Gobierno y riesgos de TI
- Autores: Pedro Fernando Solares Soto
- Localización: Tópicos Selectos de Ingeniería: Gobierno de tecnología de Información / coord. por Pedro Solares, Elena Romero, 2014, ISBN 978-097-4857-10-7, págs. 39-54
- Idioma: español
- Enlaces
-
Resumen
The term "governance" describes the ability of an organization to control and regulate their own performance in order to avoid conflicts of interest, related to the division between the beneficiaries and the IT Governance actors. Derived from Corporate Governance, and mainly on the relationship between business and IT management of an organization. Highlight the import of matters concerning IT in modern organizations and recommends that strategic IT decisions are made by the highest level of directives. The Institute of Information Technology Governance (ITGI) was established in 1998 by the Audit Association and Control Information Systems (ISACA) in order to advance international thinking and standards in directing and controlling the information technology companies. According to ITGI IT governance is regarded as critical and as a management discipline within public or private companies. Effective IT governance helps to supports the business goals, maximizes business investment in IT, and appropriately manages IT-related opportunities and risks. These risks include legal and financial consequences for non-compliance with financial corporatives laws. The main objectives of IT Governance are: (1) ensuring that investments in IT generate business value and (2) mitigate the risks associated with IT. This is achievable through the implementation of an organizational structure with well-defined roles for information functions, business processes, applications, infrastructure, etc.. They have several best practices, standards, certifications and government IT risks.
