IT Governance, Risk, and Compliance

Sep 9 2011   8:31PM GMT

Common Risk Determinants for an IT Architecture – Part V

Robert Davis Robert Davis Profile: Robert Davis

IT project governance can only be effective if those influencing project decisions are adequately informed. Project management policies, procedures, rules, and individual responsibilities should be distributed to all affected parties. Furthermore, the risk awareness program should require participating employees to periodically sign a statement acknowledging their awareness and acceptance of responsibility for project security.

Management should also ensure that employees have the expertise to carry out their IT project responsibilities. To accomplish this expectation, the IT project governance program should include job descriptions; periodically reassessing the adequacy of individual skills; annual training requirements and professional development programs (to aid in ensuring individual skills are adequate and current); and monitoring employee training and professional development accomplishments.

View Part I of the Common Risk Determinants for an IT Architecture series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: