ICT Governance

Main Activies

The services offered by Sernet S.p.A. in the ICT Governance are to adapt business processes to the following International Standards:

• COBIT (Control Objectives for Information and related Technology), is a framework for the management of Information and Communication Technology (ICT) which is widely distributed internationally, designed by the American Association of Auditors of information systems (ISACA) and the IT Governance Institute (ITGI).

The COBIT model, which is composed of 5 Governance processes and 32 Management processes developed by leading industry experts, aims to:

o Provide a link between IT function objectives and business objectives;

o Organize the IT function’s activities according to a generally accepted process model;

o Define the control objectives to be used in the management of IT processes;

o Provide a maturity model against which to evaluate the maturity of these processes;

o Define measurable objectives according to metrics based on the principles of the Balanced Scorecard.

The main benefits achievable through the adoption of the COBIT Framework concern the possibility of efficiently and effectively carrying out the internal control activities relating to IT processes, in particular during IT Audit, but also of achieving possible improvements in the digitalization of operational processes companies by optimizing the relationship between IT and Business

• IT Service Management (ISO 20000) means a management approach aimed at obtaining the maximum results of the Business through the planning, design, management of Information Technology (IT) systems and the organization of resources, processes and technologies, with a view to meeting the contractual commitments undertaken by the Company towards its Customers.

Sernet SpA proposes to Customers (especially to Companies that consider strategic the application of structured approaches to Service Management) the compliance to the ISO 20000 International Standard, which represents a reference model  for the organization of IT services that aims to improve the provision and use of IT services.

ISO 20000, derived from ITIL international framework (Information Technology Infrastructure Library), apply to  the following processes:

o Design of new services or modification of existing services;

o Incident and Problem Management;

o Configuration, Change and Release Management;

o Service Level Management;

o Capacity, Continuity and Availability Management;

o Business Relationship and Supplier Management.

ISO 20000 is based upon the Services Catalogue, a document that describes the technical and organizational contents of ICT processes that enable the delivery of services to the market.

Sernet proposes to its Customers the adoption of ISO 20000 standard to improve the quality, efficacy and efficiency, of Company information system.

The main benefits achievable through the adoption of the ISO 20000 International Standard are the improvement of the quality and efficiency of the services provided, the reduction of the risk of not meeting the Business requirements, the improvement of the company’s ability to plan and control the services provided, the reduction of response times to the customer, the reduction of incidents and the promotion of an internal culture focused on continuous improvement.