Companies are making high investment in Information Technology (IT). In order to ensure proper and responsible use of this investment, companies rely on IT governance as part of their effort in ereating good corporate governance. This research is aimed at designing a methodology for the development of an organization's IT governance structure which is specifically tailored to the organization's needs and characteristics. The methodology makes use of two well-known IT governance framworks, i.e., a research-oriented framework from CISR (Center for Information Systems) Research at Massachusetts Institute of Technology) and COBIT (Control Objectives for Information Systems Research at Massachusetts Institute of Technology) and COBIT (Control Objectives for Information and Related Technology)-an industry standard. Our study shows that the two frameworks. having different perspectives and approachesto IT governance, complement each other well. The CISR framework takes an approach that is based on the decision making in the main IT decision domain, by specifying decision rights and the decision making mechanisms. The COBIT framework provides control objectives which serveas guidelines in translating the IT decision making further into IT processes that are subject to management and control. a methodology for designing an IT governance structure is proposed using the combined framework as a reference.
|
|