IT Governance, Risk, and Compliance

Jan 14 2011   7:06PM GMT

Governing IT: Setting Control Objectives – Part I

Robert Davis Robert Davis Profile: Robert Davis

Reducing IT related errors, mistakes, omissions, irregularities, and illegal acts should be an explicit policy of every passive or active entity. Institutionalizing such a policy requires documenting and conveying “statements of objectives” for reducing these common IT risks to an acceptable level. Wherefore, considering the impact on an entity’s internal control system, “Setting objectives and establishing processes to accomplish designed objectives is a managerial responsibility. Tactically, the manager responsible for a plan’s implementation should set objectives with advice obtained from the entity’s planning committee, top-level executives and line subordinates.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: