IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT

2h 10m
Alan Calder, Steve Moir
IT Governance
2009

Corporate governance increasingly provides the context within which twenty-first century organizations have to assess and deal with their investments in, and risks to, their corporate information assets and the Information and Communications Technology (ICT, or just IT) infrastructure within which those information assets are collected, manipulated, stored and deployed. But what is corporate governance, and why is it important to the IT professional? Why is IT governance important to the company director, and what do directors of companies both quoted and unquoted need to know? This book aims to do two things: the first is to set out for managers, executives and IT professionals the practical steps necessary to meet today's corporate and IT governance requirements; the second is to provide practical guidance on how board executives and IT professionals can navigate and deploy to best corporate and commercial advantage the numerous IT management and IT governance frameworks and standards particularly ISO/IEC 38500 that have been published over the course of the last 10 years. Each of these standards and frameworks has a potentially valuable role to play in the organization; the challenge lies in integrating them so that each can deliver what it was designed to do, and do this within the context of an overarching framework (a super framework , or meta-framework ) that enables each organization to design IT governance to meet its own needs.

About the Author

Alan Calder is a leading author on information security and IT governance issues. He is Chief Executive of IT Governance Limited, the one stop shop for books, tools, training and consultancy on governance, risk management and compliance. He is also Chairman of the Board of Directors of CEME, a public-private sector skills partnership. Alan is an international authority on IT Governance and, with Steve Moir, originated the innovative Calder-Moir IT Governance Framework. He is also an international expert on ISO27001 (formerly BS7799), the international security standard, about which he wrote with colleague Steve Watkins the definitive compliance guide, IT Governance: A Manager's Guide to Data Security and BS7799/ISO17799. This work is based on his experience of leading the world's first successful implementation of BS7799 (with the fourth edition published in May 2008) and is the basis for the UK Open University's postgraduate course on information security. Other books written by Alan include The Case for ISO27001, ISO27001 - Nine Steps to Success, IT Governance: Guidelines for Directors, IT Governance Today: a Practitioner's Handbook and IT Regulatory Compliance in the UK. Alan is a frequent media commentator on information security and IT governance issues, and has contributed articles and expert comment to a wide range of trade, national and online news outlets. Alan was previously CEO of Wide Learning, a supplier of e learning; of Focus Central London, a training and enterprise council; and of Business Link London City Partners, a government agency focused on helping growing businesses to develop. He was a member of the Information Age Competitiveness Working Group of the UK Government's Department for Trade & Industry, and was until recently a member of the DNV Certification Services Certification Committee, which certifies compliance with international standards including ISO27001.

In this Book

IT Governance—Implementing Frameworks and Standards for the Corporate Governance of IT
Foreword
Preface
Corporate Governance Context
IT Governance Defined
Intellectual Capital and the Information Economy
Strategy: The Search for Competitive Advantage
Governance and Risk Management
It Regulatory Compliance
Information and Continuity Risk
Internal Control Frameworks
Project Governance
Components of IT Governance
ISO/IEC 38500
It Governance Frameworks and Standards
The Calder-Moir Framework
Implementing IT Governance
Decision Making and the IT Organisation
It Steering Committee and Executive Committee
Enterprise It Architecture Committee
IT Audit
The ITIL/COBIT/ISO27002 Joint Framework
The It Management System of Tomorrow
Calder-Moir Implementation—A 15-Step Process
Making the Business Case for IT Governance
ITG Resources

FREE ACCESS

Course Certified in Cybersecurity (CC): Security Governance, Policies, & Controls

(123)

Course CompTIA IT Fundamentals: Basic IT Concepts

(114)

Course CISM 2022: Information Security Governance

(44)

Get Started

Sharpen your skills. Upgrade your career. Find the right learning path for you, based on your role and skills. Take part in hands-on practice, study for a certification, and much more - all personalized for you.

*Not included: Compliance, Leadership Development Program content, and Engineering books

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

Explore a world of live learning with Global Knowledge

Choose from convenient delivery formats to get the training you and your team need - where, when and how you want it.

Browse Live Learning

IT Skills & Salary Report

ESG Impact Report

IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT

In this Book

YOU MIGHT ALSO LIKE