Discussion Post
Student’s Name
Institutional Affiliation
Course name
Instructor name
Date
Discussion Post
IT governance gives a structure for adjusting IT methodology to business techniques. With proper formal structure, organizations can deliver quantifiable outcomes towards accomplishing their systems objectives (Al-Ruithe et al., 2016). The process of IT governance plays a huge role in decision making within organizations. Proper IT governance ensures that IT is aligned with the long-term vision of the organization. IT governance in an institution ascertains that communication is streamlined and leads to increased productivity (Al-Ruithe et al., 2016). However, the process of IT governance within the institutions is normally fueled by several things. Foremost, institutions today are subject to many regulations governing the protection of confidential information, financial accountability, data retention, and disaster recovery. The process is also fueled by too much pressure from stakeholders and customers to have an IT governance framework to facilitate organization security. Additionally, IT governance structures are also fuelled by the organization’s internal and external requirements (Amali & Katili, 2018). Many institutions implement the formal governance program to offer a framework for best controls and practices. The framework is also implemented due to several advantages like financial benefits and risk protection, enhancing a company’s competitive advantage.
ISO came in as a security standard that outlines the requirements for monitoring, building, and improving information security systems. It affected the international standard regulating and guiding how information security within organizations is controlled and manned. It also affected the businesses by setting minimal requirement policies to protect and manage organization sensitive information (Moratis & Cochius, 2017). ISO affected the security standards by helping to ensure that all business security risks are managed cost-effectively. It also affected the network security standard by providing several services. It offered the risk management benefits, which helps govern who within the institution gets to access certain information, which reduces the risk where the information might be stolen or compromised (Moratis & Cochius, 2017). ISO also offers information security services as it has information management protocols that explain how certain data should be handled and transmitted. It also ensures business continuity by providing mechanisms for testing and improving systems and detects data breaches that could impact the main business functions.
References
Al-Ruithe, M., Benkhelifa, E., & Hameed, K. (2016). A conceptual framework for designing data governance for cloud computing. Procedia Computer Science, 94, 160-167.
Amali, L. N., & Katili, M. R. (2018). IDENTIFICATION OF INFLUENTIAL FACTORS IN IMPLEMENTING IT GOVERNANCE: A SURVEY STUDY OF INDONESIAN COMPANIES IN THE PUBLIC SECTOR. Interdisciplinary Journal of Information, Knowledge & Management, 13.
Moratis, L., & Cochius, T. (2017). ISO 26000: The business guide to the new standard on social responsibility. Routledge.