IT Governance Questions

IT Governance requires the answers to three fundamental questions:
“What decisions to make?”
“Who should make the decisions?”
“How to make and monitor the decisions?” Continue reading

Creating an IT Governance/GRC Program

Once we define the WHAT, HOW and WHY behind our IT control frameworks, we can begin to form the GRC office. GRC is a shortened form of Governance, Risk and Compliance, the three linked disciplines that help to guide IT Operations to provide controls over Ethics, Transparency and Alignment with Business objectives. Continue reading

IT Control Frameworks – WHY will we do it? (ITG/COBIT/CGEIT)

Within IT Control Frameworks, IT Governance (ITG) and frameworks such as COBIT 5 provide details on the Strategies needed for enterprise controls – defining WHY we will be doing (or ceasing to do) what is needed to create value. Continue reading