December 22, 2012 1:43 AM
Posted by: Robert Davis
Accountability,
Acquire and Implement,
Asset Management,
Availability Management,
COBIT Domains,
Control Objectives for Information and related Technology,
Deliver and Support,
Due Diligence,
Fiduciary Responsibility,
Framework,
Information Assets Protection,
Information Security Governance,
Information Security Management,
ISG,
Key Performance Indicators,
Monitor and Evaluate,
Plan and Organize,
Risk Management,
Value DeliveryUsually, a formal ISG program is required to promote information assets safeguarding. ISG programs should ensure the Control Objectives for Information and related Technology (COBIT) framework confidentiality, integrity, availability, compliance, and reliability information criteria are not...
December 20, 2012 2:52 AM
Posted by: Robert Davis
Accountability,
Acquire and Implement,
Asset Management,
Availability Management,
COBIT Domains,
Control Objectives for Information and related Technology,
Deliver and Support,
Due Diligence,
Fiduciary Responsibility,
Framework,
Information Assets Protection,
Information Security Governance,
Information Security Management,
ISG,
Key Performance Indicators,
Monitor and Evaluate,
Plan and Organize,
Risk Management,
Value DeliveryAcquisitions and implementations are necessary for adequate information security. To realize the information security strategy, information security solutions need to be identified, developed or acquired, as well as implemented and integrated into business and IT processes seamlessly. During an...
December 15, 2012 12:05 AM
Posted by: Robert Davis
Accountability,
Acquire and Implement,
Asset Management,
Availability Management,
COBIT Domains,
Control Objectives for Information and related Technology,
Deliver and Support,
Due Diligence,
Fiduciary Responsibility,
Framework,
Information Assets Protection,
Information Security Governance,
Information Security Management,
ISG,
Key Performance Indicators,
Monitor and Evaluate,
Plan and Organize,
Risk Management,
Security Frameworks,
Value DeliveryInstituting and/or sustaining ISG requires comprehensive planning and organizing; robust acquisitions and implementations; effective delivery and support; as well as continuous monitoring and evaluation to address the myriad of managerial, operational, and technical issues that can thwart...
December 13, 2012 1:52 AM
Posted by: Robert Davis
Accountability,
Acquire and Implement,
Asset Management,
Availability Management,
COBIT Domains,
Continuity Management,
Control Objectives for Information and related Technology,
Deliver and Support,
Due Diligence,
Fiduciary Responsibility,
Framework,
Information Assets Protection,
Information Security Governance,
Information Security Management,
ISG,
Key Performance Indicators,
Monitor and Evaluate,
Performance Measurement,
Plan and Organize,
Risk Management,
Security Frameworks,
Strategic Alignment,
Value DeliveryChapter 1: Information Security Governance
“The information possessed by an organization is among its most valuable assets and is critical to its success. The Board of Directors, which is ultimately accountable for the organization’s success, is therefore...
April 29, 2010 6:17 PM
Posted by: Robert Davis
Control Objectives for Information and related Technology,
E-Governance,
E-Government,
Educational Institutions,
Enterprise Governance,
Entity Governance,
Government Agencies,
Information and Communication Technology,
Information Systems Audit and Control Association,
IT Governance Institute,
IT Infrastructure Library,
IT Service Management,
Non-profit,
Not-for-profit,
Organizational Formation,
Risk Assessment,
Risk Management,
Service Delivery,
Value DeliveryIT governance risk management defines not-for-profit strategic alignment, value delivery, resource management, and performance measurement processes through responses to IT risk assessments. Within this context, as with for-profit entities, the IT risk assessment methodology will vary depending on...
April 26, 2010 5:51 PM
Posted by: Robert Davis
COBIT,
Control Objectives for Information and related Technology,
E-Governance,
E-Government,
Educational Institutions,
Enterprise Governance,
Entity Governance,
Governance Tree,
Government Agencies,
ICT,
Information and Communication Technology,
Information Systems Audit and Control Association,
ISACA,
IT Governance Institute,
IT Infrastructure Library,
IT Service Management,
ITG,
ITGI,
ITSM,
Non-profit,
Not-for-profit,
Organizational Formation,
Risk Assessment,
Risk Management,
Service DeliveryGoverning an entity mandates management accurately conceptualize information criticality and communication paths. Reflective of the Australian/New Zealand Standard on Risk Management (AS/NZS ISO...
April 22, 2010 6:34 PM
Posted by: Robert Davis
COBIT,
Control Objectives,
Control Objectives for Information and related Technology,
E-Governance,
Educational Institutions,
Enterprise Governance,
Entity Governance,
Governance Tree,
Government Agencies,
ICT,
Information and Communication Technology,
Information Systems Audit and Control Association,
ISACA,
IT Governance Institute,
IT Infrastructure Library,
IT Service Management,
ITG,
ITGI,
ITSM,
Non-profit,
Not-for-profit,
Organizational Formation,
Service Delivery,
Value Delivery,
Value RealizationRegarding supplemental value delivery design and development assistance, the Davis’ ‘Governance Tree’ offers a conceptual frame of reference for defining IT governance practices from an information and communication perspective; therefore enabling...
