Core Concepts of Information Systems Auditing, 1st Edition
Core Concepts of Information Systems Auditing, 1st Edition
Auditing Information Systems
IT Governance: How Top Performers Manage IT Decision Rights for Superior Results
IT Governance: How Top Performers Manage IT Decision Rights for Superior Results
eAirlines: strategic and tactical use of ICTs in the airline industry
Information and Management
IT Control Objectives for Basel II - The Importance of Governance and Risk Management for Compliance
IT Control Objectives for Basel II - The Importance of Governance and Risk Management for Compliance
Hi-index | 0.00 |
Most organizations in all sectors of industry, commerce and government are fundamentally dependent on their information systems (IS) and would quickly cease to function should the technology (preferably information technology - IT) that underpins their activities ever come to halt [15]. The development and governance of proper IT infrastructure may have enormous implications for the operation, structure and strategy of organizations. IT and IS may contribute towards efficiency, productivity and competitiveness improvements of both inter-organizational and intraorganizational systems [1]. On the other hand, successful organizations manage IT function in much the same way that they manage their other strategic functions and processes. This in particular means that they understand and manage risks associated with growing IT opportunities as well as critical dependence of many business processes on IT and vice-versa. IT risk management issues are not only any more marginal or 'technical' problems and become more and more a 'business problem'. Therefore, in this chapter a Corporate IT Risk Management model is proposed and contemporary frameworks of IT Governance and IT Audit explained. Also, it is depicted how to model information systems and supporting IT procedures to meet 'always-on' requirements that comes from the business. In fact, a number of IT metrics proposed in the chapter support the alignment of IT Governance activities with business requirements towards IT.