Interdependencies between essential and important entities

See All indicators >

Interdependency indicator -

Download indicator (.xls)

Category: IMPACT
Description: Geographical distribution of services (e.g. cross border services potentially affected by an incident)

Number of Controls: 4 Cooperation Group

7 ISO IEC 27002

4 NIST Cybersecurity Framework

13 Cobit5

Mappings to: Cooperation Group (4) ISO IEC 27002 (7) NIST Cybersecurity Framework (4) Cobit5 (13)

Cobit5 Process Description	EXAMPLE OF IMPLEMENTATION
Manage Programmes and Projects Cobit5 Goal ID: IT-05 Cobit5 Process ID: BAI01 Domain: IT Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Percent of IT-enabled investments where benefit realisation is monitored through the full economic life cycle • Percent of IT services where expected benefits are realised • Percent of IT-enabled investments where claimed benefits are met or exceeded	Review IT-enabled programme documentation focusing on scope and benefits. Count the geographical locations mentioned in the programme as affected by the implementation.
Manage Suppliers Cobit5 Goal ID: IT-04 Cobit5 Process ID: APO10 Domain: IT Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Percent of critical business processes, IT services and IT-enabled business programmes covered by risk assessment • Number of significant IT-related incidents that were not identified in risk assessment • Percent of enterprise risk assessments including IT-related risk • Frequency of update of risk profile	Review the supplier catalogue and identify the locations of each supplier. Count the number of locations that the organisation receives services from (and is dependent on).
Manage Programmes and Projects Cobit5 Goal ID: IT-06 Cobit5 Process ID: BAI01 Domain: IT Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Percent of investment business cases with clearly defined and approved expected IT-related costs and benefits • Percent of IT services with clearly defined and approved operational costs and expected benefits • Satisfaction survey of key stakeholders regarding the level of transparency, understanding and accuracy of IT financial information	Review the investment business cases focusing on the location of the investment. Count the number of locations.
Ensure Governance Framework Setting and Maintenance Cobit5 Goal ID: IT-02 Cobit5 Process ID: EDM01 Domain: IT Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Cost of IT non-compliance, including settlements and fines, and the impact of reputational loss • Number of IT-related non-compliance issues reported to the board or causing public comment or embarrassment • Number of non-compliance issues relating to contractual agreements with IT service providers • Coverage of compliance assessments	Review the cases of non-compliance, including settlements and fines. Identify and count the geographical locations involved per incident.
Manage Problems Cobit5 Goal ID: IT-11 Cobit5 Process ID: DSS03 Domain: IT Goal Balanced Scorecard (BSC): Internal Sample Metrics: • Frequency of capability maturity and cost optimisation assessments • Trend of assessment results • Satisfaction levels of business and IT executives with IT-related costs and capabilities	Review the Problem register with a focus on locations affected by each problem. Count the number of locations affected by each type / category of problem based on classification scheme.
Manage Programmes and Projects Cobit5 Goal ID: E-13 Cobit5 Process ID: BAI01 Domain: Enterprise Goal Balanced Scorecard (BSC): Internal Sample Metrics: • Number of programmes on time and within budget • Percent of stakeholders satisfied with programme delivery • Level of awareness of business change induced by IT-enabled business initiatives	Review the changed implemented on programmes. Measure the number of locations affected by changes to programmes.
Manage Relationships Cobit5 Goal ID: E-11 Cobit5 Process ID: APO08 Domain: Enterprise Goal Balanced Scorecard (BSC): Internal Sample Metrics: • Frequency of business process capability maturity assessments • Trend of assessment results • Satisfaction levels of board and executives with business process capabilities	Review the business capability maturity assessments. Count the locations identified per business stakeholder.
Manage Operations Cobit5 Goal ID: E-10 Cobit5 Process ID: DSS01 Domain: Enterprise Goal Balanced Scorecard (BSC): Customer Sample Metrics: • Frequency of service delivery cost optimisation assessments • Trend of cost assessment vs. service level results • Satisfaction levels of board and executive management with service delivery costs	Review reported incidents focusing on the geographical distribution of the impact. Count the number of distinct locations affected per type of incident.
Monitor, Evaluate and Assess Compliance with External Requirement Cobit5 Goal ID: E-04 Cobit5 Process ID: MEA03 Domain: Enterprise Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Cost of regulatory non-compliance, including settlements and fines • Number of regulatory non-compliance issues causing public comment or negative publicity • Number of regulatory non-compliance issues relating to contractual agreements with business partners	Review all cases of regulatory and contractual non compliance. Count the geographical locations involeved.
Ensure Stakeholder Transparency Cobit5 Goal ID: E-05 Cobit5 Process ID: EDM05 Domain: Enterprise Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Percent of investment business cases with clearly defined and approved expected costs and benefits • Percent of products and services with defined and approved operational costs and expected benefits • Satisfaction survey of key stakeholders regarding the transparency, understanding and accuracy of enterprise financial information • Percent of service cost that can be allocated to users	Review the various business cases for the investments. Count the number of distinct geographical locations mentioned.
Manage Portfolio Cobit5 Goal ID: E-02 Cobit5 Process ID: APO05 Domain: Enterprise Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Percent of products and services that meet or exceed targets in revenues and/or market share • Ratio of products and services per life cycle phase • Percent of products and services that meet or exceed customer satisfaction targets • Percent of products and services that provide competitive advantage	Review the portfolio of products and services. Count the geografical locations where services are offered.
Manage Risk Cobit5 Goal ID: E-03 Cobit5 Process ID: APO12 Domain: Enterprise Goal Balanced Scorecard (BSC): Financial Sample Metrics: • Percent of critical business objectives and services covered by risk assessment • Ratio of significant incidents that were not identified in risk assessments vs. total incidents • Frequency of update of risk profile	Count the numbers of risks related to geografical location of the organisation and its clients.
Manage Continuity Cobit5 Goal ID: E-07 Cobit5 Process ID: DSS04 Domain: Enterprise Goal Balanced Scorecard (BSC): Customer Sample Metrics: • Number of customer service interruptions causing significant incidents • Business cost of incidents • Number of business processing hours lost due to unplanned service interruptions • Percent of complaints as a function of committed service availability targets	Review the business impact analysis and the relevant plans and count the number of geographical locations involved (including locations related to subsontrators).

This site uses cookies to offer you a better browsing experience.
Aside from essential cookies we also use tracking cookies for analytics.
Find out more on how we use cookies.

Accept all cookies Accept only essential cookies