osrin.net

Several blogs this week caught the ratification of IS 38500 by the ISO, at standard providing a framework for Corporate Governance of Information Technology.

Serge Thorn talks a little about the origins of this work, discussing how it draws from an Australian Standard, AS8015;

Establish clearly understood responsibilities for ICT (eg, ensure individuals understand and accept their responsibilities)

Plan ICT to best support the organisation (eg, ensure ICT plans fit current and future needs and the organisation’s corporate plans)

Acquire ICT validly (eg, ICT acquisitions should be made for approved reasons and in the approved way; on the basis of ongoing analysis)

Ensure ICT performs well, whenever required (eg, ensure ICT is fit for its purpose and is responsive to changing requirements)

Ensure ICT conforms with formal rules (eg, ensure compliance with external regulations and internal policies and practices)

Ensure ICT use respects human factors (eg, ensure ICT meets the evolving needs of the ‘people in the process’)

Consistent governance of information technology in corporate environments helps drive several different agendas, including assisting with delivering on the goal of interoperability between systems across diverse organizations which becomes easier as organizations become more predictable.

If you want to find out more about IS 38500 then Rod Drury provides a way to contact the ISO Chair for JTC1/SC7, Alison Holt, or you can download the standard from ISO directly by following this link.