1 / 14

Microsoft Operations Framework (MOF) 4.0

Microsoft Operations Framework (MOF) 4.0. GRC and the IT Service Lifecycle. microsoft.com/MOF. What’s Included in This Presentation. MOF 4.0 – Addressing the IT Service Lifecycle. Goals and objectives: ISO 20000. Management perspective: COBIT.

Download Presentation

Microsoft Operations Framework (MOF) 4.0

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Microsoft Operations Framework(MOF) 4.0 GRC and the IT Service Lifecycle microsoft.com/MOF

  2. What’s Included in This Presentation

  3. MOF 4.0 – Addressing the IT Service Lifecycle

  4. Goals and objectives: ISO 20000 Management perspective: COBIT MOF 4.0 Connects Service Management Standards to Practical Applications for the Community Process description: ITIL v3 Industry Standards Process guidance: MOF 4.0 MOF 4.0 Guidance Solution Accelerators Concepts, Practices Control Frameworks System Center Processes + Guidance + Tools (for Specific Scenarios) Infrastructure Automation Community

  5. Governance GRC Guidance Compliance Risk Management Directives, Policy, Controls More prescriptive

  6. Connect Governance, Risk, and Compliance Governance Addresses strategic planning, business/IT alignment, policy creation, and vision setting Risk tradeoff decisions Compliance with governance rules Who decides, and process to follow Risk tolerance rules Risk Addresses system threats, system vulnerability, protection of IT assets, and risks to management objectives Risk tradeoff decisions (how they were made) Impact of not complying Compliance Addresses adherence to laws, regulations, policies, standards, best practices, and frameworks

  7. GRC Influences All Lifecycle Phases • Aiding decision making, balancing risk/benefit • tradeoffs, identifying accountabilities • Creating a strategy that manages risks and • ensures risk management is appropriate for • the activities at hand • Establishing guardrails for behaviors, • communicating expectations, and validating • performance

  8. Governance, Risk, and Compliance Applied • Governance • Identifies decision makers and stakeholders • Determines accountability for actions and responsibility for outcomes • Addresses how expected performance will be evaluated • Risk • Employs risk management throughout the IT lifecycle: • • Business decisions • Policy adherence • • Application development • Operational procedures • Compliance • Guides behavior to make sure what takes place is what was intended • Shows how IT is performing against objectives

  9. IT Governance • Governance determines how IT makes investments, contributes to value, and achieves goals and management objectives • Good Governance: • Manages IT services in a regulatory environment • Focuses on cost efficiencies and value contribution • Provides insight into organizational processes that result in continuous improvement and optimization initiatives

  10. Risk Management • Risk management drives a structured approach to identifying, assessing, and managing potential threats to assets or the achievement of strategic goals • Good risk management: • Drives consistent, recurring, and comprehensive reviews of IT plans, initiatives, projects, and activities • Results in clear risk management decisions • Produces activities and internal controls that reduce risk likelihood or impact

  11. Compliance establishes rules, guidelines, and communications to ensure an organization’s requirements are known and followed • Good compliance: • Ensures management intentions are realized • Establishes evaluation when expectations are set • Allows for effective monitoring Compliance

  12. Make MOF GRC Work for You Features: • Specific goals, outcomes, and measures in each SMF • Clearly identified accountabilities and role types for each SMF • Objectives, risks, and controls outlined for each phase • Management reviews function as management controls • Benefits: • Clearly established accountabilities • Effective risk management • Compliance with policies, laws, and regulations

  13. Resources • MOF Home Page: www.microsoft.com/mof • Compliance Home Page: www.microsoft.com/compliance • IT Compliance Management Guide: www.microsoft.com/downloads/details.aspx?FamilyId=BD930882-0D39-4900-9A79-B91F213ED15D&displaylang=en • Solution Accelerators Home Page: www.microsoft.com/solutionaccelerators • Contact Email: MOFpm@microsoft.com

  14. www.microsoft.com/mof

More Related