DATA GOVERNANCE

MANAJEMEN DATA
MAGISTER TEKNOLOGI INFORMASI
 OBJECTIVES
• To provide an overview of the importance and relevance
of data governance as part of an information management
initiative

Data Governance 2
 AGENDA
• Data Governance Definition
• Approach to Data Governance
• Data Governance Maturity Assessment

Data Governance 3
DATA GOVERNANCE DEFINITION

Data Governance 4
 DATA GOVERNANCE
• Provides an operating discipline for managing data and information as a key
enterprise asset
• Includes organisation, processes and tools for establishing and exercising decision
rights regarding valuation and management of data
• The scopes and focus of data governance
 Strategy: Defining, communicating, and driving execution of Data Strategy and Data
Governance Strategy
 Policy: Setting and enforcing policies related to data and Metadata management,
access, usage, security, and quality
 Standards and quality: Setting and enforcing Data Quality and Data Architecture
standards
 Oversight: Providing hands-on observation, audit, and correction in key areas of
quality, policy, and data management (often referred to as stewardship)
 Compliance: Ensuring the organization can meet data-related regulatory compliance
requirements
 Issue management: Identifying, defining, escalating, and resolving issues related to
data security, data access, data quality, regulatory compliance, data ownership,
policy, standards, terminology, or data governance procedures
 Data management projects: Sponsoring efforts to improve data management
practices
 Data asset valuation: Setting standards and processes to consistently define the
business value of data assets
Data Governance 5
 DATA GOVERNANCE

• Capstone of
Data
Management
Data Governance
initiatives
Data Architecture

Data Warehousing and Business Intelligence

Data Quality Metadata Management

Data Security Data Modeling and Design

Data Integration Document and

Data Storage and Reference and and Content
Operations Master Data Interoperability Management

Data Governance 6
DATA GOVERNANCE

Data Governance 7
OBJECTIVES OF DATA GOVERNANCE
• Guide information management decision-making
• Ensure information is consistently defined and well
understood
• Increase the use and trust of data as an organisation asset
• Improve consistency of projects across the organisation
• Ensure regulatory compliance
• Eliminate data risks

Data Governance 8
APPROACH TO DATA
GOVERNANCE

Data Governance 9
 DATA GOVERNANCE
• Core function of Data Management
• Interacts with and influences each of the surrounding ten
data management functions
• Data governance is the exercise of authority and control
(planning, monitoring, and enforcement) over the management
of data assets
• Data governance function guides how all other data
management functions are performed
• High-level, executive data stewardship
• Data governance is not the same thing as IT governance
• Data governance is focused exclusively on the management of
data assets

Data Governance 10
 DATA GOVERNANCE
• Shared decision making is the hallmark of data governance
• Requires working across organisational and system boundaries
• Some decisions are primarily business decisions made with input and guidance from IT
• Other decisions are primarily technical decisions made with input and guidance from
business data stewards at all levels
Business Decisions Shared Decision Making IT Decisions

Enterprise
Business Operating Information Model Enterprise Information Database
Model Management Strategy Architecture

Enterprise Data Integration

Information Needs Information
IT Leadership Architecture
Management
Policies
Enterprise Data Warehousing
Capital Investments Information Information and Business
Specifications Management Intelligence
Standards Architecture
Research and Enterprise
Development Quality Information Metadata
Funding Requirements Management Architecture
Metrics

Data Governance Enterprise

Issue Resolution Information Technical Metadata
Model Management
Services
Data Governance 11
 DATA GOVERNANCE
• Data governance is accomplished most effectively as an
on-going program and a continual improvement process
• Every effective data governance program is unique, taking
into account distinctive organisational and cultural issues,
and the immediate data management challenges and
opportunities
 Need organizational change management
• Data governance is not the same thing as IT governance

Data Governance 12
 DATA GOVERNANCE AND IT
GOVERNANCE
• IT Governance makes decisions about • Data Governance is focused
− IT investments exclusively on the management of
data assets
− IT application portfolio
• Data Governance is at the heart of
− IT project portfolio managing data assets
• IT Governance aligns the IT strategies
and investments with enterprise goals
and strategies
• COBIT (Control Objectives for
Information and related Technology)
provides standards for IT governance
− Only a small portion of the COBIT
framework addresses managing
information
• Some critical issues, such as Sarbanes-
Oxley compliance, span the concerns
of corporate governance, IT
governance, and data governance

Data Governance 13
 DATA GOVERNANCE –
DEFINITION AND GOALS
• Definition
− The exercise of authority and control (planning, monitoring,
and enforcement) over the management of data assets
• Goals
− To define, approve, and communicate data strategies,
policies, standards, architecture, procedures, and metrics
− To track and enforce regulatory compliance and conformance
to data policies, standards, architecture, and procedures
− To sponsor, track, and oversee the delivery of data
management projects and services
− To manage and resolve data related issues
− To understand and promote the value of data assets

Data Governance 14
 DATA GOVERNANCE –
DEFINITION AND GOALS
• Principles
 Leadership and strategy: Successful Data Governance starts with
visionary and committed leadership. Data management activities are
guided by a data strategy that is itself driven by the enterprise business
strategy.
 Business-driven: Data Governance is a business program, and, as
such, must govern IT decisions related to data as much as it governs
business interaction with data.
 Shared responsibility: Across all Data Management Knowledge Areas,
data governance is a shared responsibility between business data
stewards and technical data management professionals.
 Multi-layered: Data governance occurs at both the enterprise and
local levels and often at levels in between.
 Framework-based: Because data governance activities require
coordination across functional areas, the DG program must establish
an operating framework that defines accountabilities and interactions.
 Principle-based: Guiding principles are the foundation of DG activities,
and especially of DG policy.

Data Governance 15
DATA GOVERNANCE - OVERVIEW

Data Governance 56
DATA GOVERNANCE ORGANIZATION MODEL

Data Description
Governance
Body
Data The primary and highest authority organization for data
Governance governance in an organization, responsible for oversight,
Steering support, and funding of data governance activities. Consists
Committee of a cross-functional group of senior executives.
Typically releases funding for data governance and data
governance-sponsored activities as recommended by the
DGC and CDO. This committee may in turn have oversight
from higher-level funding or initiative-based steering
committees.
Data Manages data governance initiatives (e.g., development of
Governance policies or metrics), issues, and escalations. Consists of
Council executive according to the operating model used. See
(DGC) Figure 17.
Data Ongoing focus on enterprise-level data definitions and data
Governance management standards across all DAMA-DMBOK Knowledge
Office (DGO) Areas. Consists of coordinating roles that are labelled as data
stewards or custodians, and data owners.
Data Communities of interest focused on one or more specific
Stewardship subject-areas or projects, collaborating or consulting with
Teams project teams on data definitions and data management
standards related to the focus. Consists of business and
technical data stewards and data analysts.
Local Data Large organizations may have divisional or departmental
Governance data governance councils working under the auspices of an
Committee Enterprise DGC. Smaller organizations should try to avoid
Data Governancesuch complexity. 17
DATA GOVERNANCE OPERATING
MODEL

• Centralized model, one Data

Governance organization
oversees all activities in all
subject areas.
• Replicated model, the same DG
operating model and standards
are adopted by each business
unit.
• Federated model, one Data
Governance organization
coordinates with multiple
Business Units to maintain
consistent definitions and
standards.

Data Governance 18
 DATA STEWARDSHIP
• Formal accountability for business responsibilities ensuring
effective control and use of data assets
• Data steward is a business leader and/or recognised subject
matter expert designated as accountable for these
responsibilities
• Manage data assets on behalf of others and in the best interests
of the organisation
• Represent the data interests of all stakeholders, including but
not limited to, the interests of their own functional
departments and divisions
• Protects, manages, and leverages the data resources
• Must take an enterprise perspective to ensure the quality
and effective use of enterprise data
Data Governance 19
 DATA STEWARDSHIP ACTIVITIES

• Creating and managing core Metadata: Definition and management of

business terminology, valid data values, and other critical Metadata.
Stewards are often responsible for an organization’s Business Glossary,
which becomes the system of record for business terms related to data.
• Documenting rules and standards: Definition/documentation of business
rules, data standards, and data quality rules. Expectations used to
define high quality data are often formulated in terms of rules rooted in
the business processes that create or consume data. Stewards help
surface these rules in order to ensure that there is consensus about them
within the organization and that they are used consistently.
• Managing data quality issues: Stewards are often involved with the
identification and resolution of data related issues or in facilitating the
process of resolution.
• Executing operational data governance activities: Stewards are
responsible for ensuring that, day-to-day and project-by-project, data
governance policies and initiatives are adhered to. They should
influence decisions to ensure that data is managed in ways that support
the overall goals of the organization.

Data Governance 20
 DATA STEWARDSHIP - ROLES
• Chief Data Stewards may chair data governance bodies in lieu of the CDO
or may act as a CDO in a virtual (committee-based) or distributed data
governance organization. They may also be Executive Sponsors.
• Executive Data Stewards are senior managers who serve on a Data
Governance Council.
• Enterprise Data Stewards have oversight of a data domain across business
functions.
• Business Data Stewards are business professionals, most often recognized
subject matter experts, accountable for a subset of data. They work with
stakeholders to define and control data.
• A Data Owner is a business Data Steward, who has approval authority for
decisions about data within their domain.
• Technical Data Stewards are IT professionals operating within one of the
Knowledge Areas, such as Data Integration Specialists, Database
Administrators, Business Intelligence Specialists, Data Quality Analysts or
Metadata Administrators.
• Coordinating Data Stewards lead and represent teams of business and
technical Data Stewards in discussions across teams and with executive
Data Stewards. Coordinating Data Stewards are particularly important in
large organizations. Data Governance 21
 DATA STEWARDSHIP ROLES ACROSS DATA
MANAGEMENT FUNCTIONS – EXAMPLE
FROM DMBOK 1
All Data Stewards Executive Data Stewards Coordinating Data Business Data Stewards
Stewards
Data Architecture Review, validate, approve, Review and approve the Integrate specifications, Define data requirements
Management maintain and refine data enterprise data resolving differences specifications
architecture architecture

Data Development Validate physical data Define data requirements

models and database and specifications
designs, participate in
database testing and
conversion
Data Operations Define requirements for
Management data recovery, retention
and performance
Help identify, acquire, and
control externally sourced
data

Data Security Management Provide security, privacy

and confidentiality
requirements, identify and
resolve data security
issues, assist in data
security audits, and classify
information confidentiality
Reference and Master Data Control the creation,
Management update, and retirement of
code values and other
reference data, define
master data management
Data Governance requirements, identify and22
help resolve issues
 DATA STEWARDSHIP ROLES ACROSS
DATA MANAGEMENT FUNCTIONS –
EXAMPLE FROM DMBOK 1
All Data Stewards Executive Data Stewards Coordinating Data Business Data Stewards
Stewards
Data Warehousing and Provide business
Business Intelligence intelligence requirements
Management and management metrics,
and they identify and help
resolve business
intelligence issues
Document and Content Define enterprise
Management taxonomies and resolve
content management
issues
Metadata Management Create and maintain
business metadata (names,
meanings, business rules),
define metadata access
and integration needs and
use metadata to make
effective data stewardship
and governance decisions
Data Quality Management Define data quality
requirements and business
rules, test application edits
and validations, assist in
the analysis, certification,
and auditing of data
quality, lead clean-up
efforts, identify ways to
solve causes of poor data
quality, promote data
quality awareness
Data Governance 23
 DATA STRATEGY
• High-level course of action to achieve high-level goals
• Data strategy is a data management program strategy a
plan for maintaining and improving data quality, integrity,
security and access
• Address all data management functions relevant to the
organisation

Data Governance 24
 ELEMENTS OF DATA STRATEGY
• Vision for data management
• Summary business case for data management
• Guiding principles, values, and management perspectives
• Mission and long-term directional goals of data management
• Management measures of data management success
• Short-term data management programme objectives
• Descriptions of data management roles and business units
along with a summary of their responsibilities and decision
rights
• Descriptions of data management programme components
and initiatives
• Outline of the data management implementation roadmap
• Scope boundaries
Data Governance 25
 DATA STRATEGY

Data
Management
Data Programme
Charter Data
Management Management
Scope Statement Overall vision, business case, Implementation
goals, guiding principles,
Goals and objectives for a measures of success, critical Roadmap
defined planning horizon and success factors, recognised
the roles, organisations, and risks Identifying specific programs,
individual leaders accountable projects, task assignments,
for achieving these objectives and delivery milestones

Data Governance 26
 DATA POLICIES

• Statements of intent and fundamental rules governing the

creation, acquisition, integrity, security, quality, and use of
data and information
• More fundamental, global, and business critical than data
standards
• Describe what to do and what not to do
• Should be few data policies stated briefly and directly

Data Governance 27
 DATA POLICIES
• Possible topics for data policies
− Data modeling and other data development activities
− Development and use of data architecture
− Data quality expectations, roles, and responsibilities
− Data security, including confidentiality classification
policies, intellectual property policies, personal data
privacy policies, general data access and usage policies,
and data access by external parties
− Database recovery and data retention
− Access and use of externally sourced data
− Sharing data internally and externally
− Data warehousing and business intelligence
− Unstructured data - electronic files and physical records

Data Governance 28
 DATA ARCHITECTURE

• Enterprise data model and other aspects of data

architecture sponsored at the data governance level
• Need to pay particular attention to the alignment of the
enterprise data model with key business strategies,
processes, business units and systems
• Includes
− Data technology architecture
− Data integration architecture
− Data warehousing and business intelligence architecture
− Metadata architecture

Data Governance 29
 DATA STANDARDS AND
PROCEDURES
• Include naming standards, requirement specification
standards, data modeling standards, database design
standards, architecture standards and procedural
standards for each data management function
• Must be effectively communicated, monitored, enforced
and periodically re-evaluated
• Data management procedures are the methods,
techniques, and steps followed to accomplish a specific
activity or task

Data Governance 30
 DATA STANDARDS AND
PROCEDURES
• Possible topics for data standards and procedures
− Data modeling and architecture standards, including data naming conventions,
definition standards, standard domains, and standard abbreviations
− Standard business and technical metadata to be captured, maintained, and
integrated
− Data model management guidelines and procedures
− Metadata integration and usage procedures
− Standards for database recovery and business continuity, database
performance, data retention, and external data acquisition
− Data security standards and procedures
− Reference data management control procedures
− Match / merge and data cleansing standards and procedures
− Business intelligence standards and procedures
− Enterprise content management standards and procedures, including use of
enterprise taxonomies, support for legal discovery and document and e-mail
retention, electronic signatures, report formatting standards and report
distribution approaches

Data Governance 31
 REGULATORY COMPLIANCE
• Most organisations are is impacted by government and
industry regulations
• Many of these regulations dictate how data and
information is to be managed
• Compliance is generally mandatory
• Data governance guides the implementation of adequate
controls to ensure, document, and monitor compliance
with data-related regulations.

Data Governance 32
 REGULATORY COMPLIANCE
• Data governance needs to work the business to find the
best answers to the following regulatory compliance
questions
− How relevant is a regulation?
− Why is it important for us?
− How do we interpret it?
− What policies and procedures does it require?
− Do we comply now?
− How do we comply now?
− How should we comply in the future?
− What will it take?
− When will we comply?
− How do we demonstrate and prove compliance?
− How do we monitor compliance?
− How often do we review compliance?
− How do we identify and report non-compliance?
− How do we manage and rectify non-compliance?
Data Governance 33
 ISSUE MANAGEMENT
• Data governance assists in identifying, managing, and resolving
data related issues
− Data quality issues
− Data naming and definition conflicts
− Business rule conflicts and clarifications
− Data security, privacy, and confidentiality issues
− Regulatory non-compliance issues
− Non-conformance issues (policies, standards, architecture, and procedures)
− Conflicting policies, standards, architecture, and procedures
− Conflicting stakeholder interests in data and information
− Organisational and cultural change management issues
− Issues regarding data governance procedures and decision rights
− Negotiation and review of data sharing agreements

Data Governance 34
 ISSUE MANAGEMENT, CONTROL
AND ESCALATION
• Data governance implements issue controls and
procedures
− Identifying, capturing, logging and updating issues
− Tracking the status of issues
− Documenting stakeholder viewpoints and resolution
alternatives
− Objective, neutral discussions where all viewpoints are heard
− Escalating issues to higher levels of authority
− Determining, documenting and communicating issue
resolutions.

Data Governance 35
 DATA MANAGEMENT PROJECTS
• Data management roadmap sets out a course of action for
initiating and/or improving data management functions
• Consists of an assessment of current functions, definition
of a target environment and target objectives and a
transition plan outlining the steps required to reach these
targets including an approach to organisational change
management
• Every data management project should follow the project
management standards of the organisation

Data Governance 36
 DATA ASSET VALUATION
• Data and information are truly assets because they have business value,
tangible or intangible
• Different approaches to estimating the value of data assets

• Identify the direct and indirect business benefits derived from use of the data

• Identify the cost of data loss, identifying the impacts of not having the current
amount and quality level of data Measure value of data:

Data Governance 37
 DATA GOVERNANCE FUNCTION,
ACTIVITIES AND SUB-
1.Define Data Governance for the
Organization(P)
1. Perform Readiness Assessment:
• data management maturity, capacity
to change, collaboration readiness,
business alignment
2. Perform Discovery and Business Alignment
• Discovery: a) identify and assess the
effectiveness of existing policies and
guidelines, b) identify opportunities for
DG to improve the usefulness of data
and content
• Business alignment attaches business
benefits to DG program elements
3. Develop Organizational Touchpoints
• support alignment and cohesiveness
of an enterprise data governance
and data management approach in
areas outside the direct authority of
the Chief Data Officer Data Governance
57
 DATA GOVERNANCE FUNCTION,
ACTIVITIES AND SUB-
2.Develop the Data Governance Strategy (P)
1. Define the Data Governance Operating Framework
• Consideration: value of data to the organization, business models, cultural factors, impact of
regulations
2. Develop Goals, Principles, and Policies
3. Underwrite Data Management Projects
• DGC helps define the business case and oversees project status and progress on data
management improvement projects
4. Engage Change Management
• Avoid organization resistance on DG program
• A team can be created to: planning, training, influencing system development, policy
implementation, communication, implementing new metrics and KPI
5. Engage in Issue Management
• identifying, quantifying, prioritizing, and resolving data governance-related issues such as authority,
change management escalation, compliance, conflicts, conformance, contracts, data security,
data quality
6. Assess Regulatory Compliance Requirements
• Both from government and industries, for example Basel II (banking), Peraturan Bank Indonesia, UU
ITE, etc

Data Governance 57
 DATA GOVERNANCE FUNCTION,
ACTIVITIES AND SUB-
3.Implement Data Governance (O)
1. Sponsor Data Standards and Procedures
• Example of standards: Enterprise data models, tool standards, and system naming
conventions, Data model management procedures, data modeling naming
conventions, definition standards, standard domains, and standard abbreviations,
etc.
2. Develop a Business Glossary
• Clear definitions of data, as people may use different words for the same data
• Contains term definition, synonyms, metrics, lineage, business rules, the steward
responsible for the term, etc
3. Coordinate with Architecture Groups
• The DGC sponsors and approves data architecture artifacts, such as a business-
oriented enterprise data model, thus the DGC may appoint or interact with an
Enterprise Data Architecture Steering Committee or Architecture Review Board
(ARB)
4. Sponsor Data Asset Valuation

4.Embed Data Governance (C,O)

• Ensure the sustainability of DG programs
• organization accepts the governance of data; that the function is managed, its results
are monitored and measured, and the obstacles that so often cause DG programs to
falter or fail are overcome.
57
Data Governance
DATA GOVERNANCE MATURITY
ASSESSMENT

Data Governance 41
DATA GOVERNANCE MATURITY ASSESSMENT

• Open discussion with stakeholders at all levels

⁻ One on one interviews, group workshops, consulting
SMEs
• Pre-determined questions to be answered and
maturity level determined
⁻ Identify current state maturity and a desired state
• Ensure it is an educational process
• The success of your data governance initiative can be
highly dependant on a Maturity Assessment!

• The biggest part of the process: CONSULTING

DATA GOVERNANCE MATURITY ASSESSMENT

Step 1 – Identify and prepare for Step 2 – Conduct on-site workshop Step 3 – Conduct Maturity Assessment
interviews & workshops and interviews with key stakeholders in
business & IT

Step 4 – Assimilate findings, analyse Step 5 – Present final Maturity

and prioritise gaps & develop roadmap Assessment & Roadmap to key
stakeholders

43
Data Governance
DATA GOVERNANCE MATURITY ASSESSMENT

Maturity Model

Maturity
Framework
Maturity Assessment
Assessment Report

Questions
 DECIDE ON A MATURITY MODEL

• Is there something similar in use throughout your

organisation?

• Can you leverage from a vendor?

• Are there other options that suit your needs?

DATA MATURITY MODELS: CMM & CMMI
DATA GOVERNANCE MATURITY MODELS:
CMM & CMMI
DATA GOVERNANCE MATURITY MODELS:
IBM
DATA GOVERNANCE MATURITY MODELS:
DATAFLUX
DATA GOVERNANCE MATURITY MODELS:
KALIDO
 DATA GOVERNANCE FRAMEWORK:
WHAT IS IT?

• The rules of engagement with data management

in your organisation
⁻ Roles and Responsibilities, Decision Rights,
Accountability, Data Governance Organisation and
Stewardship program

• Requires a comprehensive maturity assessment

• Built to desired maturity level

• Must be digestible and suited for your

organisation!
 DATA GOVERNANCE FRAMEWORK

Maturity Assessment

A Tailored
Data
Desired State
Gap Governance
Analysis Framework

Framework
 DATA GOVERNANCE FRAMEWORK: THE
BURNING QUESTIONS

• What is the scope of your program or

initiative?

• What data will be governed?

• How will you approach Stewardship?

• What are your business drivers and benefits?

• How will you measure success or progress?

• Who is your Data Governance Organisation?

 EXAMPLE: THE ZENITH DATA
GOVERNANCE FRAMEWORK
Information & Data

Enablers
Governance
Policy, • 11 Components or Domains
People &
Procedures, Data
Culture
Processes
• Sub-Components or
Categories

Training & Communication

Core disciplines
Information
Security,
Data Lifecycle
Complianc
Quality Manageme
e& Privacy
nt

Metadata,
Supporting
disciplines
Architect Master Audit,
ure & Data Monitoring,
Standards Manageme Reporting
nt

Process Technology

People,
People & Data Governance 54
Process &
Process
Technology
 REFERENCES

• Data Governance, Alan McSweeney slides

• Data Governance, Data and Information
Management Solutions, Zenith slides
• The DAMA Guide to The Data Management Body
of Knowledge (DAMA-DMBOK Guide). 1st Edition.
Mark Mosley, Michael Brackett, and Susan Earley.
Dama International. USA. 2009

Data Governance 55