企业IT治理师CGEIT课程

课程介绍

美国国际信息系统审计及控制协会(ISACA)发布的针对CIOsIT VPs, (Sr.) IT Directors, CxO suite advisors, 或相关兴趣的人士的一类职业界定。CGEITCISA/CISM一样,由美国国防部和相关标准组织认定的职业认证,可以持证上岗。CGEIT基于COBIT,但更注重实务。前者是一个执业认证是,真正的IT治理师,而后者是一个框架性参考。

培训对象

IT总监、高级IT经理、IT审计师、信息安全管理人员、IT质量专家、企业中高层管理者、风险管理人员等

培训收益

CGEIT是针对IT高级管理层的认证,学习CGEIT可以全面学习企业/IT治理、IT与业务战略管理、IT收益与价值、IT风险与控制,及IT资金、资源统筹与优化。全书一共78个知识点全面指导IT高级管理层制定战略并执行议程!

认证过程

参加ISACA每年举办的CISACISMCGEITCRISC统一考试,笔试,4小时。一共150题,考试遵从CISA/CISM/CRISC一样的通过规则。

知识概要

l  第一部分:IT治理框架

l  第二部分:IT战略管理

l  第三部分:收益实现

l  第四部分:风险优化

l  第五部分:资源优化

78个知识点

  1. Effecting Organizational, Process and Cultural Change
    有效的组织、流程和文化变革
  2. Components of an Enterprise Governance Framework
    企业治理框架的组件
  3. Directing, Managing and Reporting on IT Governance Activities
    引导、管理和汇报IT治理活动
  4. Business Drivers for IT Industry Practices, Standards and Frameworks
    IT
    业内(最佳)实践、标准和框架的业务驱动
  5. Establishing Accountability
    确立职责
  6. COBIT, Val IT, Risk IT and Related Products and Frameworks
    COBIT, Val IT, Risk IT
    以及相关产品和框架
  7. Scope, Objective and Benefits of IT Practices, Standards and Frameworks
    IT(
    最佳)实践、标准和框架的范围、目标和收益
  8. Scope, Objective and Benefits of Continuous Process Improvement
    持续流程改进的范围、目标和收益
  9. IT Governance Implementation Practices
    IT
    治理实施实践
  10. Relating and Complementing IT Practices, Standards and Frameworks
    IT(
    最佳)实践、标准和框架之间的相通和互补
  11. Selecting, Customizing and Integrating Relevant IT Practices, Standards and Frameworks
    选择、裁减和整合相关的IT(最佳)实践、标准和框架
  12. Aligning the Application of IT Practices, Standards and Frameworks to the Enterprise’s Needs and Culture
    综合使用IT(最佳)实践、标准和框架来满足企业的需求和文化
  13. Assurance Methodologies and Techniques
    保障方法和技术
  14. Marketing and Communication Methods and Techniques
    市场和沟通方法和技术
  15. Setting the Direction for IT Governance Across the Enterprise
    跨企业设定IT治理的方向
  16. Impact of Culture Changes and Choice of Timing and Manner of Implementation Using Scenarios
    文化变革的影响、时机的选择、(不同)场景实施的方式
  17. Enterprise’s Mission, Objectives, Culture, Economic and Business Environment, Key Business Processes, and How they Are Supported by IT
    企业的使命、目标、文化、经济和业务环境,关键业务流程以及这些流程如何被IT所支持
  18. How an Enterprise’s Structure, Operational Frameworks, Systems, Resources, Internal and External Stakeholder Relationships, and Culture Can Impact the Enterprise’s Ability to Achieve Sufficient Strategic Alignment
    企业结构、运营框架、体系、资源、内外部利益相关者关系以及文化如何影响企业获得战略整合的能力
  19. The Strategic Planning Process and Techniques
    战略规划的流程和技术
  20. Enterprise Architecture Components, Principles and Frameworks, and Their Implementation
    企业架构的组件、原理、框架和它的实施
  21. How to Map Strategy to Specific, Enabling Business Processes and IT Dashboard/Balanced Scorecard Principles to Monitor Key Goal and Performance Metrics
    如何映射战略到特定的支撑业务流程
    IT
    仪表盘与平衡计分卡原理来监控关键目标和绩效指标
  22. Benchmarking Planned vs. Actual Strategic Performance
    标杆管理计划的/实际的战略绩效
  23. Scope, Objectives and Benefits of IT Investment Programs
    IT
    投资管理的范围、目标和收益
  24. Portfolio, Program and Project Management Techniques
    项目组合、项目群、项目管理技术
  25. Linking Enterprise Business Strategy With Related Best Practices and Selling the Value Proposition to Key Stakeholders
    将企业业务战略链接到相关的最佳实践上并向关键利益相关者推销其价值定位
  26. How Procedures, Monitoring and Updating of the IT Strategy Are Impacted and Implemented by Changes in Business Strategy
    IT
    战略的流程、监控和更新如何被业务战略的变更所影响
  27. Culture and Future Technology Direction to Support the Business by Creation of Technological Infrastructure Plan and Architecture Board That Sets and Manages What Technology Can Deliver to Achieve Business Objectives
    技术架构规划通过文化和技术路线来支持业务,取得业务目标
  28. Value Governance Practices
    价值治理实践
  29. IT Investment Management Practices and Processes
    IT
    投资管理实践和流程
  30. Business Case Development and Monitoring, Portfolio/Program/Project Management Practices
    商业论证开发、监控,项目组合/项目群/项目管理实践
  31. Managing and Reporting the Status of IT Investments
    管理和汇报IT投资的状态
  32. IT Investment Processes, Funding Models and Investment Life Cycle Management Including Benefits Management
    IT
    投资管理流程,拨资模型,投资生命周期,包括收益管理
  33. Cost Optimization
    成本优化
  34. Solution Delivery Processes and Practices (SDLC)
    解决方案交付流程和实践 (系统开发生命周期)
  35. Service Delivery Practices and Processes
    服务交付实践和流程
  36. Enterprise, Information and IT Architecture Techniques and Frameworks
    企业、信息和IT架构技术和框架
  37. Context of Risk Management at the Strategic, Portfolio, Program, Project and Operations Level
    风险管理的环境(战略/项目组合/项目群/项目/运营级别)
  38. Risk Management Frameworks and Standards
    风险管理框架和标准
  39. The Enterprise’s Business Objectives
    企业的业务目标
  40. The Enterprise’s Risk Management Framework (incl. Risk Classification Model Used to Support Risk Identification and Assessment)
    企业风险管理框架 (包括风险分类模型来支持风险识别和评估)
  41. The Enterprise’s External Environment
    企业的外部环境
  42. The Enterprise’s Internal Environment
    企业的内部环境
  43. How the Enterprise Defines and Executes Business Strategies to Achieve IT’s Goals and Objectives
    企业如何定义和执行业务战略来满足IT目标
  44. How to Map Business Processes Down to IT Processes to Understand Dependences and Root Cause
    如何映射业务流程到IT流程来理解依赖关系和根本原因
  45. The Enterprise’s Risk Appetite
    企业的风险偏好
  46. The Enterprise’s IT Resources
    企业的IT资源
  47. The Threats, Vulnerabilities and Opportunities Inherent in the Enterprise’s Use of IT
    企业在IT使用中的威胁、脆弱性和机会
  48. The Types of Business Risks, Exposures and Threats That Can Be Addressed Using IT Resources
    业务风险的类型和表现形式、IT资源对应的威胁类型
  49. Quantitative and Qualitative Methods to Determine Sensitivity, Criticality and Maturity of IT-related Contributions to Business Success
    使用定量和定性的方法来检测IT相关的敏感性、关键度和成熟度对业务成功的贡献
  50. Quantitative and Qualitative Methods to Assess IT Risks
    评估IT风险的定量和定性方法
  51. Methods to Discover More Rare, but High-Impact Risk Types, Such as Process Analysis Techniques
    使用诸如流程分析技术来发现低概率但高度危险的风险类型
  52. Risk Mitigation Strategies in Relation to the Use of IT in the Enterprise
    企业中IT的风险规避策略
  53. Risk Management Techniques That Can Be Applied to Affect Enterprise Risk Management, particularly as They Relate to IT-related Activities
    可以应用到企业风险管理(特别是IT相关的活动)中的风险管理技术
  54. Methods to Effectively Manage and Report the Status of Identified Risks
    有效管理和汇报风险状态的方法
  55. Corporate Business and IT Resources
    公司业务和IT资源
  56. An Enterprise’s Business and IT Resources and Acquisition Processes
    企业的业务和IT资源以及获得的流程
  57. The Skill and Technology Mixes Required to Meet the Enterprise’s Business Objectives
    满足企业业务目标所需要的技能和技术
  58. Human Resource Management Processes and Optimization Practices Needed to Meet Established Technical and Business Proficiency, Competency, and Capability Requirements
    人力资源管理流程和优化实践来满足建立技术和业务的熟练度,胜任度以及人力需求
  59. Outsourcing and Offshoring Processes That May be Employed to Meet Investment Program and Operation and Service Level Agreements
    外包和离岸流程来满足投资活动、运营和服务级别协议
  60. The Strengths and Weaknesses Inherent Within the Enterprise’s Human and Technical Business and IT Resources and How to identify Trainers With the Requisite Skill Sets to Maintain Work Competency and Proficiency
    企业人员、技术业务和IT资源的强弱项
    如何识别所需技能的培训师来保持工作胜任度和熟练度
  61. Enterprise Business Strategies
    企业业务战略
  62. Business and IT Resource Planning and Strategies and Tactical Planning Methods, Techniques and Processes
    业务和IT资源规划,战略和战术规划方法、技术和流程
  63. Quantitative and Qualitative Methods Used to Determine and Evaluate Business and IT Resource Utilization and Availability of These Resources to Effectively Meet Enterprise Objectives
    使用定量和定性的方法来检测和评估业务/IT资源利用率和可用性来有效满足企业目标
  64. Methods for Monitoring and Reporting on Business and IT Resource Performance
    监控和汇报业务/IT资源绩效的方法
  65. Enterprise’s Business Objectives and Performance Measurement
    企业业务目标与绩效考核
  66. Strategy Mapping and Balanced Scorecard Principles
    战略地图和平衡计分卡原理
  67. Scope, Objectives and Benefits of Commonly Used IT Maturity Models, Incl. Their Maturity Attributes
    通用IT成熟度模型的范围、目标和收益,包括成熟度属性
  68. Data Collection Techniques for Performance Measurement
    绩效考核的数据收集技术
  69. Continuous Improvement Methodologies
    持续改进方法论
  70. IT Governance Implementation Practices
    IT
    治理实施实践
  71. Characteristics of, and Selection Criteria for, Measures and Metrics
    度量和指标的特性、选择标准
  72. Outcome Measures and Performance Drivers
    结果度量和绩效驱动
  73. Accepted Practices in Performance Measurement and Effective Industry Benchmarking Techniques
    公认的绩效考核实践和有效的行业标杆技术
  74. Tools and Techniques That Facilitate Measurements, Good Communications and Organizational Change
    工具和技术和帮助度量、沟通和组织变更
  75. Automated Monitoring Tools and Techniques
    自动化的监控工具和技术
  76. Root Cause Analysis Techniques
    根本原因分析技术
  77. Cost-Benefit Analysis Techniques
    成本-效益分析技术
  78. Evaluating and Monitoring IT Performance and Value Governance
    评估和监控IT绩效与价值治理