Modul 2:

A Business Framework for 
the Governance and 
Management of Enterprise 
IT
ENABLING  PROCESSES
1
COBIT 5: Enabling  
Processes
 COBIT 5: Enabling  Processes
 COBIT 5: Enabling Processes complements COBIT 5
and contains a detailed reference guide to the
processes that are defined in the COBIT 5 process
reference model:
 In Chapter 2, the COBIT 5 goals cascade is
recapitulated and complemented with a set of example
metrics for the enterprise goals and the IT-related goals.
 In Chapter 3, the COBIT 5 process model is explained
and its components defined.
 Chapter 4 shows the diagram of this process reference
model.
 Chapter 5 contains the detailed process information for
all 37 COBIT 5 processes in the process reference
model.
© 2012 ISACA. This work, and any derivatives thereof, may not be offer for sale alone or as part any other publication or product.

3
COBIT 5: Enabling  Processes (cont.)

Source: COBIT® 5, figure 29. © 2012 ISACA® All rights reserved.

4
COBIT 5: Enabling  Processes (cont.)

Source: COBIT® 5, figure 16. © 5

2012 ISACA® All rights reserved.
 COBIT 5: Enabling  Processes (Cont.)
COBIT 5: Enabling Processes:
• The COBIT 5 process reference model subdivides the IT-
related practices and activities of the enterprise into two
main areas—governance and management— with
management further divided into domains of processes:
• The GOVERNANCE domain contains five
governance processes; within each process, evaluate,
direct and monitor (EDM) practices are defined.
• The four MANAGEMENT domains are in line with
the responsibility areas of plan, build, run and monitor
(PBRM).
© 2012 ISACA. This work, and any derivatives thereof, may not be offer for sale alone or as part any other publication or product.

6
Details on COBIT Processes
Part 1: Process Description and Purpose
Part 2: Goals and Metrics
 Part 3: RACI chart

• R(esponsible)—Who is getting the task done? This refers to the roles taking the main operational stake in fulfilling the
activity listed and creating the intended outcome
• A(ccountable)—Who accounts for the success of the task? This assigns the overall accountability for getting the task
done (Where does the buck stop?)
• C(onsulted)—Who is providing input? These are key roles that provide input.
• I(nformed)—Who is receiving information? These are roles who are informed of the achievements and/or deliverables
of the task.
 Part 4: Process Practices
• Governance Practice & Management Practice

For each COBIT 5 process, the governance/management practices provide a complete set of high-level
requirements for effective and practical governance and management of enterprise IT.
They are:
 Statements of actions to deliver benefits, optimise the level of risk and optimise the use of
resources
 Aligned with relevant generally accepted standards and good practices
 Generic and therefore needing to be adapted for each enterprise
 Covering business and IT role players in the process (end to end)
Part 5: Activities
Part 6: Related Guidance
COBIT 5 Implementation 
 COBIT 5 Implementation
• The improvement of the governance of enterprise IT (GEIT)
is widely recognised by top management as an essential part
of enterprise governance.
• Information and the pervasiveness of information
technology are increasingly part of every aspect of business
and public life.
• The need to drive more value from IT investments and
manage an increasing array of IT-related risk has never been
greater.
• Increasing regulation and legislation over business use of
information is also driving heightened awareness of the
importance of a well-governed and managed IT
environment.
15
COBIT 5 Implementation (cont.)
• ISACA has developed the COBIT 5 framework to help
enterprises implement sound governance enablers.
Indeed, implementing good GEIT is almost impossible
without engaging an effective governance framework.
Best practices and standards are also available to underpin
COBIT 5.
• Frameworks, best practices and standards are useful only
if they are adopted and adapted effectively. There are
challenges that need to be overcome and issues that need
to be addressed if GEIT is to be implemented
successfully.
• COBIT 5: Implementation provides guidance on how
to do this.
16
COBIT 5 Implementation (cont.)

• COBIT 5: Implementation covers the following subjects:

• Positioning GEIT within an enterprise
• Taking the first steps towards improving GEIT
• Implementation challenges and success factors
• Enabling GEIT-related organisational and behavioural
change
• Implementing continual improvement that includes
change enablement and programme management
• Using COBIT 5 and its components

17
COBIT 5 Implementation (cont.)

Source: COBIT® 5, figure 17. © 2012 ISACA® All rights reserved.

18
 COBIT 5 
Future Supporting 
Products 
COBIT 5 Product Family

Source: COBIT® 5, figure 11. © 2012 ISACA® All rights reserved.

20
 COBIT 5 Future Supporting Products
Future supporting products:
• Professional Guides:
• COBIT 5 for Information Security
• COBIT 5 for Assurance
• COBIT 5 for Risk
• Enabler Guides:
• COBIT 5: Enabling Information
• COBIT Online Replacement
• COBIT Assessment Programme:
• Process Assessment Model (PAM): Using COBIT 5
• Assessor Guide: Using COBIT 5
• Self-assessment Guide: Using COBIT 5
21
Terima Kasih

22
23