{"id":2456,"date":"2021-12-30T14:26:51","date_gmt":"2021-12-30T11:26:51","guid":{"rendered":"https:\/\/esi.edu.sa\/?p=2456"},"modified":"2021-12-30T14:26:51","modified_gmt":"2021-12-30T11:26:51","slug":"it-governance-definition-and-solutions","status":"publish","type":"post","link":"https:\/\/esi.edu.sa\/en\/it-governance-definition-and-solutions\/","title":{"rendered":"IT Governance – Definition and Solutions"},"content":{"rendered":"
\"Mohammad
Mohammad Abdul Khadeer
CGEIT, PMP, CISA, CQA, CSTE, CMMi
Manager \u2013 IT Trainings<\/figcaption><\/figure>\n

Introduction<\/strong><\/p>\n

From relative obscurity a few years ago, several factors have come together to make the concept of formal IT Governance, a good idea for virtually every company, both public and private. \u00a0Key motivators include the need to comply with a growing list of regulations related to financial and technological accountability and pressure from shareholders and customers. \u00a0Here\u2019s a quick primer on the basics of IT Governance:<\/p>\n

What is IT Governance?<\/strong><\/p>\n

Simply put, it\u2019s putting structure around how organizations align IT strategy with business strategy, ensuring that companies stay on track to achieve their strategies and goals and implementing good ways to measure IT\u2019s performance. \u00a0It makes sure that all stakeholders\u2019 interests are taken into account and that processes provide measurable results. \u00a0An IT Governance framework should answer some key questions, such as how the IT department is functioning overall, what key metrics management needs and what return IT is giving back to the business from the investment it is making.<\/p>\n

Is it something that every organization needs?<\/strong><\/p>\n

Every organization\u2014large and small, public and private\u2014needs a way to ensure that the IT function sustains the organization\u2019s strategies and objectives. \u00a0The level of sophistication you apply to IT governance, however, may vary according to size, industry or applicable regulations. In general, the larger and more regulated the organization, the more detailed the IT Governance structure should be.<\/p>\n

What are the drivers that motivate Organizations to implement IT Governance infrastructures?<\/strong><\/p>\n

Organizations today are subject to many regulations governing data retention, confidential information, financial accountability and recovery from disasters. While none of these regulations requires an IT governance framework, many have found it to be an excellent way to ensure regulatory compliance. By implementing IT governance, you\u2019ll have the internal controls you need to meet the core guidelines of many of these regulations, such as the Sarbanes-Oxley Act of 2002.<\/p>\n

What\u2019s the business case? \u00a0That is, how one can convince top management that need to be done?<\/strong><\/p>\n

Make sure that the right people are selling the concept; if IT is selling it then it will be an issue. \u00a0It\u2019s much more effective if a cross-functional team consisting of IT professionals and line-of-business managers makes the case to the board of directors that effective IT management is an important part of the company\u2019s success. \u00a0The team must be able to explain that the company needs a road map – something to tell decision-makers where the company is, where it needs to be and how best to get there. \u00a0And of course, talk about the benefits – greater efficiency and accountability, along with reduced risk. \u00a0Be careful, however, when talking about Return of Investment (ROI), a lot of the cost of implementing an IT Governance framework can be chalked up to what management should be doing anyway. \u00a0Simply put, companies have to accept the cost, but they don\u2019t like to hear that.<\/p>\n

What are the major focus areas that make up IT Governance?<\/strong><\/p>\n

According to the IT Governance Institute, there are five areas of focus:<\/p>\n