Professional Documents
Culture Documents
Caselet Bottler
Caselet Bottler
Caselet Bottler
Using COBIT 5
ISACA has designed and created the Bottler Company Caselet: Using COBIT 5 (the
Work) primarily as an educational resource for educational professionals. ISACA
makes no claim that use of any of the Work will assure a successful outcome. The Work
should not be considered inclusive of all proper information, procedures and tests or
exclusive of other information, procedures and tests that are reasonably directed to
obtaining the same results. In determining the propriety of any specific information,
procedure or test, security governance and assurance professionals should apply their
own professional judgment to the specific circumstances presented by the particular
systems or information technology environment.
ISACA
3701 Algonquin Road, Suite 1010
Rolling Meadows, IL 60008 USA
Phone: +1.847.253.1545
Fax: +1.847.253.1443
Email: info@isaca.org
Web site: www.isaca.org
Reservation of Rights
2014 ISACA. All rights reserved. No part of this publication may be used, copied,
reproduced, modified, distributed, displayed, stored in a retrieval system or transmitted in any
form by any means (electronic, mechanical, photocopying, recording or otherwise) without the
prior written authorisation of ISACA. Reproduction and use of all or portions of this publication
are permitted solely for academic, internal and non-commercial use and for
consulting/advisory engagements, and must include full attribution of the materials source.
No other right or permission is granted with respect to this work.
Provide Feedback: www.isaca.org/basic-concept-caselets
Participate in the ISACA Knowledge Center: www.isaca.org/knowledge-center
Follow ISACA on Twitter: https://twitter.com/ISACANews
Join ISACA on LinkedIn: ISACA (Official), http://linkd.in/ISACAOfficial
Like ISACA on Facebook: www.facebook.com/ISACAHQ
Acknowledgements
Author
Krishna Seeburn, Ph.D., CFE, CIA, CISSP, FBCS, LLM, PMP, Riesling Consulting Group,
Mauritius
Board of Directors
Tony Hayes, CGEIT, AFCHSE, CHE, FACS, FCPA, FIIA, Queensland Government, Australia,
International President
Allan Boardman, CISA, CISM, CGEIT, CRISC, ACA, CA (SA), CISSP, Morgan Stanley, UK, Vice
President
Juan Luis Carselle, CISA, CGEIT, CRISC, RadioShack Mexico, Mexico, Vice President
Ramses Gallego, CISM, CGEIT, CCSK, CISSP, SCPM, Six Sigma Black Belt, Dell, Spain, Vice
President
Theresa Grafenstine, CISA, CGEIT, CRISC, CGAP, CGMA, CIA, CPA, US House of
Representatives, USA, Vice President
Vittal Raj, CISA, CISM, CGEIT, CFE, CIA, CISSP, FCA, Kumar & Raj, India, Vice President
Jeff Spivey, CRISC, CPP, PSP, Security Risk Management Inc., USA, Vice President
Marc Vael, Ph.D., CISA, CISM, CGEIT, CRISC, CISSP, Valuendo, Belgium, Vice President
Gregory T. Grocholski, CISA, The Dow Chemical Co., USA, Past International President
Kenneth L. Vander Wal, CISA, CPA, Ernst & Young LLP (retired), USA, Past International
President
Christos K. Dimitriadis, Ph.D., CISA, CISM, CRISC, INTRALOT S.A., Greece, Director
Krysten McCabe, CISA, The Home Depot, USA, Director
Jo Stewart-Rattray, CISA, CISM, CGEIT, CRISC, CSEPS, BRM Holdich, Australia, Director
Credentialing and Career Management Board
Allan Boardman, CISA, CISM, CGEIT, CRISC, ACA, CA (SA), CISSP, Morgan Stanley, UK,
Chairman
Bernard Battistin, CISA, CMA, Office of the Auditor General of Canada, Canada
Richard Brisebois, CISA, CGA, Canada
Terry Chrisman, CGEIT, CRISC, GE Money, USA
Erik Friebolin, CISA, CISM, CRISC, CISSP, PCI-QSA, ITIL, USA
Frank Nielsen, CISA, CGEIT, CCSA, CIA, Nordea, Denmark
Hitoshi Ota, CISA, CISM, CGEIT, CRISC, CIA, Mizuho Corporate Bank, Japan
Carmen Ozores Fernandes, CISA, CRISC, Brazil
Steven E. Sizemore, CISA, CIA, CGAP, Texas Health and Human Services Commission, USA
Student Book
This caselet was developed to support the
Basic Foundational Concepts Student Book: Using COBIT 5,
www.isaca.org/basic-concepts-student-book
What is value
governance?
How does it
benefit an
enterprise?
How does it
benefit a CIO?
What is value
governance?
How does it
benefit an
enterprise?
How does it
benefit a CIO?
What is value
governance?
How does it
benefit an
enterprise?
How does it
benefit a CIO?
Agenda
Company Profile Bottler Company LLC
Background Information
Your Role
Your Tasks
Notes
Questions
10
Background What We Do
What We Do
Financials
Org. Structure
Operational
Competition
Business Goals
11
Background Financials
What We Do
Financials
Last year, its gross revenue was US $180 million dollars, with a profit
margin of slightly less than 2 percent, while it was expecting a 10 percent
profit margin.
Org. Structure
Operational
Competition
Business Goals
Bottler Company could charge more for bottling and canning and raise its
profit margin, but its competitive advantage would decrease and would
affect its general growth.
The cost of establishing new products is the main reason profit has still
been quite appreciable, but executive management has made the decision
to slow expansion.
Territorial growth was not a real consideration at the time, but addition of
new products is a main concern.
Reducing product development will be bad for the business.
12
What We Do
Financials
Org. Structure
Operational
Competition
CIO
IT Staff
Infrastructure
PhySec/
Facilities
IT Staff
Development
VP,
Administration
VP,
Business
COO
Business
Operations
Business
Units
Ad hoc IT
Contractors
HR
Legal
Compliance
CFO
Financial
Ops
Audit
Accounting
Business Goals
13
14
Background Operational
What We Do
Financials
Org. Structure
Operational
Competition
Business Goals
16
Background Operational
What We Do
Financials
Org. Structure
Operational
Competition
Business Goals
17
Background Operational
What We Do
Financials
Org. Structure
Operational
Competition
Business Goals
18
Background Competition
What We Do
Financials
Org. Structure
Operational
Competition
Business Goals
Financials
Org. Structure
Operational
Competition
Business Goals
20
The Problems
The existing systems were unable to handle requests such as decision making or
timelier financial and other important information.
Any customised reporting was developed from a multitude of sources and
compiled manually.
ERP gained recognition over the years. It became the topic of discussion as
alternatives were contemplated and the company tried to formulate a solution
that would meet the needs of the individual departments, be compatible
companywide and facilitate the integrated communication that was desperately
needed.
These issues were significant enough to warrant an overall re-engineering of
business practices, and the bottler decided to start researching viable options.
21
22
23
24
25
26
Your Role
Your position: CIO
Experience: Worked in the
IT arena for more than 10
years.
Training: Completed the
Bottler Company LLC
internal management
training programme within
three months of starting
your position, and you
plan to enroll in IT
management and financial
courses soon.
27
Your Tasks
1.
2.
3.
Design a business process for the enterprise, list the workings and challenges
of the enterprise, and understand its vision, mission and
challenges/objectives.
Identify the relationships amongst principles, processes and practices.
Establish the pain points signaling the need for better value management as
well as trigger events that would compel business leaders to begin building on
value.
28
29
Notes
Many enterprises choose to acquire an ERP system to serve as a common system
for their wide range of daily operations.
Various business benefits can be realised from ERP investments due to
operational performance improvements. For instance, ERP systems embed
industry best practice processes, which enterprises can leverage to achieve a
discontinuous improvement in performance.
However, many ERP investments fail to deliver on their promised benefits due to
deficient ERP investment appraisals caused by inflated expected benefits and
underestimated cost and risk.
30
Notes (cont.)
Therefore, improved governance of enterprise IT (GEIT) in general, and
governance of ERP system acquisitions in particular, are crucial for success. One
of GEITs key practices is the development, maintenance and utilisation of a
proper business case throughout an investments economic life cycle.
What are the key elements of an ERP investment business case, and which GEIT
best practices are relevant? Furthermore, do such practices resonate with
management and finance best practices, which are expected by executive
business leaders who control access to funds?
31
Discussion Questions
Some of the questions that should be asked include:
1. What issues is the CIO facing?
2. Why have these issues surfaced?
3. Using the key components of a business case, define how you would use them
to define the key areas of benefits, risk, appraisal and cost.
4. Using COBIT 5 as a guide, identify the core domains that you would use to
manage and drive your project and then map them to the real-life actions you
would need to get the job done.
32