contact@fourth-medium.com

 

 

 

 

Lean Governance & Compliance Consulting 

 

 

Lean Governance & Compliance means balancing time-to-value considerations with Enterprise Risk Management (ERM).  Control objectives structured by common risk management frameworks like COBIT must not be established in absence of an appreciation of the core value-streams of IT organizations.  Cycle time and throughput when drastically impacted by wasteful controls can yield risks to the business unto themselves.  Therefore, design of control activities that realize such control objectives must be established with a deep appreciation of current technology constraints and industry best practices.  Lean value-stream analysis can assist with the reasoning required to strike a balance between agility and risk mitigation.  

 

From establishing lean pull-systems for portfolio governance to effective configuration auditing, segregation of duties and release management, a broad holistic understanding of process frameworks encompassing TOGAF, Agile, Lean, Unified Process, SWEBOK, PMBOK, and ITIL are required to go beyond the "what" of the COBIT framework.  Finally, to ensure that control realization is pragmatic, workflow automation solutions and Application Lifecycle Management are essential. 

 

The following are our key capabilities related to the various COBIT domains:  

  • Lean COBIT,
  • Lean Portfolio Management,
  • Lean Enterprise Architecture,
  • Lean-Agile Acquisition & Delivery,
  • Lean Segregated QA,
  • Lean Service Transition,
  • Lean Service Operations.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 
  © 2012 Fourth Medium Consulting Inc.