Empowering IT Governance & Risk Management
LEVEL: BEGINNER HRDF: CLAIMABLE
Ten (10) CPD Hours approved by MBOT
TRAINERS:
Ts. Dr Hafizan Bt Mat Som & Ts Dr Savita K. Sugathan
2 - 3 DECEMBER 2024
CAPE
Level 8, Permata Sapura, Kuala Lumpur City Centre, 50088 Kuala Lumpur
9.00AM - 5.00PM
RM 2,000 FOR PROFESSIONALS
10% Discount for Early Bird (until 2 November 2024) / Group / Students
CONTENT SUMMARY
INTRODUCTION
As organizations increasingly rely on information technology to conduct business, the need for effective governance of IT resources is paramount. This course addresses the gap between IT operations and strategic business objectives, offering a bridge through education on frameworks and risk management practices. The purpose of this course is to provide attendees with a comprehensive overview of IT governance principles, frameworks, and risk management techniques. Participants will learn how to integrate governance into the fabric of their organization to support strategic objectives and manage risks effectively.
Participants can expect a blend of theoretical learning and practical, hands-on activities. The course is structured to encourage interaction, with opportunities to engage in case studies, role-playing, and group discussions. Attendees will gain insights into implementing governance frameworks, developing risk mitigation strategies, and setting up continuous monitoring systems. By the end of the two days, participants will be better equipped to articulate the value of IT governance to stakeholders, implement governance best practices, and contribute to a culture of risk awareness within their organizations. This course is an essential steppingstone for IT professionals aiming to spearhead governance initiatives and elevate their careers in the field of IT governance and risk management.
DAY 1: IT Governance Fundamentals
Module 1: Introduction to IT Governance
- Definition and importance of IT Governance
- Alignment of IT with strategic business goals
- Overview of IT Governance frameworks (e.g., COBIT, ITIL, ISO/IEC 38500)
Module 2: IT Governance Frameworks and Standards
- Detailed exploration of COBIT
- Overview of ITIL and its role in service management
- ISO/IEC 38500 and its principles for corporate governance of IT
- Hands-on Activity (1 Hour)
- Case study analysis: Participants review a case study and identify governance issues.
- Tools: Whiteboard for brainstorming, case study handouts
Module 3: IT Governance Implementation
- Steps for implementing an IT Governance framework.
- Roles and responsibilities in IT Governance
- Setting up an IT Governance committee
- Hands-on Activity (1 Hour)
- Role-play exercise: Participants simulate a meeting of an IT Governance committee.
- Tools: Role cards, meeting agenda template
Module 4: Performance Measurement
- Key performance indicators (KPIs) for IT Governance
- IT Balanced Scorecard approach
- Hands-on Activity (1 Hour)
- KPI development workshop: Participants develop KPIs for a hypothetical organization.
- Tools: KPI template, example KPIs
DAY 2 : Risk Management in IT
Module 5: Introduction to IT Risk Management
- Definition and importance of IT Risk Management
- Risk management life cycle
Module 6: IT Risk Identification and Assessment
- Qualitative and quantitative risk assessment methods
- Risk registers and risk matrices
- Hands-on Activity (1 Hour)
- Risk assessment exercise: Participants perform a risk assessment using a provided scenario.
- Tools: Risk matrix template, risk scenario descriptions
Module 7: IT Risk Mitigation Strategies
- Risk response options: Avoid, Mitigate, Transfer, Accept
- Developing risk mitigation plans
- Hands-on Activity (1 Hour)
- Risk mitigation workshop: Participants create a risk mitigation plan for a case study.
- Tools: Risk mitigation plan template, case study documents
Module 8: Monitoring and Reporting on IT Risk
- Continuous monitoring strategies
- Reporting mechanisms and dashboards
- Hands-on Activity (1 Hour)
- Dashboard design activity: Participants design a risk dashboard for reporting purposes.
- Tools: Dashboard design template, example dashboards
Course Wrap-Up and Q&A
- Recap of key takeaways from the course
- Open Q&A session
- Feedback collection
OBJECTIVES
Upon completion of this course, participants will be able to:
- The key concepts and importance of IT governance in achieving strategic business goals.
- The structures and frameworks (such as COBIT, ITIL, and ISO/IEC 38500) that support effective IT governance.
- The methodologies to identify, assess, and manage IT risks.
- The development of KPIs and scorecards for measuring IT governance performance.
- The hands-on application of tools and techniques in real-world governance and risk management scenarios.
WHO SHOULD ATTEND?
- Anyone interested in basic IT Governance and Risk Management
OUR TRAINERS
1. Ts. Dr Hafizan Bt Mat Som (UTP)
Ts Dr. Hafizan Mat Som is a Senior Lecturer in the Department of Computer and Information Sciences at Universiti Teknologi Petronas (UTP) and a member of the Positive Computing Research Centre within UTP's Institute of Emerging Digital Technology. With over 20 years of experience in teaching and training in Digital Technology, IT/IS Governance, and Business Strategic Planning, Ts Dr. Hafizan is an accomplished professional in her field. She earned her PhD from Liverpool John Moores University, UK, specializing in technology-enhanced learning. She holds active membership as a Professional Technologist (Ts) awarded by the Malaysia Board of Technologies (MBOT) and is a member of the Association of Information Systems (AIS), Malaysia Chapter. Ts Dr. Hafizan brings extensive leadership experience, having previously held a top management position at a university in Pahang and served as the executive director of a Technical Training College. She is currently the Cluster Head for the Technology Section under the Pahang Women Policies and Blueprint 2022-2026. Ts Dr. Hafizan has been actively involved in delivering training to a diverse range of participants, including school children, university students, graduates, corporate employees, and the public. Her professional interests focus on business strategic planning, business digitalization, digital governance, digital learning technologies, and the application of extended reality technology to enhance quality of life.
2. Ts Dr Savita K. Sugathan (UTP)
Ts. Dr. Savita K. Sugathan is an academic staff in the Department of Computer and Information Sciences, Universiti Teknologi PETRONAS (UTP), Malaysia since 2006. She received her PhD in Information Technology from UTP in 2018 and her MSc in Technology Management from University of New Wales, Sydney, Australia in 2006. She is accredited by Malaysia Board of Technologies (MBOT) as Professional Technologist (Ts.) in Information and Computing Technology. In 2019, Dr. Savita is awarded with Certified Professional in Requirements Engineering and Licensed Practitioner in Neuro-Linguistic Programming. She is an active member of Association of Information Systems (AIS) and a former member of Information System Audit and Control Association (ISACA). In UTP, she is a research member of Positive Computing. Her research interests are on the study of Awareness, Adoption, Acceptance & Use of Technology towards Sustainable Ecology, Well-Being and Education. Dr. Savita has published more than 50 journals and conference papers as well as has secured national & international grants amounted to RM300,000.
REGISTRATION FEES
PROFESSIONALS
MYR2,000*
*fee quoted does not include SST, HRDF service fee, GST/VAT or withholding tax (if applicable).
EARLY BIRD/ GROUP/ STUDENT
MYR1,800*
*fee quoted does not include SST, HRDF service fee, GST/VAT or withholding tax (if applicable).
OUR LOCATION
Centre for Advanced & Professional Education (CAPE)
Level 8, Permata Sapura, Kuala Lumpur City Centre, 50088 Kuala Lumpur​
CALL US
+605 - 368 7558 /
+605 - 368 8485
DROP US AN EMAIL
cape@utp.edu.my