• Home

  • Documents

  • Information technology — Governance of IT — Governance …IEC... · Information technology —...
9

Click here to load reader

Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

Embed Size (px)

Citation preview

Page 1: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

Information technology — Governance of IT — Governance of data —Part 2: Implications of ISO/IEC 38505-1 for data managementTechnologies de l'information — Gouvernance des technologies de l'information —Partie 2: Implications de l'ISO/IEC 38505-1 pour la gestion des données

TECHNICAL REPORT

ISO/IEC TR38505-2

First edition2018-06

Reference numberISO/IEC TR 38505-2:2018(E)

© ISO/IEC 2018

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 2: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

ii © ISO/IEC 2018 – All rights reserved

COPYRIGHT PROTECTED DOCUMENT

© ISO/IEC 2018All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of the requester.

ISO copyright officeCP 401 • Ch. de Blandonnet 8CH-1214 Vernier, GenevaPhone: +41 22 749 01 11Fax: +41 22 749 09 47Email: [email protected]: www.iso.org

Published in Switzerland

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 3: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

Foreword ........................................................................................................................................................................................................................................ivIntroduction ..................................................................................................................................................................................................................................v1 Scope ................................................................................................................................................................................................................................. 12 Normative references ...................................................................................................................................................................................... 13 Termsanddefinitions ..................................................................................................................................................................................... 14 Governance and management roles ................................................................................................................................................. 2

4.1 General ........................................................................................................................................................................................................... 24.2 The governance role ........................................................................................................................................................................... 24.3 The management role ....................................................................................................................................................................... 4

5 Connecting business strategy to data management ........................................................................................................ 56 Establishing policies through the checklist of considerations ............................................................................. 7Annex A (informative) Example worksheets .............................................................................................................................................10Annex B (informative) Applying the guidance — example coffee shop .........................................................................18Annex C (informative) Case study example — travel service company .........................................................................22Annex D (informative)Casestudyexample—Chinafinancialindustry ......................................................................25Annex E (informative) Case study example — air transport ICT company ................................................................30Bibliography .............................................................................................................................................................................................................................36

© ISO/IEC 2018 – All rights reserved iii

Contents Page

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 4: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

Foreword

ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.

The procedures used to develop this document and those intended for its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of ISO document should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Directives, Part 2 (see www .iso .org/directives).

Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during the development of the document will be in the Introduction and/or on the ISO list of patent declarations received (see www .iso .org/patents).

Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement.

For an explanation on the voluntary nature of standards, the meaning of ISO specific terms and expressions related to conformity assessment, as well as information about ISO's adherence to the World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see the following URL: www .iso .org/iso/foreword .html.

This document was prepared by Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 40, IT Service Management and IT Governance.

A list of all parts in the ISO 38505 series can be found on the ISO website.

iv © ISO/IEC 2018 – All rights reserved

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://www.iso.org/directives-and-policies.html
https://www.iso.org/patents
https://www.iso.org/iso/foreword.html
https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 5: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

Introduction

This document describes what the governing body of an organization expects and requires from the data management team in order to be assured that the governing principles of IT can be implemented and are being upheld for data and its use by the organization.

As the core business processes of nearly all organizations become much more reliant on data, the strategic use of that data makes its governance a priority for the governing bodies of organizations. This governance of data, as part of the overall governance of IT, aims to help the organization extract business value from the data, while operating at an acceptable level of risk and with an appropriate level of accountability of the data and its use.

The governing body is responsible for the strategy of the organization and as ISO/IEC TR 38502 states: “Managers are responsible for achieving organizational strategic objectives within the strategies and policies for use of IT set by the governing body”.

However, management not only accepts the strategy as set by the governing body, it should also provide proposals and plans to assist with the creation of that strategy.

The impact of data to the organization can be highlighted through its many potential uses - including improving operations, altering the nature of products and services, informing and enabling employees, customers and suppliers.

Management can inform the governing body of the existing and required data management capabilities to support such data uses as well as inform them of technologies that enable new data scenarios that can impact strategic plans.

The governing body evaluates such data use options and forms a strategy regarding the use of data and the associated value, risk and constraints so it aligns to and supports the overall organizational purpose.

Utilizing the framework outlined in ISO/IEC 38505-1, this document examines the data management implications of such strategy, showing how the strategy can inform data policy, processes and controls. Those same controls and processes should also be designed to monitor the implementation of the strategy such that the governing body can be assured of the performance and conformance to the strategy.

© ISO/IEC 2018 – All rights reserved v

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 6: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

ii © ISO/IEC 2018 – All rights reserved

COPYRIGHT PROTECTED DOCUMENT

© ISO/IEC 2018All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of the requester.

ISO copyright officeCP 401 • Ch. de Blandonnet 8CH-1214 Vernier, GenevaPhone: +41 22 749 01 11Fax: +41 22 749 09 47Email: [email protected]: www.iso.org

Published in Switzerland

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 7: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

Foreword ........................................................................................................................................................................................................................................ivIntroduction ..................................................................................................................................................................................................................................v1 Scope ................................................................................................................................................................................................................................. 12 Normative references ...................................................................................................................................................................................... 13 Termsanddefinitions ..................................................................................................................................................................................... 14 Governance and management roles ................................................................................................................................................. 2

4.1 General ........................................................................................................................................................................................................... 24.2 The governance role ........................................................................................................................................................................... 24.3 The management role ....................................................................................................................................................................... 4

5 Connecting business strategy to data management ........................................................................................................ 56 Establishing policies through the checklist of considerations ............................................................................. 7Annex A (informative) Example worksheets .............................................................................................................................................10Annex B (informative) Applying the guidance — example coffee shop .........................................................................18Annex C (informative) Case study example — travel service company .........................................................................22Annex D (informative)Casestudyexample—Chinafinancialindustry ......................................................................25Annex E (informative) Case study example — air transport ICT company ................................................................30Bibliography .............................................................................................................................................................................................................................36

© ISO/IEC 2018 – All rights reserved iii

Contents Page

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 8: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

Foreword

ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.

The procedures used to develop this document and those intended for its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of ISO document should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Directives, Part 2 (see www .iso .org/directives).

Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during the development of the document will be in the Introduction and/or on the ISO list of patent declarations received (see www .iso .org/patents).

Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement.

For an explanation on the voluntary nature of standards, the meaning of ISO specific terms and expressions related to conformity assessment, as well as information about ISO's adherence to the World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see the following URL: www .iso .org/iso/foreword .html.

This document was prepared by Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 40, IT Service Management and IT Governance.

A list of all parts in the ISO 38505 series can be found on the ISO website.

iv © ISO/IEC 2018 – All rights reserved

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://www.iso.org/directives-and-policies.html
https://www.iso.org/patents
https://www.iso.org/iso/foreword.html
https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview
Page 9: Information technology — Governance of IT — Governance …IEC... · Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1

ISO/IEC TR 38505-2:2018(E)

Introduction

This document describes what the governing body of an organization expects and requires from the data management team in order to be assured that the governing principles of IT can be implemented and are being upheld for data and its use by the organization.

As the core business processes of nearly all organizations become much more reliant on data, the strategic use of that data makes its governance a priority for the governing bodies of organizations. This governance of data, as part of the overall governance of IT, aims to help the organization extract business value from the data, while operating at an acceptable level of risk and with an appropriate level of accountability of the data and its use.

The governing body is responsible for the strategy of the organization and as ISO/IEC TR 38502 states: “Managers are responsible for achieving organizational strategic objectives within the strategies and policies for use of IT set by the governing body”.

However, management not only accepts the strategy as set by the governing body, it should also provide proposals and plans to assist with the creation of that strategy.

The impact of data to the organization can be highlighted through its many potential uses - including improving operations, altering the nature of products and services, informing and enabling employees, customers and suppliers.

Management can inform the governing body of the existing and required data management capabilities to support such data uses as well as inform them of technologies that enable new data scenarios that can impact strategic plans.

The governing body evaluates such data use options and forms a strategy regarding the use of data and the associated value, risk and constraints so it aligns to and supports the overall organizational purpose.

Utilizing the framework outlined in ISO/IEC 38505-1, this document examines the data management implications of such strategy, showing how the strategy can inform data policy, processes and controls. Those same controls and processes should also be designed to monitor the implementation of the strategy such that the governing body can be assured of the performance and conformance to the strategy.

© ISO/IEC 2018 – All rights reserved v

This is a preview of "ISO/IEC TR 38505-2:2...". Click here to purchase the full version from the ANSI store.

https://webstore.ansi.org/RecordDetail.aspx?sku=ISO%2FIEC%20TR%2038505-2:2018&source=preview

Introducing ISO IEC 38500 Corporate Governance in ICT

Introducing ISO IEC 38500 Corporate Governance in ICT

Documents
ANALISIS PERBANDINGAN PERHITUNGAN HARGA POKOK …eprints.umm.ac.id/38505/1/Pendahuluan.pdf · 2018. 10. 25. · ANALISIS PERBANDINGAN PERHITUNGAN HARGA POKOK PRODUKSI DENGAN METODE

ANALISIS PERBANDINGAN PERHITUNGAN HARGA POKOK …eprints.umm.ac.id/38505/1/Pendahuluan.pdf · 2018. 10. 25. · ANALISIS PERBANDINGAN PERHITUNGAN HARGA POKOK PRODUKSI DENGAN METODE

Documents
CDO y Data Governance en Data Driven Companies - afsmi.esafsmi.es/wp-content/uploads/2018/03/asmf_caballero_cdoydg_07_03_18-1.pdf · ISO / IEC 38500 IT Governance ISO 25012 Calidad

CDO y Data Governance en Data Driven Companies - afsmi.esafsmi.es/wp-content/uploads/2018/03/asmf_caballero_cdoydg_07_03_18-1.pdf · ISO / IEC 38500 IT Governance ISO 25012 Calidad

Documents
PECB Certified ISO/IEC 38500 IT Governance Manager · PDF filePECB-820-23-ISO/IEC 38500 IT Governance Manager Exam Preparation Guide Page 2 of 13 The objective of the “PECB Certified

PECB Certified ISO/IEC 38500 IT Governance Manager · PDF filePECB-820-23-ISO/IEC 38500 IT Governance Manager Exam Preparation Guide Page 2 of 13 The objective of the “PECB Certified

Documents
Corporate governance of information technology - … Content/Documents... · ISO/IEC 38500 Corporate governance of information technology First mover seminar Amsterdam/Schiphol, NH

Corporate governance of information technology - … Content/Documents... · ISO/IEC 38500 Corporate governance of information technology First mover seminar Amsterdam/Schiphol, NH

Documents
Newsletter IeC AffIlIAte CouNtry · PDF fileAffiliate Newsletter No. 28, January 2013 4 REGIDESO – the Governance of Water Supply, Ministry of Industry and SMEs, ... The IEC made

Newsletter IeC AffIlIAte CouNtry · PDF fileAffiliate Newsletter No. 28, January 2013 4 REGIDESO – the Governance of Water Supply, Ministry of Industry and SMEs, ... The IEC made

Documents
PECB Certified ISO/IEC 38500 IT Corporate Governance Manager · ISO/IEC 38500 IT Governance Manager training enables you to gain a thorough understanding of the core principles for

PECB Certified ISO/IEC 38500 IT Corporate Governance Manager · ISO/IEC 38500 IT Governance Manager training enables you to gain a thorough understanding of the core principles for

Documents
PECB Certified ISO/IEC 38500 Lead IT Governance Manager · ISO/IEC 38500 Lead IT Governance Manager training enables you to acquire the expertise to support and lead an organization

PECB Certified ISO/IEC 38500 Lead IT Governance Manager · ISO/IEC 38500 Lead IT Governance Manager training enables you to acquire the expertise to support and lead an organization

Documents
Court File No. 38505 IN THE SUPREME COURT OF CANADA (ON

Court File No. 38505 IN THE SUPREME COURT OF CANADA (ON

Documents
ICT POLICIES AND FRAMEWORK - Breede · PDF fileISO/IEC 38500 International Standard on Corporate Governance of ICT (ISO/IEC WD 38500: 2008: 1) ITGI™ ICT Governance Institute ITIL

ICT POLICIES AND FRAMEWORK - Breede · PDF fileISO/IEC 38500 International Standard on Corporate Governance of ICT (ISO/IEC WD 38500: 2008: 1) ITGI™ ICT Governance Institute ITIL

Documents
IT Service Management PresentationISO/IEC JTC 1/SC 40 IT Service Management and IT Governance The work of SC 40 will initially cover: • Governance of IT, including the development

IT Service Management PresentationISO/IEC JTC 1/SC 40 IT Service Management and IT Governance The work of SC 40 will initially cover: • Governance of IT, including the development

Documents
PECB Certified ISO/IEC 38500 IT Governance Manager...ISO/IEC 38500 IT Governance Manager training enables you to gain a thorough understanding of the core principles for good governance

PECB Certified ISO/IEC 38500 IT Governance Manager...ISO/IEC 38500 IT Governance Manager training enables you to gain a thorough understanding of the core principles for good governance

Documents
õ4ffiÊ 0 and C02) , , Mission Pharmacal Company (P) 38505 ... · õ4ffiÊ 0 and C02) , , Mission Pharmacal Company (P) 38505 Il-1 10 west, Boerne, Texas. 78006, U.S.A. (0) 10999

õ4ffiÊ 0 and C02) , , Mission Pharmacal Company (P) 38505 ... · õ4ffiÊ 0 and C02) , , Mission Pharmacal Company (P) 38505 Il-1 10 west, Boerne, Texas. 78006, U.S.A. (0) 10999

Documents
IT Governance Helping Business Survival”misrc.umn.edu/seminars/slides/2008/C2C IT... · ISO/IEC 38500:2008Corporate governance of information

IT Governance Helping Business Survival”misrc.umn.edu/seminars/slides/2008/C2C IT... · ISO/IEC 38500:2008Corporate governance of information

Documents
NEWS ISO STANDARDS: 2019/01 · NEWS ISO STANDARDS: 2019/01 ISO/IEC DIS 38506 88.00 € ISO/IEC DIS 38506 Information technology - Governance of IT - Application of ISO/IEC 38500 to

NEWS ISO STANDARDS: 2019/01 · NEWS ISO STANDARDS: 2019/01 ISO/IEC DIS 38506 88.00 € ISO/IEC DIS 38506 Information technology - Governance of IT - Application of ISO/IEC 38500 to

Documents
Cesium Co. Ltd., · • ISO/IEC 38500 IT Governance • ISO/IEC 29100 Lead Privacy Implementer IT Security • ISO/IEC 27001 Information Security Management System

Cesium Co. Ltd., · • ISO/IEC 38500 IT Governance • ISO/IEC 29100 Lead Privacy Implementer IT Security • ISO/IEC 27001 Information Security Management System

Documents
ISO/IEC 27001 Process Mapping to COBIT 4.1 to Derive a ... · ISO/IEC 27001 Process Mapping to COBIT 4.1 to Derive a Balanced Scorecard for IT Governance By Christopher Oparaugo,

ISO/IEC 27001 Process Mapping to COBIT 4.1 to Derive a ... · ISO/IEC 27001 Process Mapping to COBIT 4.1 to Derive a Balanced Scorecard for IT Governance By Christopher Oparaugo,

Documents
Guru Gobind Singh Indraprastha University, Delhiipu.ac.in/pubinfo/ExamDatesheets/2017/131117/Upto 2014 Batch_035... · 00710303813 gayatri nitin korgaonkar 38501, 38503, 38505,

Guru Gobind Singh Indraprastha University, Delhiipu.ac.in/pubinfo/ExamDatesheets/2017/131117/Upto 2014 Batch_035... · 00710303813 gayatri nitin korgaonkar 38501, 38503, 38505,

Documents
CYBERSECURITY GOVERNANCE, RISK AND · PDF fileCYBERSECURITY GOVERNANCE, RISK AND STANDARD SARWONO SUTIKNO, DR.ENG ... ISO/IEC 27031:2011 Information technology—Security techniques—Guidelines

CYBERSECURITY GOVERNANCE, RISK AND · PDF fileCYBERSECURITY GOVERNANCE, RISK AND STANDARD SARWONO SUTIKNO, DR.ENG ... ISO/IEC 27031:2011 Information technology—Security techniques—Guidelines

Documents
Corporate Governance of Information Technology - ISO 38500… Content/Documents/Corp_gov_IT_Extract… · Corporate Governance of Information Technology A Substantial Guide to ISO/IEC

Corporate Governance of Information Technology - ISO 38500… Content/Documents/Corp_gov_IT_Extract… · Corporate Governance of Information Technology A Substantial Guide to ISO/IEC

Documents
ENHANCING THE GOVERNANCE OF INFORMATION …develop a framework that enhances the governance of information security in non-profit organisations. ISO/IEC 27002 best practices in information

ENHANCING THE GOVERNANCE OF INFORMATION …develop a framework that enhances the governance of information security in non-profit organisations. ISO/IEC 27002 best practices in information

Documents
IT Governance: The Fundamentals and a Radical Viewsfisaca.org/images/FC14Presentations/G11.pdf · IT Governance: The Fundamentals and a Radical View . ... The ISO/IEC IT Governance

IT Governance: The Fundamentals and a Radical Viewsfisaca.org/images/FC14Presentations/G11.pdf · IT Governance: The Fundamentals and a Radical View . ... The ISO/IEC IT Governance

Documents
IEC 62116,IEC 61727,IEC 61683,IEC 60068(1,2,14,30),IEC

IEC 62116,IEC 61727,IEC 61683,IEC 60068(1,2,14,30),IEC

Documents
PECB CERTIFIED ISO/IEC 38500 - NISKAAniskaa.com/iso-iec-38500-manager_4p.pdf · 1 2 3 To understand the implementation of guidance for the corporate governance of IT in accordance

PECB CERTIFIED ISO/IEC 38500 - NISKAAniskaa.com/iso-iec-38500-manager_4p.pdf · 1 2 3 To understand the implementation of guidance for the corporate governance of IT in accordance

Documents
IT Governance – State of the art · PDF filePalabras clave Gobierno corporativo, COSO, Cobit, ISO/IEC 38500,Calder-Moir, ISO 27002, ITIL, ISO/IEC 20000, Gobierno de TI. Keywords

IT Governance – State of the art · PDF filePalabras clave Gobierno corporativo, COSO, Cobit, ISO/IEC 38500,Calder-Moir, ISO 27002, ITIL, ISO/IEC 20000, Gobierno de TI. Keywords

Documents
9781780171555 Governance of IT - Home page | BCS - …shop.bcs.org/resources/pdf/9781780171548.pdf · Figure 4.1 Governance framework diagram from ISO/IEC 38502 35 Figure 4.2 Evaluate-direct-monitor

9781780171555 Governance of IT - Home page | BCS - …shop.bcs.org/resources/pdf/9781780171548.pdf · Figure 4.1 Governance framework diagram from ISO/IEC 38502 35 Figure 4.2 Evaluate-direct-monitor

Documents
PECB Certified ISO/IEC 38500 Lead IT Corporate Governance ... · support an organization in mastering an IT Corporate ... To ensure that the ISO/IEC 38500 Lead IT Corporate Governance

PECB Certified ISO/IEC 38500 Lead IT Corporate Governance ... · support an organization in mastering an IT Corporate ... To ensure that the ISO/IEC 38500 Lead IT Corporate Governance

Documents
Iso iec 29382 the new standard for ict governance christophe feltus

Iso iec 29382 the new standard for ict governance christophe feltus

Documents
PECB CERTIFIED ISO/IEC 38500 LEAD IT CORPORATE GOVERNANCE ... · when recognition matters mastering the implementation and management of corporate governance of information technology

PECB CERTIFIED ISO/IEC 38500 LEAD IT CORPORATE GOVERNANCE ... · when recognition matters mastering the implementation and management of corporate governance of information technology

Documents
PECB CERTIFIED ISO/IEC 38500 LEAD IT CORPORATE GOVERNANCE …€¦ ·  · 2016-08-23La norme ISO / IEC 38500 s’applique à la gouvernance des processus de management (et aux décisions)

PECB CERTIFIED ISO/IEC 38500 LEAD IT CORPORATE GOVERNANCE …€¦ ·  · 2016-08-23La norme ISO / IEC 38500 s’applique à la gouvernance des processus de management (et aux décisions)

Documents