InfoResponse

Discussion 1: Information governance can be described as the process whereby business enterprise commonly makes sure that any statistics or data concerning the enterprise is properly secured and safe from falling into the wrong hands. Initially, there have been no methods of bettering statistics governance until the upward thrust of the new technology traits which led to the introduction of cybercrimes. With the upward shove in the instances of cyber-attacks therefore corporations had to come with one of a kind methods of making sure that the organizational records has been secured totally and if not completely to minimize the chance of being attacked (Calder, 2008). Despite the truth that IT governance used to be typically applied nearly in every organization, it was once no longer well utilized and some of the organisation did no longer observe the regulations and insurance policies involving the facts governance. When ISO got here to existence, many agencies have been able to use the IT governance in defending their information. What ISO did is that they merged together with one-of-a-kind governments which made it convenient for them to enforce on the use of IT governance for every organization.The use of IT governance consequently has been made as one of the core requirements on the introduction of any organization (Calder, 2008). This has substantially worked to the gain of many corporation in many methods which can also consist of multiplied protection degree of data, reduced wide variety of common cyber-attacks in a given duration of time, decreased range of downtimes, decreased variety of organizational failure, increased market values of one of a kind corporations as they are in a position to stick to the competitive market and subsequently no loss from attacks. Reference Calder, A. (2008). ISO/IEC 38500: the IT governance standard. IT Governance Ltd. Discussion 2: IT governance basically is a mechanism where aligning IT policy mainly with company strategy. Organizations may achieve substantial results toward reaching their plans and objectives by adopting a formal structure. Every structured plan also takes into account the interests of stakeholders, as well as employee preferences and the procedures they adopt. IT governance is an important part of overall corporate governance, in the wider picture. Both public and private sector entities need a way to ensure company plans and priorities are assisted by their IT works. And any company in any sector that needs to comply with financial and technical compliance regulations should have a structured IT-governance system on the radar. However, it takes a lot of time and energy to introduce a robust IT governance system. Where very small organizations may only exercise critical IT governance practices, a full-fledged IT governance system would be the aim of larger and more regulated organizations. Critical factors involve in IT governance: IT Policy Development and IT Steering Committees: The IT Strategy Committee works at the board level, providing guidance to the IT plan and ensuring that it is consistent with the company strategy. The collaboration of IT and business in strategy and operations, including the establishment of business / IT partnership managers and the co-responsibility of business and IT for the commercial and technical performance of IT ventures. Business transformation and IT policy are at the core of this alignment. Cascading IT priorities and strategy into the organization, turning them into a simple yet efficient measuring framework for each layer in the organization that feeds performance outcomes into the organization. Applying new best practices in management that concentrate on providing value: Standardization of technology, including IT personnel centralization; use of 'czar' technology and technology committees or review boards to set and track standards and architecture. Proactive project management with a sponsorship position for the company, regular stakeholder meetings and business performance management transparency. Implementing a system for governance and tests For IT — Implementation decisions made by IT members, choices made by regulators and statements made by major market observers consistently indicate that Control Strategies for Information and Related Technology (COBIT) is the chosen reference structure. Further proof is its full mapping to COSO I and its successor, Enterprise Risk Management (ERM). References: https://dl-acm-org.eu1.proxy.openathens.net/doi/pdf/10.1145/2959100.2959182 Heeks, R. B. 2006. Implementing and managing eGovernment: An International Text. London, Sage Publications.