IT Governance: Guidelines for Directors
By: Alan Calder (author)Hardback
4 - 6 days availability
Clear guidance on aligning IT with the business Aligning IT with the business is a key objective for boards and executives. Organizations with effective IT governance consistently generate better returns for their shareholders than equivalent organizations with ineffective IT governance, and the directors of companies that effectively govern their IT are significantly less exposed to compliance and shareholder challenges than others. It links IT governance to today's corporate governance environment and assesses the corporate impact that the convergence of financial, accounting and governance frameworks will have on organizations competing in today's economy. Security governance and the role of the CIO Whether it's protecting the organization from cyber-criminals, avoiding privacy protection failures or getting IT projects to come in on time, to budget and to specification, this book has the answers. The proper role of the CIO, appropriate IT departmental structures and the relationship between business strategy and IT strategy are all examined and pragmatic, new approaches proposed. It is not a technology book.
It is written specifically for directors, executives and senior business advisers - a high level guide to the business-critical subject of leveraging IT to compete more effectively in the information economy.
Alan Calder is the founder director of IT Governance Ltd (www.itgovernance.co.uk), a information, advice and consultancy firm that helps company boards tackles governance, risk management, compliance and information security issues. He has many years of senior management experience in the private and public sectors. The company's website also provides access to a range of unique books, tools and other publication on governance, risk management, compliance and information security.
INTRODUCTION 9 Symptoms of inadequate IT governance 9 Competitiveness 10 Shareholder accountability 12 Compliance 13 Directors' personal liability 14 Conclusion 18 CHAPTER 1: WHY IT GOVERNANCE MATTERS 19 Governance background 19 Information economy, intellectual capital 21 Competitiveness 23 Governance convergence 25 Strategic and operational risk management 26 Regulatory compliance 28 Information risk 29 Strategic system deployment and project governance 30 Benefits of an IT governance framework 31 CHAPTER 2: GOVERNANCE AND RISK MANAGEMENT 33 Fiduciary duties 34 Governance frameworks 35 OECD Principles of Corporate Governance 35 BIS and Basel 2 36 Operational risk 37 Capital markets and financial reporting convergence 38 Converging audit requirements 39 UK Companies Act 2004 40 EU 8th Company Law Directive 41 Corporate Governance in Europe 42 Combined Code and the Turnbull Guidance 43 The Turnbull Report 44 Revised Combined Code 44 Sarbanes Oxley 48 Internal controls and audit 49 Risk management framework 51 Risk Assessment 52 Controls 53 Risk management 53 Conclusions 54 CHAPTER 3: INTELLECTUAL CAPITAL 56 Knowledge assets 57 Tangible relevance 58 Structure of intellectual capital 59 The role of IT governance 61 Beyond knowledge management 62 Protecting intellectual assets 64 Copyright 66 Design 66 Patent 66 Trademark 67 Third party intellectual property rights (IPR) 68 Software copyright 68 Conclusion 70 CHAPTER 4: COMPLIANCE 72 Privacy and Data Protection 72 OECD Guidelines 73 Tomorrow 74 National regulation 75 EU Regulation 76 UK Regulation 76 US Regulation 78 APEC regulation 81 Anti-spam legislation 81 Freedom of Information legislation 84 Computer misuse legislation 85 Human Rights 87 Other legislation 89 Record retention and destruction 89 Conclusion 91 CHAPTER 5: INFORMATION RISK 92 Overview of threats and impacts 92 Threats 92 Impacts 94 Information security governance 95 Governance failure 97 Complexity and larger organizations 98 Threats to larger organizations 98 Vulnerabilities in larger organizations 99 Impacts on larger organizations 100 'Traditional' external threats 101 'Traditional' insider threats 102 Organized crime 104 Terrorism 106 Emerging trends 107 Information security best practice 108 The need for metrics 109 CHAPTER 6: SYSTEM DEPLOYMENT AND PROJECT RISK 111 Project failure 112 Project governance objectives 113 Execution risk 115 Executive level project governance 116 Board level project governance 117 Conclusions 119 CHAPTER 7: DESIGNING AN IT GOVERNANCE FRAMEWORK 120 Business context and culture 120 IT governance framework 123 Business, information and ICT strategies 125 IT steering and executive committees 127 Board steering committee 129 Executive committee 132 Enterprise IT architecture committee 133 Technology committee 134 Hierarchy of IT decisions 135 Key implementation principles 135 Follow the money 136 Mind the gap 137 Reporting and monitoring framework 137 IT audit 138 External systems and standards 139 Metrics 141 CHAPTER 8: IT GOVERNANCE IN ACTION 142 'Operationalization' of strategy 142 Responsibility and accountability 144 IT goals, functional organization and communication 146 Communication 148 Information Strategy 149 ICT Strategy 150 Application strategy 152 Enterprise IT architecture 153 Project governance 154 Portfolio management 155 Risk management 157 Change Management 158 Information security and compliance 158 Information risk assessment 159 Compliance risks 159 IT performance optimisation 160 CHAPTER 9: ISSUES FOR THE PUBLIC SECTOR AND NOT-FOR-PROFIT ORGANIZATIONS 162 Public sector organizations 162 Voluntary sector organizations 168 CHAPTER 10: IT'S ALL ABOUT LEADERSHIP 170 Board leadership 171 CEO's role 172 CIO leadership 174 IT users 175 FURTHER READING 177 USEFUL WEBSITES 179
Number Of Pages:
- ID: 9781905356072
- Saver Delivery: Yes
- 1st Class Delivery: Yes
- Courier Delivery: Yes
- Store Delivery: Yes
Prices are for internet purchases only. Prices and availability in WHSmith Stores may vary significantly
© Copyright 2013 - 2017 WHSmith and its suppliers.
WHSmith High Street Limited Greenbridge Road, Swindon, Wiltshire, United Kingdom, SN3 3LD, VAT GB238 5548 36