EITS back button
Back to strategic

IT Governance Review And Design

At its most basic definition, IT governance is the process by which decisions are made around IT investments. Based on this definition, everyone has some form of IT governance. Unfortunately for many firms, the governance process is ad hoc and informal. There is no consistency across the enterprise, accountability is weak - if present at all - and there are no formal mechanisms to measure and monitor the outcomes of decisions.

 

 

At foundation level, our implementation of IT governance foundations and principles training course delivers a thorough insight into the frameworks available for IT governance and their implementation. Building from that, our experience of COBIT® ITIL, ensures an in-depth understanding of the principles and application of  internationally accepted best-practice framework.

 

  • How decisions are made
  • Who makes the decision
  • Who is held accountable
  • How the results of decisions are measured
  • How are measures monitored are all parts of IT governance. 

 

 

There is just too much at stake today for organisations to leave IT governance to chance or legacy processes. This is where we come in to help optimise IT investments as it has become a priority. There is a growing trend on the part of large organisations to elevate IT performance to the board of directors’ level. We help establish that accountability framework by reviewing current practice and developing a governance structure for future investments. 

 

 

 

 

IT governance matrix

In addition to the traditional audit and compensation committee, boards are adding an IT oversight committee to become more involved in the role that IT plays in enabling and executing the enterprise’s strategy. For example, FedEx has established the Information Technology Oversight Committee to oversee major IT-related projects and technology architecture decisions.

 

 

 

 

 

 

 

Our key training sectors include:

 

 

 

Business  Continuity

IT governance

 

ISO27001 and ISO22301 are the standard that defines best practice for developing and implementing a robust business continuity plan to ensure that an organisation’s systems and processes are resilient against outside attack or natural disaster. Our courses lead delegates through a structured learning pathway that covers all aspects of awareness and practical implementation of the standard and ensure effective compliance.

Information Security

Cyber resilience and security
Cyber resilience and security

Information security is fundamentally about safeguarding information and information systems from unauthorised access, use and disclosure. The ISO27001 standard helps organisations throughout the world develop an effective Information Security Management System (ISMS), ensure protection of their assets and achieve a significant competitive advantage. IT Governance is well known for its comprehensive ISO27001 course portfolio, which leads to organisational compliance, as well as career advancement through a structured qualification scheme.

 

 

 

 

 

PCI DSS Compliance

Compliance to the Payment Card Industry Data Security Standard (PCI DSS) is a contractual requirement for organisations that store, process or transmit payment card data. Our courses cover all aspects of implementing the PCI DSS and ensure year to year maintenance of the certification.

Gap analysis

 

Compliance to the Payment Card Industry Data Security Standard (PCI DSS) is a contractual requirement for organisations that store, process or transmit payment card data. Our courses cover all aspects of implementing the PCI DSS and ensure year to year maintenance of the certification.

 

 

 

 

 

 

 

Service Management

IT service management

Our service management course portfolio encompasses ITIL, the recognised best practice for IT service management and the related ISO20000 standards.