IS / ICT processes and their mapping to the standards and frameworks in the area of ​​IS / ICT
| Thesis title: | Procesy IS/ICT a jejich mapování ke standardům v oblasti IS/ICT |
|---|---|
| Author: | Dvořák, Jan |
| Thesis type: | Diplomová práce |
| Supervisor: | Chlapek, Dušan |
| Opponents: | Bruckner, Tomáš |
| Thesis language: | Česky |
| Abstract: | Cílem této práce je vymezení problematiky auditu v oblasti IS/ICT, vytvoření přehledu nejdůležitějších standardů a nejlepších praktik v oblasti IS/ICT - využitelných pro audit IS a vzájemné mapování vybraných standardů na zvolený referenční standard ICT a v návaznosti na tom návrh postupu mapování IT procesů na více standardů v oblasti IS/ICT. Nejprve je definován pojem audit a popsána problematika auditu a vztah auditu IS/ICT spolu s auditem finančním. Dále následuje popis a přiblížení jednotlivých metodik, které jsem použil ve své práci. Na kapitolu popisu metodik navazuje kapitola ve které jsou popsány výsledky mapování. Samotné mapování je v samostatném Excel souboru a je součástí této práce. V další kapitole je poté mnou vytvořená procedura pro mapování firemních procesů na jednotlivé metodiky a standardy používané pro řízení a audit IS/ICT. |
| Keywords: | best practice; Val IT; audit; mapování; ISO 20000; Risk IT; standard; metodika; COBIT; proces; ITIL |
| Thesis title: | IS / ICT processes and their mapping to the standards and frameworks in the area of IS / ICT |
|---|---|
| Author: | Dvořák, Jan |
| Thesis type: | Diploma thesis |
| Supervisor: | Chlapek, Dušan |
| Opponents: | Bruckner, Tomáš |
| Thesis language: | Česky |
| Abstract: | The aim of this thesis is to define the audit issues regarding IS/ICT sector, creating a summary of standards, frameworks and best practices in IS/ICT - usable for IS auditing and mutual mapping of selected standards to the chosen reference framwork of ICT and following related goal is to make a procedure for the mapping of IT processes on standards in the field of IS/ICT. The aim of this thesis is description and mapping of the most important methodologies, standards and best practices related to the management and audit of IS/ICT and following related goal is building a procedure that allows the company to assess readiness for the certification of any of the selected standards, implement an alternative methodology for IT management or audit IS/ICT. First, the notion of audit is defined and discussed, followed by the discussion of the issue of IT audit, together with the financial audit. This is followed by a description of the different methodologies and approaches, which I used in my work. The chapter continues the description of methodology section that describes the mapping results. The actual mapping is in a separate Excel file and is part of this thesis. In the next chapter there is a procedure for mapping of business processes to different methodologies and standards used for management and audit of IS / ICT, which was created by myself. |
| Keywords: | process; mapping; Risk IT; Val IT; audit; ISO 20000; COBIT; ITIL; standard; best practice; framework |
Information about study
| Study programme: | Aplikovaná informatika/Informační systémy a technologie |
|---|---|
| Type of study programme: | Magisterský studijní program |
| Assigned degree: | Ing. |
| Institutions assigning academic degree: | Vysoká škola ekonomická v Praze |
| Faculty: | Faculty of Informatics and Statistics |
| Department: | Department of Information Technologies |
Information on submission and defense
| Date of assignment: | 22. 11. 2011 |
|---|---|
| Date of submission: | 27. 6. 2012 |
| Date of defense: | 27. 8. 2012 |
| Identifier in the InSIS system: | https://insis.vse.cz/zp/34699/podrobnosti |