IT Examiner School, Palm Springs, CA

First page Table of contents Previous page 134 Next page Last page

IT Management

How Governance Is Achieved

• Through management structure and the Board of Directors • Assignment of responsibilities and authority covering

– Central oversight and coordination – Risk assessment and measurement – Monitoring and testing – Reporting – Acceptable residual risk • Establishment of policies, standards, and procedures – With at least annual review/approval • Allocation of resources • Monitoring • Accountability

Made with FlippingBook - professional solution for displaying marketing and sales documents online