1 / 31

What is the Value of IT Certification?

What is the Value of IT Certification?. Professional Practice in Computing (CSI2911) SITE, University of Ottawa. John Boufford, I.S.P., National President. Guy Belleperche, I.S.P., CIPS Ottawa President. January 29, 2007. Agenda. What is a Professional We Need Better Systems

merton
Download Presentation

What is the Value of IT Certification?

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. What is the Value of IT Certification? Professional Practice in Computing (CSI2911) SITE, University of Ottawa John Boufford, I.S.P., National President Guy Belleperche, I.S.P., CIPS Ottawa President January 29, 2007

  2. Agenda • What is a Professional • We Need Better Systems • How Do We Get There • CIPS Will Be Important in Making It Happen

  3. Elements of an IT Professional Designation Legislation Professional Designation (I.S.P.) Code of Ethics & Standards of Practice Core IT Body of Knowledge Choice of Specializations Network Mgmt. Database Admin Software Develop. Quality Assurance IT Audit Project Mgmt. Service Mgmt. IT Security Other Domain Knowledge …

  4. Agenda • What is Professional Certification • We Need Better Systems • How Do We Get There • CIPS Will Be Important in Making It Happen

  5. Business & Social Need for Better Systems • Errors Need to Be Reduced • Reliability Needs to Increase • Security/Privacy Must Improve

  6. Errors Need to Be Reduced • Software failures illustrate importance of professionalism • The Hartwell Group identified 20 recent high profile glitches • 61 + million people affected • $30 + million financial impacts • Non-quantifiable program impacts such as lost business, privacy, reputation, project delays, additional medical tests, etc. • Potential Life/Death impacts • Failures can be broadly viewed as insufficient IT governance

  7. IT Regulatory Compliance • Regulatory Compliance • Sarbanes-Oxley (SOX) • C-SOX (Proposed) • Privacy Legislation • All have an impact on IT • See following example

  8. Investor Confidence Rules Certification of Disclosure Certification of Internal Auditor Oversight in Issuers' Annual and Controls over Financial CSA National Instrument 52-108 Interim Filings (DCAP) Reporting (ICOFR) Multilateral Instrument 52-111 Multilateral Instrument 52-109 Catalyst for Projects Audit Continuous Disclosure Committees Obligations Multilateral Instrument 52-110 National Instrument 51-102 Canadian Public Independence Rules Others Accountability Board CICA/Provincial Institutes' Rules of Profession Conduct Example: Regulatory Requirements

  9. Level 2 Level 1 Level 3 Impact to Enterprise IS Projects Business Projects I.S. Projects • Automated Application Controls • Data Validation, Edit Checks & Output Reconciliations • Interface Controls • End User Security • General Application Controls • System Development • Change Control • Data Recovery • Database Management • Programmer Security Financial Reporting Disbursements Underwriting Treasury Other • General Computer Controls • Change & Configuration Management • Network Administration • Security Administration • Data Center Operations • Database Administration • O/S Administration General Application Controls Infrastructure General Computer Controls

  10. Comments on Regulatory Compliance • CIO Sign-off Before CEO • Legal Implications • Audits are “negative assurances” • Audit practices will permeate all IT audits • Certified Professionals Are Better Able to Provide the Process Assurances to Allow CIO Sign-off

  11. How Do We Get There? • Trusted IT Professionals • Professionals Who Manage Risk • Use of Proven Best Practices

  12. Trusted IT Professionals • Technical Competence is “Table Stakes” • Trust • Trusted Competence • Mastery of the Core BOK • Professional Experience • Best Practices • Trusted Intentions • Code of Ethics

  13. About CIPS: Values • Professionalism • Innovation and Creativity • Accountability • Knowledge Development

  14. CIPS Addresses Business Issues By: • Certifying/Recertifying individual practitioners • Accrediting academic institutions • Adopting standards of practice • Advocating on behalf of the profession • Offering professional development • Working with other IT and engineering bodies • Disciplining where appropriate

  15. Certification: General Info • Certification is not vendor specific • About 1500 I.S.P. holders across Canada • Provincially-administered National Standard • Recognized by statute in 6 provinces as a self-regulating profession • Canadian Information Processing Society of Ontario Act, 1998,c.Pr5 • Mutual recognition with other countries

  16. International Recognition • International Recognition • Mutual Recognition Agreements • Harmonization of Professional Certifications • GATS Negotiations

  17. Computer Specialists Under General Agreement on Trade in Services (GATS) • Canadian “Offer” for "Information and Communications Technology Professionals" Category Includes: • “A License Or Designation Equivalent To The Information Systems Professional - ISP Designation Obtained From The Canadian Information Processing Society Or From A Mutually Recognized Foreign Accreditation Body” • Currently AnOffer– Not A Commitment

  18. Certification: Goals • Protection of the public • Professional credibility • Personal integrity and competence • Enhanced customer confidence • Enhanced professional profile • Increased value to employer

  19. CIPS Will Be Important in Making This Happen • Code of Ethics • Body of Knowledge • Best IT Practices • Risk Management Standard

  20. Code of Ethics • Guiding Document for Professional Practice • Widely Reviewed and Endorsed • Standard for Discipline

  21. The Ethical Imperatives I will place my client's interest above my own and nothing will be above the public interest. • I will fairly describe my level of competence and deliver to the claimed level of competence. • I will protect all private or confidential information that I obtain from clients or colleagues. • I will be impartial in giving advice and fully disclose any potential conflicts of interest. • I will work to advance my profession and actively support my professional colleagues.

  22. Privacy Commissioner’s Comments “The Office of the Privacy Commissioner of Canada supports the work of IT professionals in setting a Code of Ethics for their profession.  The leadership demonstrated by CIPS is to be applauded and emulated.  By incorporating privacy protection as a core element of its ethical framework, CIPS not only demonstrates that IT professionals are an integral part of the value chain of their organizations by ensuring that systems – and the information assets they contain are protected against abuse and misuse; ...By up-holding the highest standards and putting in place mechanisms for greater professional accountability, IT professionals, through their own ethical conduct and unique expertise, will become important architects of privacy protection in systems and applications.” Jennifer Stoddart -Privacy Commissioner

  23. CIPS Will Be Important in Making This Happen • Code of Ethics • Body of Knowledge • Best IT Practices • Risk Management Standard

  24. Body of Knowledge • Adopted the BCS Syllabus • Moving Towards to Body of Knowledge Similar to Computer Science Graduate • Not Necessarily Obtained in Degree Program • Alternate Paths to Demonstrate Mastery of BOK

  25. CIPS Will Be Important in Making This Happen • Code of Ethics • Body of Knowledge • Best IT Practices • Risk Management Standard

  26. Best IT Practices – The Future • Adopting Best Practices that Will Provide More Rigour to IT Activities • Mandatory vs. Recommended vs. Best Practices • International Standards • Linked to I.S.P. Professional Practice Requirements

  27. CIPS Will Be Important in Making This Happen • Code of Ethics • Body of Knowledge • Best IT Practices • Risk Management Standard

  28. Risk Management Standard • Emerging Standard of Practice : • All professional assignments must begin with a risk assessment, and risk management must be practiced throughout professional assignments. • Approved in Principle By National Board in April 2006 • SOP Is Now Under Development

  29. Summary • Business Risks Are Ever-Present • CIPS Helps Organizations Manage Risk • CIPS Offers The Only Professional IT Certification In Canada That Is Recognized By Statute • Professional Certification That Embodies Technical Competence AND Professionalism • Discipline • Accreditation Of Educational Institutions • Standards Of Practice Are Emerging • Leads To Highly Professional Workforce And Lower Business Risk • Trusted Competence • Trusted Intentions

  30. “When you’re through changing… you’re through.” Will Rogers

  31. “The professional association providing leadership in information systems and technologies”

More Related