Diagnosis of ICT Governance Processes
What is your relationship with CADE?
ICT analyst
Project manager
Coordinator
ICT technician
Developer
Networks specialist
Infrastructure specialist
Outsourced worker
Software architect
Systems analyst
What is your gender?
Female
Male
What is your age?
up to 21 years old
between 22 and 30 years old
between 31 and 40 years old
between 41 and 50 years old
between 51 and 60 years old
over 60 years old
How long have you been working for CADE?
up 1 year
between 2 and 4 years
between 5 and 7 years
between 8 and 10 years
between 11 and 15 years
over 15 years
1 - In order to make a diagnosis of CADE and guide the Agency in the evolution of the implementation of ICT governance, we have identified a set of artifacts, which aim to identify the basic, intermediate and advanced processes, considered by the market and academia, implemented by CADE. Regarding the basic processes (includes the basic ICT processes destined to the Agencies with little or no maturity in ICT), which of the processes below related to this agency are implemented:
ICT committee
ICT Projects and Services Portfolio.
ICT People Management (Talent Base Skills and Competencies and Role and Responsibility Definition Form).
Information and Communication Technology Master Plan (PDTIC in the original).
Catalog of Computerized Systems (Catalog of ICT Services - Form with those responsible for ICT and Business Areas and Catalog of ICT Services).
Software Development Process (Quality Management, Configuration).
2 - In the ICT Committee process, which of the artifacts does the Agency have:
Internal Standard for the Creation of the ICT Committee.
Internal regulations of the ICT Committee.
ICT Committee meeting minutes.
Not applicable
3 - In the ICT Projects and Services Portfolio process, which of the artifacts does the Agency have
ICT Projects and Services Prioritizing Criteria.
Prioritization Police.
ICT Projects and Services Portfolio.
ICT Projects and Services Portfolio Performance Reports.
Not applicable
4 - In the ICT People Management process (Training, Performance, Roles and Responsibilities), which of the artifacts does the Agency have:
Talent Base (Skills and Competenceis)
Roles and Responsibilities Definition Form.
Not applicable
5 - In the Information and Communication Technology Master Plan (PDTIC) process, which of the artifacts does the Agency have:
Internal PDTIC Team Assignment Policy.
PDTIC Guide Standard.
PDTIC Monitoring Report Model.
List of Principles and Guidelines Model.
SWOT Analysis Model.
Needs Inventory Model.
Goals and Actions Plan Model.
Budget Plan Model.
Risk Management Plan Model.
People Management Plan Model.
PDTIC Elaboration Schedule Model.
Model of Work Plan for the Preparation of the PDTIC.
Not applicable
6 - In the Computerized Systems Catalog (ICT Services Catalog) process, which of the artifacts does the Agency have:
Form with those responsible for ICT and Business Areas.
ICT Service Catalog.
Not applicable
7 - In the Software Development Process (Quality Management, Configuration), which of the artifacts does the Agency have:
Software Development Process.
Quality Management Plan.
Test Plan.
Requirements traceability.
Solution Maintenance Plan.
Not applicable
8 - In relation to the intermediary processes (includes the processes, which, once implemented, enable the Agency to evolve to an intermediate level of maturity), which of the processes listed below does this Agency have implemented:
ICT Risk Management.
Hiring of ICT Goods and Services (Manage Software Acquisitions).
Business Process Modeling (Automated / to Automate).
Catalog of Computerized Systems (Catalog of ICT Services - Service Level Agreement and Metrics and Indicators for Service Performance and Service Level Agreements).
Incident and Problem Management Process (Service Desk).
Information Security Risk Management.
Software Development Process (Quality Management, Configuration).
Processo de Gerenciamento de Mudanças.
Gerenciar Ativos de TIC (Hardware, Licenças e Custos)
ICT Contract Management Process
Not applicable
9 - In the ICT Risk Management process, which of the artifacts does the Agency have:
ICT Risk Management Plan.
ICT Risk Management Policy.
Information and Communication Security Policy.
Not applicable
10 - In the process of Contracting Goods and ICT Services (Manage Software Acquisitions), which of the artifacts does the Agency have:
Demand Officialization Document.
Hiring Planning Team.
Term of Commitment Model.
term of Awareness Model.
Term of Reference or Basic Project.
Not applicable
11 - In the Business Process Modeling process (Automated / to Automate), which of the artifacts does the Agency have:
Form for Defining Roles, Responsibilities, Access Privileges and Authority Levels.
Business Process Modeling Simplification Document.
Not applicable
12 - No processo Catálogo dos Sistemas Informatizados (Catálogo de Serviços de TIC), quais dos artefatos o Órgão possui:
Service Level Agreement.
Metrics and Indicators for Service Performance and Service Level Agreements.
Not applicable
13 - In the Incident and Problem Management Process (Service Desk), which of the artifacts does the Agency have:
Incident Management Plan.
Knowledge base.
Incident Report and its status.
Service Requests and Incidents Report.
Problem Management Plan.
Corrective Actions Report.
Not applicable
14 - In the Information Security Risk Management process, which of the artifacts does the Agency have:
Categories and Parameters Form for IS Risks.
Information Security Risk Management Plan.
IS Risk Treatment Plan.
Not applicable
15 - In the Software Development Process (Quality Management, Configuration), which of the artifacts does the Agency have:
Configuration Audit Plan and Baselines.
Quality Measurement Metrics Report.
Configuration Measurement Metrics Report.
Measurement Document.
Report on Quality Standards, Practices and Procedures.
Improvement Plan.
Not applicable
16 - In the Change Management Process, which of the artifacts does the Agency have:
Change Management Plan.
Configuration Management Plan.
Change Report.
Not applicable
17 - In the process of Managing ICT Assets (Hardware, Licenses and Costs), which of the artifacts does the Agency have:
ICT Assets Report.
Software Licenses Report.
License Management Plan.
Indicators and Metrics to Manage Capacity and Performance of hardware assets.
Hardware Assets Performance Report.
Not applicable
18 - In the ICT Contract Management Process, which of the artifacts does the Agency have:
Notice.
Term of Reference or Basic Project.
Indicators and Metrics to measure the results.
Service or Goods Supply Orders.
ICT Contract Management Plan.
Communications to the contractor.
Provisional Receipt Term.
Definitive Receipt Term.
Rejection Term
Supplier/Contractor Performance Report.
Not applicable
19 - Regarding the advanced processes (includes the processes for the bodies that wish to evolve to an improved stage of maturity), which of the processes below related to this body are implemented:
ICT People Management (Metrics to Assess Performance and Training Plan).
Monitor the Execution of the ICT Projects and Services Portfolio (Performance Reports of the ICT Projects and Services Portfolio).
ICT Security Committee.
Management of ICT Services Continuity.
Information and Communication Security Policy.
ICT Project Management (Report of Identified Projects and Criteria for Prioritizing Projects).
ICT Contract Management Process (Product Validation Criteria and Methods and Product and Component Validation Report).
Change Management Process (Causal Analysis Report).
Not applicable
20 - In the ICT People Management Process (Training, Performance, Roles and Responsibilities), which of the artifacts does the Agency have:
Metrics to Assess Performance.
Training Plan.
Not applicable
21 - In the Process Follow the Execution of the ICT Projects and Services Portfolio, which of the artifacts does the Agency have:
Performance reports of the ICT Projects and Services Portfolio.
Not applicable
22 - In the ICT Security Committee Process, which of the artifacts does the Agency have:
Internal Standard for the Creation of the ICT Security Committee.
Internal regulations of the ICT Security Committee.
ICT Security Committee meeting minutes.
Not applicable
23 - In the ICT Services Continuity Management Process, which of the artifacts does the Agency have:
Service Continuity Plan.
Service Continuity Policy.
Not applicable
24 - In the Information and Communication Security Policy Process, which of the artifacts does the Agency have:
Form to Define Roles and Access Privileges.
Information Classification Form.
Information and Communication Security Policy.
Not applicable
25 - In the ICT Project Management Process, which of the artifacts does the Agency have:
Project Prioritization Criteria.
Priority Projects Report.
Project Integration Management Plan.
Project Scope Management Plan.
Project Time Management Plan.
Project Cost Management Plan.
Project Quality Management Plan.
Project Human Resources Management Plan.
Project Communication Management Plan.
Project Risk Management Plan.
Project Procurement Management Plan.
Project Stakeholder Management Plan.
Project Management Plan.
Project Performance Report.
Not applicable
26 - In the ICT Contract Management Process, which of the artifacts does the Agency have:
Product Validation Criteria and Methods.
Validation Report of Products and Components.
Not applicable
27 - In the Change Management Process, which of the artifacts does the Agency have:
Causal Analysis Report.
Not applicable
28 - Regarding the establishment of a working group to implement the processes most appropriate to the maturity of ICT of this Agency, what is your opinion:
Strongly agree.
Agree.
Neither agree or disagree.
Disagree.
Strongly disagree.
29 - Will the ICT maturity processes presented contribute to the improvement of the ICT Governance processes of this Agency?
Strongly agree.
Agree.
Neither agree or disagree.
Disagree.
Strongly disagree.
30 - Regarding the ICT maturity processes presented for the improvement of the ICT Governance processes of this Agency, do you identify any process that was not contemplated? If so, which one(s)?
31 - Are the ICT maturity processes presented in line with the reality of this Agency?
Strongly agree.
Agree.
Neither agree or disagree.
Disagree.
Strongly disagree.
32 - Is it possible to implement, in this Agency, the ICT maturity processes presented in this Agency?
Strongly agree.
Agree.
Neither agree or disagree.
Disagree.
Strongly disagree.
33 - Does this Agency have human resources to implement and monitor the ICT maturity processes presented?
Strongly agree.
Agree.
Neither agree or disagree.
Disagree.
Strongly disagree.
34 - In your opinion, what is the desired time period to implement the basic processes in this Agency?
01 mouth.
02 mouths.
03 mouths.
06 mouths.
It is not possible to implement them.
35 - In your opinion, what is the desired time period to implement the intermediary processes in this Agency?
06 mouths.
09 mouths.
12 mouths.
18 mouths.
It is not possible to implement them.
36 - In your opinion, what is the desired time period to implement the advanced processes in this Agency?
03 mouths.
06 mouths.
09 mouths.
12 mouths.
It is not possible to implement them.
37 - Do you know CADE's Information and Communication Technology Master Plan
Yes
No
38 - Do you know the Information and Communication Technology Governance Policy - CADE's PGTIC
Yes
No
39 - Do you know CADE's Information and Communications Security Policy - POSIC
Yes
No
40 - If you have any suggestions for processes that were not included in this questionnaire or other suggestion, add it here.