IT Governance, Risk, and Compliance

Sep 6 2011   7:35PM GMT

Common Risk Determinants for an IT Architecture – Part IV

Robert Davis Robert Davis Profile: Robert Davis

Fundamentally, IT policies and procedures should be deployed based on assessed effectiveness and efficiency in addressing managements’ risk appetite. Supporting CE risk reduction activities are managements’ IT project governance policies providing for a(n):
 Project Charter
 Risk Awareness Program
 Project Training Program
 Audit Oversight Committee
 IT Strategy Committee

The project management function should have a formal, written charter establishing the department’s position within the entity. It should document the purpose, responsibility, authority and accountability of the project management function. Minimally, the charter document generated should address detail project management aspects — such as mission statement, organizational structure, risk management, critical success factors, quality assurance, and reporting lines.

View Part I of the Common Risk Determinants for an IT Architecture series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: