ITIL^®, COBIT^® and ISO 20000 - Training and Consultancy

What is IT Governance? Corporate governance, the management practices for controlling organisations, has been formally adopted by most of the countries in the world following the publication in the UK of the Cadbury report, Financial Aspects of Corporate Governance  in December 1992. All G-20 countries and a total of around 85 countries have corporate governance codes in place.

IT Governance fits into the overall Corporate Governance strategy of the organisation.

IT Governance focuses on the performance and risk management of IT and has two primary goals;

• Assurance that IT-enabled investments generate business value and that risks are mitigated -  i.e. Performance
• Assurance that the business meets compliance with internal policies and statutory and regulatory requirements such as Sarbanes-Oxley Act, Basel II, MiFiD and Solvency II – i.e. Conformance

Since 2008, IT Governance has been specified by an international standard ISO/IEC 38500 - Corporate governance of information technology

Corporate governance of IT is defined by ISO/IEC 38500 as

•  “the system by which the current and future use of IT is directed”.

In the last few years, IT governance professionals have started to refer to IT governance (or Corporate governance of IT) as Enterprise Governance of IT (sometimes written GEIT – governance of enterprise IT) and in 2009 a qualification Certified in the Governance of Enterprise IT (CGEIT) was created by ISACA to recognise professionalism and competence in IT governance.