The attention of both the public and corporate management has increasingly been focusing on the topic of IT governance in recent years with discussions about corporate governance, good corporate management and compliance. IT governance concerns the organisation, steering and control of IT within a company to bring IT processes into consistent alignment with the corporate strategy.
Analogue to the governance of the company as a whole, IT must be integrated into a holistic framework which is oriented at the corporate objective and sets guidelines and standards. Information technology and its efficiency, risks and costs have to be managed just as professionally as every other critical success factor of a company.
PwC has developed a framework into which business-oriented IT management has been integrated. The core element is the IT governance framework which is made up of the three levels: IT governance, IT management and IT production.
Based on our cooperation with the IT Governance Institute (ITGI) and our experience from numerous consulting and auditing projects, we are able to support our clients in all areas of the implementation of IT governance frameworks.
For the development, introduction and control of IT governance in a more precise sense, company management has to create the appropriate organisational framework for IT with decision-making powers, roles and responsibilities, and define which functions it has in the following five areas of activity (domains):
IT management must reach regular decisions within the framework of the defined governance in order to align IT to business and to manage it on a sustained basis. IT management has the following areas of decision at its disposal:
In this respect, we understand investment & prioritization to be the IT portfolio management with which the strategy is converted, benefit-oriented, into operational measures. Together with IT management, PwC implements a rational form of these decision areas for a uniform and long-term optimization of the information technology.
The following advantages are achieved as a result:
Projects stand for the structured implementation of corporate decisions which, in the end, find their way into the classical IT operation. The decision areas also form the framework for the design of operative process and control frameworks for IT production. The design of the frameworks must comply with the regulatory demands on IT (IT compliance) and should be aligned with international standards and best practices (ITIL, COSO and COBiT).
PwC methods for the design and implementation of these process and control frameworks include:
An audit of already implemented solutions for the IT governance framework according to latest standards can also be carried out by PwC specialists. This includes information on improving the stipulated processes.
Leiter CIO Advisory, PwC Germany
Tel: +49 211 981-4872
Dr. Markus Böhm
Partner, PwC Germany
Tel: +49 69 9585-1664