IT Governance, Risk, and Compliance

Apr 5 2011   5:45PM GMT

Managing the Dynamic Uncertainties of IT – Part VIII

Robert Davis Robert Davis Profile: Robert Davis

Technology is an enabler, not a solution, for deploying and executing a sound operational strategy. To ensure effectiveness, responsibility for executing an adopted strategy should be shared across the entity, making all employees accountable as part of a well-defined and articulated risk management program. Where this premise is institutionalized, a primary IT risk management practice should be vetting recommendations minimizing uncertainty, while considering the affect on IT functionality and usability. Consequently, comprehensive high-level IT risk assessments should be the starting point for developing or modifying an entity’s business and IT plans as well as associated policies, procedures, and standards.

View Part I of the Managing the Dynamic Uncertainties of IT series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: