CobiT definition:
A competent workforce is acquired and maintained for the creation and delivery of IT services to the business. This is achieved by following defined and agreed-upon practices supporting recruiting, training, evaluating performance, promoting and terminating. This process is critical, as people are important assets, and governance and the internal control environment are heavily dependent on the motivation and competence of personnel.
Control over the IT process of
Manage IT human resources
that satisfies the business requirement for IT of
acquiring competent and motivated people to create and deliver IT services
by focusing on
hiring and training personnel, motivating through clear career paths, assigning roles that correspond with skills, establishing a defined review process, creating position descriptions and ensuring awareness of dependency on individuals
is achieved by
- Reviewing staff performance
- Hiring and training IT personnel to support IT tactical plans
- Mitigating the risk of overdependence on key resources
and is measured by
- Level of stakeholders’ satisfaction with IT personnel expertise and skills
- IT personnel turnover
- Percent of IT personnel certified according to job needs
Control objectives:
PO7 Manage IT Human Resources
PO7.1 Personnel Recruitment and Retention
PO7.2 Personnel Competencies
PO7.3 Staffing of Roles
PO7.4 Personnel Training
PO7.5 Dependence Upon Individuals
PO7.6 Personnel Clearance Procedures
PO7.7 Employee Job Performance Evaluation
PO7.8 Job Change and Termination
Check out the links for details on the control objectives.
No related posts.