Professional Documents
Culture Documents
Its Mfi So 20000 Presentation For I I A
Its Mfi So 20000 Presentation For I I A
Its Mfi So 20000 Presentation For I I A
ISO/IEC / 20000-1
Anan Sony
CISSP, CISA Section Manager, ACIS Professional Center Co., Ltd.
Security intelligence
Security intelligence
Security intelligence
Security intelligence
WHAT?
HOW?
5
Security intelligence
1. 1 Worldwide W ld id Standard St d d for f IT Service S i Management M t 2. International Certification against standard 3 Proof 3. P f th that t ITIL b best t practices ti h had db been implemented 4 ITIL (IT Infrastructure 4. I f t t Library) Lib ) is i a library lib of f best b t practices, not a standard 5 ITIL is a set of g 5. guidance idance , ISO 20000 is requirement 6 Certification for Quality Management 6.
Security intelligence
Security intelligence
Ref: http://www.isaca.org
Security intelligence
Users are significantly more likely to be implementing ITIL (85%) and BSM (26%) Americas respondents are significantly more likely to be i l implementing i Six Si Sigma (28%) Larger companies are g y more significantly likely to be implementing Six Sigma (33%) and CMI (20%)
Ref: BMC
Security intelligence
Incident Management,
Service Desk and Change Management are most likely to have been adopted p already y Larger companies are significantly more likely to have already adopted release management, change management, capacity management, and problem management best practices
Ref: BMC
10
Security intelligence
11
Security intelligence
12
Security intelligence
Ref: http://www.bureauveritas.com/
13
Security intelligence
14
Security intelligence
Ref: http://www.isoiec20000certification.com/home/ISOCertifiedOrganizations/ISOCountryListings-TH.aspx
15
Security intelligence
Security intelligence
GITIMM / ITIL V1 ITIL V3 ITIL V2 BS 15000-1 15000 1 2002 ISO/IEC 20000-1 ISO/IEC 20000 20000-2 2 ISO/IEC 20000-4 ISO/IEC 20000-5 2009 2011
2000 2005 2010 BS 15000-1:2002 ISO/IEC TR 20000-3 ISO/IEC 20000-1:2011 BS 15000-2:2002 ISO/IEC 20000-2:2011
17
Security intelligence
18
Security intelligence
19
Security intelligence
20
Security intelligence
Security intelligence
22
Security intelligence
Certification bodies
Security intelligence
Philosophy of Audit
Audit Criteria
Effectiveness
Seek
Conform
Execute Exist
Audit Evidences
24
Security intelligence
Yes/No / Q Questions
25
Security intelligence
Checklists Example
26
Security intelligence
27
Security intelligence
28
Security intelligence
Security intelligence
Q&A
30
Security intelligence
31