How well do organizations govern their use of information technology? What resources are needed to help improve the effectiveness of that governance?
Every organization, large or small, needs to address these and related matters. Always have had to, and always will have to – but not always done effectively, sometimes not addressed at all.
Answering questions like these is the special interest of Mark Toomey, Managing Director of Infonomics, who help organizations ensure that their current and future use of IT is effective, efficient and acceptable.
Mark has written a book Waltzing with the Elephant which “explores, in plain language, the need for organisations to effectively govern their use of information technology. Building from the notion that governance of information technology is integral to governing the organisation, Waltzing with the Elephant explains how business leaders can engage on their terms, in their language, and exert effective control through a comprehensive, fully integrated system for governance and management that parallels the systems used to govern other assets and resources.”
Please refer to my December 2008 article Corporate governance of IT - Critical for all organizations, large or small and listen to the associated podcast (linked on the final page of the article).
While the podcast was carried out some 18 months ago, the matters discussed are not in any way out of date. They are of perennial concern to anybody involved in IT, from the organization’s governing board, through IT management and supervisors, right down to the “coal front” of programmers and administrators. People at all levels have a greater or lesser degree of involvement. Ignorance is no excuse!
Infonomics publishes a monthly newsletter that you owe it to yourself to subscribe to. These newsletters will bring you up to date with what’s been happening on the governance and compliance side of IT since 2008, such as developments on the ISO/IEC 38500 international standard front:
Good corporate governance is as much about behaviour as it is about process, and ISO/IEC 38500 provides clear advice about behaviour, through six key principles for good governance of IT.
ISO/IEC 38500 provides the essential key to helping organisations ensure that they do have effective direction and control of their IT, because it provides the context in which to understand that Corporate Governance of IT has to address both demand for, and supply of IT.
In the Infonomics newsletter April 2010 edition Mark refers to the two questions raised at the start of this blog post. These questions were at the core of an international survey on governance and management of information technology conducted by Infonomics during February and March 2010.
For example, the survey results point to considerable gaps in the ability of boards to provide appropriate oversight of IT, compounded by corresponding weakness in executive management’s capability to set appropriate direction, control and monitor the IT agenda.
This is all extremely important stuff! So I heartily recommend that you enrol for the monthly Infonomics newsletter and keep yourself aware of the latest developments in the IT governance/compliance field.