Starting from The Strategic Level
Before delving too deeply into the governancesystem’s operational and tactical implementation,an enterprise’s key stakeholders must be consulted.The goal is t… COBIT 2019 in Action
This scenario involves an enterprise that has recentlyperformed an assessment and discovered that itsarchetype best reflects the gr… Tackling Governance at Theoperational Level
At the level of operational implementation,enterprises may choose between InternationalOrganization for Standardization/International… Rolling Up Sleeves and Getting Tactical
Many enterprises stop at the operational level fromboth an implementation and a review (audit)perspective. Frameworks are prevalent in thecybersecurit… Conclusion
There are many ways to take a governance programto the next level and mitigate business and ITcommunication issues. The proposed guidelinesherein shoul… Endnotes
1 Joint Task Force Interagency Working Group, Security and Privacy Controls for Information Systems and Organizations: Revision 5, NIST Special Publica… It defines and enforces activities like:
Board composition Corporate disclosure Executive compensation How executives gather data, make strategic decisions, communicate with key stakeholders and determine who joins the board all depend on governance.Some
examples of external
government controls include: Laws limiting the locations where oil companies can extract resources Regulations regarding how companies can use and share data from customers Tax code explaining how much businesses owe on different types of company earnings Industry standards
Examples of strong governance structures include: