IT Governance, Risk, and Compliance

Dec 31 2010   6:10PM GMT

Governing IT: Policy Formulation and Enforcement – Part V

Robert Davis Robert Davis Profile: Robert Davis

Management’s intentions for IT can be implemented manually and/or technologically. Nevertheless, effective IT policy enforcement ultimately depends on the actions of individuals and control systems responsible for monitoring assigned activities. IT policy enforcement is commonly based on monitoring activities considered critical to achieving the stated objective. An entity’s monitoring personnel rely on established and maintained activity-authority relationships to enforce management’s intentions conveyed in adopted policies. As potential legal consequences, various criminal and civil charges as well as fines and penalties could confront an entity as well as employees, if there are deviations from established IT policies.

View Part I of the Governing IT: Policy Formulation and Enforcement series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: