governance & management - hkpc
TRANSCRIPT
GGoovveerrnnaannccee && MMaannaaggeemmeenntt
HKPC consultant can help review the IT Governance Framework of your organization. Make recommendations for improvement and help in implementation. Our consultants will make reference to international framework models such as COBIT, ISO 38500, ITIL/ISO 20000, CMMI, ISO 27001, ISO 9001, etc and propose a framework suitable for your organization. Suitability is one of our important philosophies. We believe that each organization has its own character. Best practices may be generally good, but needed customization to make them suitable for the unique character of your organization. Our consultant will also propose a maturity model and a roadmap for the implementation so that the improvement is in a progressive and continuous manner.
IITT GGoovveerrnnaannccee FFrraammeewwoorrkk RReevviieeww,, RReeccoommmmeennddaattiioonn && IImmpplleemmeennttaattiioonn
HKPC’s IT Audit service helps examine if proper controls are implemented to ensure the effectiveness, efficiency, security, compliance and reliability of your information resources to achieve your organization’s goals and objectives.
IITT AAuuddiitt
Performance measurement is an important management tool to assess if a function of an organization achieves the organization targets. Traditionally, IT is a very special function. Owing to its “technology” nature, managers (IT or non-IT) find it difficult to measure the performance of IT function. In fact, IT function’s performance is measurable and SHOULD be measured due to its increasingly important role in an organization. Measurement provides objective figures for comparison (benchmarking), performance evaluation, quantitative management and eventually a driving force for improvement. HKPC has very good experience in helping organizations establish metrics to measure performance of IT functions. Performance can be measured on project levels, unit levels, function levels as well as the overall IT function.
MMeettrriicc aanndd MMeeaassuurreemmeenntt
HKPC offers a variety of information security services ranging from Information Security Management System Establishment, Information Security Review / Audit and IT Security Assurance. Information Security Management Establishment (ISO 27001) Information Security is a management issue rather than a technical concern. It encompasses people, process and technology. An information security management system is the key to ensure and maintain information security of an organization. HKPC has very good experience to assist organizations to define, develop and implement information security management systems suitable for different types of organizations according to their culture, business and organization size. Independent Information Security Review / Audit HKPC provide very comprehensive independent information security review / audit services. Through the services, our experienced consultants will identify information security (both technical and non-technical aspects) weaknesses and inadequacies and provide suitable recommendations for your organization to improve security. These review / audit services can be on organization, system or project levels. IT Security Assurance We should plan security before we build systems. HKPC security assurance service starts risk assessment at the very beginning of a system development project (before the system design stage) and follows through the whole system development life cycle to ensure the built system is equipped with proper security features.
IInnffoorrmmaattiioonn SSeeccuurriittyy SSeerrvviicceess
Capability Maturity Model Integration (CMMI) is a process improvement model for system development and maintenance activities. Traditionally, system development project is subject to schedule delay, project overrun, uncontrolled costs, unpredictable quality and missing and mismatch user requirements. Implementation of CMMI model to your system development process can great improve the problems resulting in quality deliverables, manageable budget, on time delivery, etc. HKPC consultants are very experience in system development methodologies and CMMI implementation. Our consultants will help you define and implement a model suitable for your organization needs.
CCMMMMII IImmpplleemmeennttaattiioonn –– IImmpprroovviinngg yyoouurr SSyysstteemm DDeevveellooppmmeenntt PPrroocceessss
GGoovveerrnnaannccee && MMaannaaggeemmeenntt
Availability, continuity, resilience, reliability, security, cost effectiveness, good support and problem resolution time are main attributes of good IT service. After development phase, your IT service is really delivered to users. ITIL / ISO 20000 provide very good model and best practices for your organization to manage and improve your IT service. HKPC consultants are very experienced in the subject area and can help your define and implement a model suitable for your organization needs.
IITTIILL // IISSOO 2200000000 IImmpplleemmeennttaattiioonn –– IITT SSeerrvviiccee MMaannaaggeemmeenntt
Business Continuity Management is a unique but inseparable area of your business. HKPC consultant helps organizations establish business continuity management framework, develop, test and implement business continuity plans.
BBuussiinneessss CCoonnttiinnuuiittyy MMaannaaggeemmeenntt // PPllaannnniinngg
IT resources are important but expensive. To make IT a strong support, an enabler or even a driver to the business of your organization, it is very important to align your IT function with your business goals. HKPC can help your IT function identify the business goals, formulate short, medium and long term strategies as well as the detailed roadmap to achieve your business goals and fulfill your business needs. The output of the process will be your targeted architecture in application, data, technology and organization that can meet your business needs, and the roadmap (in terms of a number of IT projects) to achieve the targeted architecture.
FFoorrmmuullaattiinngg IITT SSttrraatteeggiieess aanndd OOvveerraallll IITT
For each IT project (no matter it is an application development or infrastructure building one), there are various implementation alternatives in terms of business operation arrangement and technology architecture. HKPC consultant helps you determine the most appropriate alternative and define the detailed and exact requirements of a project. This process is a key step to ensure the “fit for use” of the project deliverables; maximize return on investment; and allow accurate estimations (cost, resources, durations, etc) to avoid project overrun
FFeeaassiibbiilliittyy SSttuuddyy,, RReeqquuiirreemmeenntt DDeeffiinniittiioonn aanndd SSppeecciiffiiccaattiioonn
For some IT projects involving mapping the business operation to IT functions, it is advisable to streamline the business operation before computerization. HKPC consultant can help re-process business operation to enjoy the maximum of IT.
BBuussiinneessss PPrroocceessss RRee--eennggiinneeeerriinngg
If you are in shortage of internal IT resources, you may need to outsource some of your IT projects to external service providers. In fact, outsourcing can offload your internal resources but not your responsibilities to ensure the quality, cost and schedule of the project. Outsourcing is never an easy task. It involves tender specification preparation, vendor evaluation, contract arrangement and, project and quality management. (a total new knowledge to most IT people) HKPC’s expertise can help you prepare detailed and exact tender specification, define an objective and effective process to evaluation and select the most appropriate and capable service provider. HKPC can also provide project and quality management services, which are described in the following section.
OOuuttssoouurrcciinngg MMaannaaggeemmeenntt
GGoovveerrnnaannccee && MMaannaaggeemmeenntt
EEnnqquuiirriieess:: MMrr.. PPaattrriicckk LLii MMss.. JJeennnniiffeerr NNgg TTeell:: ((885522)) 22778888 55886655 TTeell:: ((885522)) 22778888 55885511 EEmmaaiill:: ppllii@@hhkkppcc..oorrgg EEmmaaiill:: jjeennnniiffeerr@@hhkkppcc..oorrgg
IITTIIDD,, HHKKPPCC BBuuiillddiinngg,, 7788 TTaatt CChheeee AAvveennuuee,, KKoowwlloooonn,, HHoonngg KKoonngg
HKPC organizes a variety of public courses and in-company training in various areas of IT Governance &
Management including:
Fundamental Training in Information Security for IT Practitioners Security Awareness Training Information Security Management (ISO 27001, Risk Assessment, etc) IT Security (Network and System Security; Cryptography; Database Security; Web Application Security; Secure Coding
Practices, Computer Forensic, etc) Business Continuity Planning IT Governance IT vs Business Alignment Software Engineering (Software Development Methodology, Software Testing, IT Project Management, etc) IT Outsourcing Management IT Audit and Control
********************************************************************************************************************************************************************************************************************************************************** IIff yyoouurr oorrggaanniizzaattiioonn hhaass mmaannyy eemmppllooyyeeeess wwiitthh ssiimmiillaarr ttrraaiinniinngg nneeeeddss,, ccoonnssiiddeerr oonn--ssiittee ttrraaiinniinngg aatt yyoouurr ffaacciilliittiieess..
OOnn--ssiittee ttrraaiinniinngg eemmppoowweerrss yyoouu wwiitthh cchhooiicceess aanndd fflleexxiibbiilliittyy,, aanndd aalllloowwss yyoouu ttoo ddeetteerrmmiinnee wwhheenn,, wwhheerree,, aanndd hhooww tthhee ttrraaiinniinngg nneeeeddss ooff yyoouurr oorrggaanniizzaattiioonnss aarree ffuullffiilllleedd..
IInn aaddddiittiioonn,, oonn--ssiittee ttrraaiinniinngg ooffffeerrss yyoouu ssiiggnniiffiiccaanntt ssaavviinnggss.. PPlleeaassee ccoonnttaacctt uuss ffoorr iinnffoorrmmaattiioonn aabboouutt oonn--ssiittee ttrraaiinniinngg
An IT project (especially an application development project) involves different parties (e.g, business users, internal IT, external service providers such as infrastructure providers, application development team, etc) of different backgrounds. These parties usually have different interest and concerns over the project and hence held different opinions, priorities and perspectives on project matters. However, to make an IT project success, we have to make all the parties involved collaborate smoothly and seamlessly. This is never an easy task. HKPC’s experienced consultants make use various project management and quality assurance methodology and techniques to make all project activities under control and hence ensure the project quality and avoid project overrun.
PPrroojjeecctt MMaannaaggeemmeenntt aanndd PPrroojjeecctt QQuuaalliittyy AAssssuurraannccee SSeerrvviicceess
User Acceptance Test (UAT) is the last and the most important step to validate if the delivered system fulfills your business requirements. A poor UAT is usually a fatal mistake in a development project. However, many users do not have experience to conduct a large scale testing and have no idea on how to ensure most of the business scenarios are covered in the UAT. HKPC consultant can guide business users going through all necessary steps to test a delivered system from users’ perspectives and hence reduce the risk of implementation failure to a minimal.
UUsseerr AAcccceeppttaannccee TTeesstt FFaacciilliittaattiioonn SSeerrvviicceess
We should plan security before we build systems. HKPC security assurance service starts risk assessment at the very beginning of a system development project (before the system design stage) and follows through the whole system development life cycle to ensure the built system is equipped with proper security features.
IITT SSeeccuurriittyy AAssssuurraannccee SSeerrvviiccee