Security : Technology : Information Systems :
Five Principles for Effective Information and Technology Governance
International Vice President of ITGI
ISACA and the IT Governance Institute
In new guidance issued global IT association ISACA outlines five principles organizations can use to effectively govern and manage their information and technology.
The principles, which form the core of the COBIT 5 framework, benefit all enterprises, regardless of size, geography or industry. A new white paper, titled “COBIT 5 Principles: Where Did They Come From?” offers insight into the widely used governance and management framework, including why the following five principles are key:
- Meeting Stakeholder Needs—It is critical to define and link enterprise goals and IT-related goals to best support stakeholder needs.
- Covering the Enterprise End to End—Companies must shift from managing IT as a cost to managing IT as an asset, and business managers must take on the accountability for governing and managing IT-related assets within their own functions.
- Applying a Single Integrated Framework—Using a single, integrated governance framework can help organizations deliver optimum value from their IT assets and resources.
- Enabling a Holistic Approach—Governance of enterprise IT (GEIT) requires a holistic approach that takes into account many components, also known as enablers. Enablers influence whether something will work. COBIT 5 features seven enablers for improving GEIT, including principles, policies and frameworks; processes; culture; information and people.
- Separating Governance From Management—Governance processes ensure goals are achieved by evaluating stakeholder needs, setting direction through prioritization and decision making; and monitoring performance, compliance and progress. Based on the results from governance activities, business and IT management then plan, build, run and monitor activities to ensure alignment with the direction that was set.
“Understanding these principles will help a company effectively use COBIT to make better IT-related investments and decisions, and to drive more value from their information and technology assets,” said Robert Stroud, CGEIT, CRISC, international president of ISACA. “COBIT is practical and effective for all types of enterprises, helping to ensure everyone is moving in the same direction and speaking the same language.”
The “COBIT 5 Principles” white paper is available as a free download at www.isaca.org/COBIT5-Principles. The COBIT 5 framework can be downloaded free of charge at www.isaca.org/COBIT.
COBIT 5 online will launch later this year with customizable RACI charts and goals cascades.
With more than 115,000 constituents in 180 countries, ISACA helps business and IT leaders build trust in, and value from, information and information systems. Established in 1969, ISACA is the trusted source of knowledge, standards, networking, and career development for information systems audit, assurance, security, risk, privacy and governance professionals. ISACA offers the Cybersecurity Nexus™, a comprehensive set of resources for cybersecurity professionals, and COBIT®, a business framework that helps enterprises govern and manage their information and technology. ISACA also advances and validates business-critical skills and knowledge through the globally respected Certified Information Systems Auditor® (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control™ (CRISC™) credentials. The association has more than 200 chapters worldwide.
Advertise your product/service here!