract

COBIT5 process assessments are conducted to support process improvement and thus enable business-IT alignment. For providing an assessment, assessors engage in planning, data collection, and data validation activities. Typically, these activities are assisted by spreadsheet-like artifacts, that are used for recording the COBIT5 Process Assessment Model (PAM) entities, as well as the corresponding assessment evidence. However, spreadsheet-like artifacts are not an optimal solution for assisting assessment activities, since they do not form part of an integrated and up-to-date enterprise architecture (EA) repository. Contradicting the COBIT5 recommendation of using EA – namely for improving alignment, increase agility, and generate potential cost savings – COBIT5 assessors often do not practice what they preach, i.e. that they do not use EA in their own business activities. Some EA tool vendors provide solutions for addressing this gap, but they are proprietary and lack scientific validation, thus presenting interoperability and adoption barriers. In this paper, we propose a set of COBIT5 viewpoints, based on standard ArchiMate extensions to enable interoperability and ease adoption. We designed and tested the solution using a Design Science Research Methodology process model. We demonstrated the EA proposal in two public sector organizations, and evaluated its efficacy, consistency, and structural quality.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. ISACA, COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. ISACA, Rolling Meadows (2012)

    Google Scholar 

  2. Van Grembergen, W., De Haes, S.: Enterprise Governance of IT: Achieving Strategic Alignment and Value. Springer Science+Business Media, New York (2009)

    Google Scholar 

  3. ISACA. COBIT 5 Implementation. ISACA, Rolling Meadows (2012)

    Google Scholar 

  4. Tribolet, J., Pombinho, J., Aveiro, D.: Organizational self-awareness: a matter of value. In: Magalhães, R. (ed.) Organization Design and Engineering: Coexistence, Cooperation or Integration. Palgrave Macmillan, Basingstoke (2014)

    Google Scholar 

  5. Greefhorst, D., Proper, E.: Architecture Principles: The Cornerstones of Enterprise Architecture. Springer, Heidelberg (2011)

    Book  Google Scholar 

  6. Cameron, B., Malik, N.: A Common Perspective on Enterprise Architecture. In: The Federation of Enterprise Architecture Professional Organizations (FEAPO) (2013)

    Google Scholar 

  7. Lankhorst, M.: Enterprise Architecture at Work: Modelling, Communication and Analysis, 3rd edn. Springer, Heidelberg (2013)

    Book  Google Scholar 

  8. ISACA. COBIT 5 for Assurance. ISACA, Rolling Meadows (2013)

    Google Scholar 

  9. NIST. Joint Task Force Transformation Initiative - Managing Information Security Risk: Organization, Mission, and Information System View, NIST Special Publication 800-39. NIST - National Institute of Standards and Technology (2011)

    Google Scholar 

  10. Uhl, A., Gollenia, L.A.: Business Transformation Essentials, Gower (2013)

    Google Scholar 

  11. Uhl, A., Gollenia, L.A.: Business Transformation Management Methodology, Gower (2012)

    Google Scholar 

  12. ISACA. COBIT Process Assessment Model (PAM): Using COBIT 5. ISACA, Rolling Meadows (2013)

    Google Scholar 

  13. Peffers, K., Tuunanen, T., Rothenberger, M.A., Chatterjee, S.: A design science research methodology for information systems research. J. Manag. Inf. Syst. 24(3), 45–77 (2007)

    Article  Google Scholar 

  14. ISACA. COBIT 5: Enabling Processes. ISACA, Rolling Meadows (2012)

    Google Scholar 

  15. The Open Group. TOGAF Version 9.1 (2011)

    Google Scholar 

  16. ISACA, COBIT Assessor Guide: Using COBIT 5, Rolling Meadows, IL, USA: ISACA, 2013

    Google Scholar 

  17. Estrem, W., Gonzalez, S., Thorn, S.: A Practitioner’s Guide to Using the TOGAF Framework and the ArchiMate Language, The Open Group (2014)

    Google Scholar 

  18. Vicente, M., Gama, N., da Silva, M.M.: Using ArchiMate to represent ITIL metamodel. In: CBI 2013 Proceedings of the 2013 IEEE 15th Conference on Business Informatics, pp. 270–275. IEEE Computer Society, Washington, D.C. (2013)

    Google Scholar 

  19. Silva, N., da Silva, M.M., Barafort, B.., Vicente, M., Sousa, P.: Using ArchiMate to model a process assessment framework. In: SAC 2015 Proceedings of the 30th Annual ACM Symposium on Applied Computing, pp. 1189–1194. ACM, New York (2015)

    Google Scholar 

  20. Wierda, G.: Mastering ArchiMate, 2nd edn. R&A, Amsterdam (2014)

    Google Scholar 

  21. Hevner, A., Chatterjee, S.: Design Research in Information Systems. Springer, New York (2010)

    Book  Google Scholar 

  22. Hevner, A., March, S., Park, J., Ram, S.: Design science in information systems research. MIS Q. 28(1), 75–105 (2004)

    Google Scholar 

  23. Prat, N., Comyn-Wattiau, I., Akoka, J.: Artifact evaluation in information systems design-science research - a holistic view. In: PACIS 2014 Proceedings, Paper 23 (2014)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Instituto Superior Técnico, Universidade de Lisboa, Lisbon, Portugal

    Gonçalo Rodrigues Cadete & Miguel Mira da Silva

Authors
  1. Gonçalo Rodrigues Cadete
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Miguel Mira da Silva
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Gonçalo Rodrigues Cadete .

Editor information

Editors and Affiliations

  1. Department of Digital Systems, University of Piraeus, Piraeus, Greece

    Marinos Themistocleous

  2. Department of Management and Technology, Bocconi University, Milan, Italy

    Vincenzo Morabito

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Cadete, G.R., da Silva, M.M. (2017). Assessing IT Governance Processes Using a COBIT5 Model. In: Themistocleous, M., Morabito, V. (eds) Information Systems. EMCIS 2017. Lecture Notes in Business Information Processing, vol 299. Springer, Cham. https://doi.org/10.1007/978-3-319-65930-5_36

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-65930-5_36

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-65929-9

  • Online ISBN: 978-3-319-65930-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation