Again, I was reviewing the article that was written a while ago, because right here I will leave now. I also want to be coherent and continue in some way (not the established with a roadmap proposal) that was presented in article, continuing the construction of the processes of COBIT-Type Government 5.

As a result we had to build the processes:

  • EDM01 Ensure the establishment and maintenance of the frame of Government
  • EDM02 Ensure the delivery of benefits
  • EDM04 Ensure the optimization of resources
  • BAI02 Manage the definition of requirements
  • BAI04 Manage availability and capacity
  • APO04 Manage innovation
  • APO08 Manage relationships
  • APO07 Manage human resources
  • BAI07 Manage the acceptance of change and transition

The roadmap of construction of processes was this:

Now I want to put as an example as a model that it is a stage in the process design of the framework of work BPM, process BAI07 Manage the acceptance of change and transition

This time it is important that the technology companies that develop software this is one of the key processes because it is the process that will support the quality of the systems development; Otherwise it is difficult to have a good development process if you do not have a process with good maturity level planning projects. With regard to ITIL, if a “match” is attempted, ITIL has a project management process. However it is very poor (personal opinion) and we hope that in the next version of ITIL there is an improvement in this aspect and taking into account the agile methodologies that are combined with operations. The lag of this framework in relation to others is already evident.

This process here does not make much match with the process of change management that ITIL proposes for example, because in that framework that process is more focused on maintaining an operation and the quality of an already operating system, than in something new. The latter is an opinion and is open to any kind of related discussion.


The process I propose as an example is as follows:

As I wrote in the blog similar to this, is it very complicated? Surely if with this rigor. It’s just a proposal and an example of thousands possible. Surely software developers will have a lot to say about this process.

However a previous version of this process (I mean a version with less maturity at the level of the whole system of processes of the area or of business) could be something like this:

In this second case this process takes into account risk management; But by being immersed here in the construction of solutions, there is a risk that risks will be placed at the level of the solution and not for the business. It is the same case with DRP activity.

This latest model is not bad, simply (ignoring the other activities) is a process that is part of a system with a lesser degree of maturity.

In both cases, please increase the size of the fonts or the page of your browser to see it better given its resulting complexity, in at least 150% to appreciate well the changes, process activities.


If it were consistent with the roadmap where it could be appreciated that this process is now at approximately 25%, possibly with these inclusions of these elements and is 90% in the evaluation of COBIT type PAM. Again, it will depend on other factors as well. However taking such a big jump is not advisable.

Also, it was assumed that governance processes that deliver their outputs to this process as if they already existed before such as type APOXX processes existing. I am aware in Government implementations if I find a case as well, should reconsider the roadmap or even in a next phase of implementation of COBIT 5 prioritize these processes of management / Government.

It was assumed that this process is for companies that build business or institutional software. For other companies process could be entirely different.

The thoroughness in the construction in reengineering and / or redesign of a process which already exists as it was assumed this desired level and with that level of maturity cost quite some time both in their construction as its implementation and also in its assimilation by all the interested. Another thing would be to try the automation of this process which is a later stage within the BPM framework if it is possible or not; i.e. If it delivers true value to the company that makes software or not.

Finally Recalling section “What processes could do part of an implementation?” of article , section of processes for optimization of assets, resources, and capabilities of the I.T., we have:

  • S: EDM01 Ensure the establishment and maintenance of the frame of Government
  • S: EDM02 Ensure the delivery of benefits
  • P: EDM04 Ensure the optimization of resources
  • P: APO01 Manage the IT management framework
  • S: APO02 Manage strategy
  • P: APO03 Manage the enterprise architecture
  • P: APO04 Manage innovation
  • S: APO05 Manage the portfolio
  • S: APO06 Manage budget and costs
  • P: APO07 Manage human resources
  • S: APO08 Manage relationships
  • S: APO09 Manage service agreements
  • S: APO10 Manage providers
  • S: APO11 Manage quality
  • S: BAI01 Manage programs and projects
  • S: BAI02 Manage the definition of requirements
  • S: BAI03 Manage the identification and construction of solutions
  • P: BAI04 Manage availability and capacity
  • S: BAI05 Managing organizational changes
  • S: BAI06 Manage changes
  • S: BAI08 Managing knowledge
  • P: BAI09 Manage assets
  • P: BAI10 Manage the configuration
  • P: DSS01 Manage operations
  • P: DSS03 Manage problems
  • S: DSS04 Managing continuity
  • S: DSS05 Managed security services
  • S: DSS06 Manage the controls of the business process
  • P: MEA01 Monitor, assess and evaluate performance and compliance

It was chosen to model the process BAI07. Notice how they appear as “S” processes APO01, APO03, APO10, APO11, BAI01, BAI03, BAI04 and BAI05 in this first phase of implementation of I.T. governance processes. For the next phase of implementation of I.T. Government, these processes should be considered on a priority basis and that key activities (practices as called by the framework COBIT 5), used as inputs / outputs of this process. Depending on how he says that article, depending on the priority of business goals “Optimization of assets, resources, and capabilities of the I.T.” or “operational productivity and employees” are prioritized these other processes and build and It will also depend on the degree of maturity or existence having at the time.

Hypothetical exercise both of the preceding article like this, watch as we will in the implementation of COBIT, for a company wishing to align their business strategy and the area of I.T.

If you want to how to implement I.T. governance processes, contact me here.