IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT

  • 2h 10m
  • Alan Calder, Steve Moir
  • IT Governance
  • 2009

Corporate governance increasingly provides the context within which twenty-first century organizations have to assess and deal with their investments in, and risks to, their corporate information assets and the Information and Communications Technology (ICT, or just IT) infrastructure within which those information assets are collected, manipulated, stored and deployed. But what is corporate governance, and why is it important to the IT professional? Why is IT governance important to the company director, and what do directors of companies both quoted and unquoted need to know? This book aims to do two things: the first is to set out for managers, executives and IT professionals the practical steps necessary to meet today's corporate and IT governance requirements; the second is to provide practical guidance on how board executives and IT professionals can navigate and deploy to best corporate and commercial advantage the numerous IT management and IT governance frameworks and standards particularly ISO/IEC 38500 that have been published over the course of the last 10 years. Each of these standards and frameworks has a potentially valuable role to play in the organization; the challenge lies in integrating them so that each can deliver what it was designed to do, and do this within the context of an overarching framework (a super framework , or meta-framework ) that enables each organization to design IT governance to meet its own needs.

About the Author

Alan Calder is a leading author on information security and IT governance issues. He is Chief Executive of IT Governance Limited, the one stop shop for books, tools, training and consultancy on governance, risk management and compliance. He is also Chairman of the Board of Directors of CEME, a public-private sector skills partnership. Alan is an international authority on IT Governance and, with Steve Moir, originated the innovative Calder-Moir IT Governance Framework. He is also an international expert on ISO27001 (formerly BS7799), the international security standard, about which he wrote with colleague Steve Watkins the definitive compliance guide, IT Governance: A Manager's Guide to Data Security and BS7799/ISO17799. This work is based on his experience of leading the world's first successful implementation of BS7799 (with the fourth edition published in May 2008) and is the basis for the UK Open University's postgraduate course on information security. Other books written by Alan include The Case for ISO27001, ISO27001 - Nine Steps to Success, IT Governance: Guidelines for Directors, IT Governance Today: a Practitioner's Handbook and IT Regulatory Compliance in the UK. Alan is a frequent media commentator on information security and IT governance issues, and has contributed articles and expert comment to a wide range of trade, national and online news outlets. Alan was previously CEO of Wide Learning, a supplier of e learning; of Focus Central London, a training and enterprise council; and of Business Link London City Partners, a government agency focused on helping growing businesses to develop. He was a member of the Information Age Competitiveness Working Group of the UK Government's Department for Trade & Industry, and was until recently a member of the DNV Certification Services Certification Committee, which certifies compliance with international standards including ISO27001.

In this Book

  • IT Governance—Implementing Frameworks and Standards for the Corporate Governance of IT
  • Foreword
  • Preface
  • Corporate Governance Context
  • IT Governance Defined
  • Intellectual Capital and the Information Economy
  • Strategy: The Search for Competitive Advantage
  • Governance and Risk Management
  • It Regulatory Compliance
  • Information and Continuity Risk
  • Internal Control Frameworks
  • Project Governance
  • Components of IT Governance
  • ISO/IEC 38500
  • It Governance Frameworks and Standards
  • The Calder-Moir Framework
  • Implementing IT Governance
  • Decision Making and the IT Organisation
  • It Steering Committee and Executive Committee
  • Enterprise It Architecture Committee
  • IT Audit
  • The ITIL/COBIT/ISO27002 Joint Framework
  • The It Management System of Tomorrow
  • Calder-Moir Implementation—A 15-Step Process
  • Making the Business Case for IT Governance
  • ITG Resources


Rating 4.8 of 44 users Rating 4.8 of 44 users (44)
Rating 4.7 of 26 users Rating 4.7 of 26 users (26)