Article: (PR) Agile GEIT Practitioners Guide, Part 1, By Michael Bergman.

https://www.isaca.org

Ever-increasing legal and regulatory requirements have an impact on Agile’s ability to respond to customers’ needs in a timely, effective and efficient manner. To limit that impact and maximize value delivery to the organization, a governance of enterprise IT (GEIT) system focused on managing IT risk within the Agile environment is required. A GEIT system enables the enterprise to take full advantage of IT, maximizing benefits, capitalizing on opportunities and gaining competitive advantage.¹ Fundamentally, GEIT is concerned with 2 separate but related components: first, the managing of IT-related risk and second, IT value delivery to the business.²

The managing IT risk component requires building an internal control system to protect and control the Agile development process and build trust in its ability to safeguard its assets.³ The value delivery component requires a planned compliance and assurance effort to design the internal controls into the Agile process so its compliance and control assurance evidence generation have minimal impact upon Agile’s responsiveness to market requirements.

COBIT Focus. ©2019. ISACA. All rights reserved.