IT Governance – tutto quello che non avreste mai osato chiedere

L’IT Governance Institute ha pubblicato una guida completa alla IT Governance, guida realizzata dal britannico "National Computing Centre" (NCC) (pdf  , 7.7 M,  71 pp). La guida si articola in 12 argomenti chiave ciascuno dei quali viene analizzato con un approccio FAQ (domanda e risposta). I 12 argomenti sono:

  1. The business case – The organisation needs to understand the value proposition
  2. Performance measurement – Is the ship "on course"?
  3. Implementation roadmap – How to start – What path to follow
  4. Communications – How to explain the objectives and change the culture
  5. Capability assessment – Finding out the true current state of IT governance
  6. Risk management – What risks exist and how to make sure they are dealt with
  7. Supplier governance – External parties play a big role and must be included
  8. IT and audit working together – How to co-operate for a common goal
  9. Information security – A key topic in today’s networked environment
  10. Legal and regulatory aspects –Compliance is a global concern
  11. Architectures – The foundation for effective technical solutions
  12. Managing investments – Ensuring value is delivered and benefits realised

Perché l’IT Governance è importante?

L’IT Governance è ormai diventato un tema essenziale in azienda per una serie di motivi:

  • una gran numero di scandali (Enron in primis) ha evidenziato l’importanza di una corretta corporate governance
  • l’attenzione del management verso l’IT ed i suoi rischi è in forte aumento
  • occorre sempre più essere in grado di gestire in maniera efficiente i costi dell’IT
  • bisogna migliorare il commitment dell’alta direzione rispetto ai temi dell’IT.

Indice completo del documento

  1. IT Governance – The Business Case
    • 1.1 Why is IT Governance important?
    • 1.2 What does IT Governance cover?
    • 1.3 What are the benefits?
    • 1.4 What is IT Governance best practice?
  2. Performance Measurement
    • 2.1 Why is performance measurement important?
    • 2.2 What does performance measurement cover?
    • 2.3 Who are the stakeholders and what are their requirements?
    • 2.4 What should we measure?
    • 2.5 What is best practice?
  3. Implementation Roadmap
    • 3.1 Goals and success criteria
    • 3.2 How to get started
    • 3.3 Who needs to be involved and what are their roles and responsibilities?
  4. Communication Strategy & Culture
    • 4.1 Who do we need to influence?
    • 4.2 What are the key messages?
    • 4.3 Communication best practices
    • 4.4 Developing an influencing strategy
    • 4.5 Change roadmap
  5. Capability Maturity & Assessment
    • 5.1 Why IT capability is important
    • 5.2 How to measure IT capability
    • 5.3 Setting maturity targets and considering improvements
    • 5.4 Roadmap for sustaining the approach
    • 5.5 Self assessment tool
  6. Risk Management
    • 6.1 What are the risks?
    • 6.2 What is the best approach for risk analysis and management?
    • 6.3 Using standards and best practices – is certification useful?
    • 6.4 What are the roles of management, staff and auditors?
    • 6.5 Who needs to be competent?
    • 6.6 What competence is required?
    • 6.7 How to obtain, develop, retain and verify competence
    • 6.8 When to source competence from outside
    • 6.9 Key learning points
  7. Supplier Governance
    • 7.1 Why is supplier governance important?
    • 7.2 The customer ’s role
    • 7.3 How best to select a supplier
    • 7.4 The customer/supplier relationship
    • 7.5 Service management techniques and SLAS
    • 7.6 The supplier/outsourcing governance lifecycle
  8. IT & Audit Working Together and Using CobiT
    • 8.1 Introduction to CobiT
    • 8.2 How is CobiT being used?
    • 8.3 What are the roles of IT and audit for IT Governance?
    • 8.4 How can IT and internal audit work better together?
  9. Information Security Governance
    • 9.1 Background
    • 9.2 What is information security?
    • 9.3 Where to focus
    • 9.4 Roles and responsibilities
    • 9.5 Action planning and best practice
  10. Legal & Regulatory Aspects of IT Governance
    • 10.1 Legal and regulatory factors affecting IT Governance
    • 10.2 Roles and responsibilities
    • 10.3 Best approach to compliance
    • 10.4 What IT has to do
    • 10.5 Dealing with third parties
    • 10.6 Critical success factors
  11. Architecture Governance
    • 11.1 Why is architecture governance important?
    • 11.2 What are the objectives of architecture governance?
  12. Managing the IT Investment
    • 12.1 Why is managing the IT investment important?
    • 12.2 Portfolio management
    • 12.3 Benefits management
    • 12.4 Measuring investment performance
    • 12.5 Improve value delivery and ROI
    • 12.6 Measuring and controlling IT operational costs
    • 12.7 Project risk management
  13. Success Factors

Articoli collegati in questo sito

Link

  • IT Governance Institute
  • National Computing Centre (NCC), "IT Governance - Developing a Successful Governance Strategy", pdf  , 7.7 M,  71 pp
AG-Vocabolario: