You are previewing Governance of IT - An executive guide to ISO/IEC 38500.
O'Reilly logo
Governance of IT - An executive guide to ISO/IEC 38500

Book Description

Directors and government ministers across the world are increasingly being held accountable for failed IT systems, data loss and poor decisions about their organisation’s data. This valuable book is designed to bridge the gap between the governing body and CIOs/ IT managers. It will help the reader create a safe and robust governance framework for their organisation by applying the principles of the ISO IT Governance Standard 38500 on directing, evaluating and monitoring IT activity.

Table of Contents

  1. FRONT COVER
  2. BCS, THE CHARTERED INSTITUTE FOR IT
  3. TITLE PAGE
  4. COPYRIGHT PAGE
  5. CONTENTS
  6. LIST OF FIGURES AND TABLES
  7. AUTHOR
  8. FOREWORD BILL CLIFFORD
  9. ACKNOWLEDGEMENTS
  10. ABBREVIATIONS
  11. TOOLS AND USEFUL RESOURCES
  12. PREFACE
  13. PART A – INTRODUCTION TO THE GOVERNANCE OF IT
    1. 1. HISTORY OF CORPORATE GOVERNANCE
      1. 2000 to current day
      2. Organisational governance
    2. 2. SETTING IT IN THE CONTEXT OF CORPORATE GOVERNANCE
    3. 3. INTRODUCTION TO THE GOVERNANCE OF IT STANDARD ISO/IEC 38500
      1. How did ISO 38500 come about?
    4. 4. THE STANDARD IN DETAIL
      1. Scope and objectives
      2. Framework
      3. Guidance
    5. 5. ONGOING DEVELOPMENT WORK
      1. Guidance documents
      2. Handbooks
    6. 6. BENEFITS OF GOOD IT GOVERNANCE
      1. Cost reduction
      2. Performance improvement
      3. Ability to react quickly to market changes
      4. Bad things that can happen
    7. 7. REVIEW OF PART A
      1. History
      2. The standard – 38500
      3. Benefits
      4. Where to go from here?
  14. PART B – IMPLEMENTING IT GOVERNANCE
    1. 8. INTRODUCTION TO IMPLEMENTATION
    2. 9. BEFORE YOU START ON IMPLEMENTATION
      1. Benefits realisation
      2. Need-gap analysis
      3. Setting expectations
      4. Using existing documents
      5. Taking an inventory of existing governance activity
      6. Test and training strategies
      7. Recap
    3. 10. GETTING THERE – DEVELOPING A PLAN
      1. Benefits of the modular approach
      2. Embedding and communicating the plan
      3. Developing artefacts
      4. Project prioritisation against the principles
      5. Reviewing the organisational chart and building your teams
      6. Reporting on risk
    4. 11. ARRIVING AT THE DESTINATION – EXECUTING THE PLAN
      1. Preparing to roll out the governance framework
      2. Supporting systems
      3. Managing project versus operational workload
      4. Training and testing
      5. Pushing the button
    5. 12. STAYING THERE – MANAGING THE IT GOVERNANCE FRAMEWORK
      1. Post-implementation review
      2. Operational management
      3. Measurement, monitoring and reporting
      4. Standards, templates, guidelines, checklists
    6. 13. MOVING FORWARD – OPTIMISING THE IT GOVERNANCE 109 FRAMEWORK
      1. Frameworks, standards and methodologies
      2. Moving forward without moving backward
      3. Measuring satisfaction – reviewing progress
      4. Building on success
    7. 14. REVIEW OF PART B
      1. Before you start
      2. Getting there
      3. Arriving at the destination
      4. Staying there
      5. Moving forward
      6. Where to from here?
  15. APPENDIX A: THE BOARD REPORT
    1. Cascading balanced score card example
  16. APPENDIX B: CHARTER EXAMPLE
  17. REFERENCES
  18. BACK COVER