To strengthen the positioning of IT in the design of corporate governance is based on six core principles. The corporate and IT strategies are only slightly interlocked in most cases. According to a study in the last year is only 13 per cent a very narrow and only when another 18 percent, a close coordination between the goals of business and IT alignment. According to the consulting firm Serview light shows up but with a new ISO standard on the horizon. “So that IT departments and their leaders can find assistance for their appropriate position in the company, the standards body has last year the international standard ISO/IEC 38500:2008 corporate governance in information technology’ developed ‘, explains Dr. Gisela Bondgen, business consultant at Serview. He aims to corporate governance as the ultimate key for a powerful and strong acceptance of use of IT in the company as public institutions effectively to establish. To the design of corporate governance, the ISO/IEC 38500 foresees six principles which are relevant to the management processes as decision areas: responsibility: top management created the required perception of IT matters.

Strategy: It applies to expand corporate strategic planning with a view on the potentials of IT and to derive the IT strategy from the corporate strategies. Acquisition: The design of IT budgets must be oriented consistently within the framework of transparent decision-making processes on demand. Performance: The IT services are to make precise according to the requirements of technical and organizational areas. Conformance: IT must go, etc. conform with all legal provisions, standards, internal standards. Human behaviour: it is to attach a great deal of attention the needs of internal and external IT users in the concepts of IT. Three functions are mapped to by the ISO/IEC 38500 all six principles, resulting in a matrix with 18 fields of performance: evaluation: continuous assessment of the use of the it management: Control the business oriented focus of the IT measures.

“Control: the systematic monitoring of compliance and performance concerning it. we have no doubt that this set of rules for corporate governance very quickly will prevail in practice, because there is a significant need for a clear regulatory framework”, Dr. Bondgen shows very optimistic. The first signals from the market would prove this. So, first events by Serview to the ISO/IEC 38500 took a very well-attended. Although the subject barely in public was discussed.

Tags: ,