IT Governance, Risk, and Compliance:

COBIT


August 30, 2011  8:47 PM

Common Risk Determinants for an IT Architecture – Part II



Posted by: Robert Davis
COBIT, Control Environment, IT Architecture, Project Management

Communicating the expectation for adequate IT controls to every entity employee aids in establishing an effective ITG support structure. Therefore, ITG should be installed to convey managements’ CE...

August 26, 2011  9:52 PM

Common Risk Determinants for an IT Architecture – Part I



Posted by: Robert Davis
COBIT, Control Environment, IT Architecture, Project Management, Third Party Providers, TPP

An entity’s control environment (CE) can provide discipline and structure to processes ensuring operational, financial, and compliance requirements are adequately addressed. As an integrated component, technology...


April 5, 2011  5:45 PM

Managing the Dynamic Uncertainties of IT – Part VIII



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Illegal Acts, Risk Assessment, Risk Management

Technology is an enabler, not a solution, for deploying and executing a sound operational strategy. To ensure effectiveness, responsibility for executing an adopted strategy should be shared across the entity, making all employees accountable as...


April 1, 2011  6:32 PM

Managing the Dynamic Uncertainties of IT – Part VII



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Illegal Acts, Risk Assessment, Risk Management

An IT risk assessment can classify information assets by criticality, sensitivity, and impact on operations. For most entities, comprehensive IT risks evaluations should be iterative and adaptive processes. Therefore, adequate IT risk management...


March 29, 2011  8:28 PM

Managing the Dynamic Uncertainties of IT – Part VI



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Illegal Acts, Risk Assessment, Risk Management

An adequate IT plan describes predetermined objectives, goals as well as ambit with sufficient supporting detail to guide risk assessment development. Correspondingly, IT risk assessment plans should reflect applicable IT standards and practice statements issued by governing bodies. Whereby,...


March 25, 2011  3:32 PM

Managing the Dynamic Uncertainties of IT – Part V



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Illegal Acts, Risk Assessment, Risk Management

The IT program’s ambit generally dictates the risk assessment approach. Regarding techniques, the IT program’s ambit determines ‘what’ will be assessed, ‘how’ it will be assessed and assessment limits. Reflective of the IT planning premise, evaluating...


March 22, 2011  5:36 PM

Managing the Dynamic Uncertainties of IT – Part IV



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Illegal Acts, Risk Assessment, Risk Management

Selecting a discretionary IT risk management framework imposes defining spending limits, work assignments and information decisions for creating and managing a viable strategically aligned IT management plan. ...


March 18, 2011  8:30 PM

Managing the Dynamic Uncertainties of IT – Part III



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Illegal Acts, Risk Assessment, Risk Management

Managerial monitoring of deployed controls focusing on redressing external and internal environment quality assists in ensuring the established fiduciary relationship with stakeholders is fulfilled. An entity’s control environment quality is a major factor impacting irregular...


March 15, 2011  7:16 PM

Managing the Dynamic Uncertainties of IT – Part II



Posted by: Robert Davis
Adaptive Process, Adaptive Systems, COBIT, Control Environment, Dynamic Equilibrium, Risk Assessment, Risk Management

Risk management should be a continuous, adaptive effort addressing: threats, opportunities, and vulnerabilities. In pursuit of achieving dynamic homeostasis for IT, effective "


July 27, 2010  3:28 PM

Not-for-profit Risk Management – Part VIII



Posted by: Robert Davis
COBIT, Educational Institutions, Enterprise Governance, Entity Governance, Governance Tree, Government Agencies, ICT, IT Architecture, IT Service Management, ITG, ITSM, Performance Measurement, Risk Assessment, Risk Management, Risk Tolerance, Strategic Planning, Value Delivery

Deploying Enterprise Governance bilaterally connected to IT Governance enables management to focus on value creation drivers that move an entity forward and sustain proper as well as adequate controls. ...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: