This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Find out more here

Hide
Jump to navigation

International Standard for Corporate Governance of IT (IT Governance) - ISO/IEC 38500

ISO38500 is the international standard for the corporate governance of information technology, and provides guidance to those advising, informing or assisting directors on the effective and acceptable use of information technology (IT) within the organisation.

To discuss your ISO38500 requirements, call us on +44 (0) 845 070 1750.

On this page:

About ISO38500

ISO/IEC 38500:2008 applies to the governance of management processes and decisions relating to an organisation’s information and communication services.

It defines six principles:

  • Establish responsibilities
  • Plan to best support the organisation
  • Make acquisitions for valid reasons
  • Ensure necessary levels of performance
  • Ensure conformance with rules
  • Ensure respect for human factors

This Standard originated from an existing Australian standard, AS8015. ISO/IEC 29382, Corporate Governance of Information and Communication Technology, was first published early in 2007 and was officially re-named ISO/IEC 38500 in 2008.

Implementing ISO38500

Although ISO38500 is a short and straightforward international standard, actual implementation of an IT governance framework can be challenging. The Calder-Moir IT Governance Framework evolved alongside the international standard as a conceptual approach to help organisations visualise effective IT governance, drawing on and integrating the wide range of IT management tools and systems that exist in the world today.

IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT provides practical guidance on implementing an IT governance framework based on ISO38500 in your own organisation.

The effectiveness of the Calder-Moir Framework as a unifying approach to IT governance and management is exemplified by the IT Governance Framework Toolkit, which provides practical, detailed tools and guidance for implementing IT governance in your organisation, based on ISO38500.

Useful links:

ISO/IEC 38500
The ISO38500 standard is available in two formats: hardcopy or download.

IT governance
The following ISO38500 products are available from the IT Governance webshop to aid you in your implementation of an IT governance framework:

We also offer an IT governance consultancy service. Our consultants work with your board, senior executives and functional specialists to help define, develop and implement an IT governance framework that is appropriate for your business.

Please email us or call us on +44 (0) 845 070 1750 for more information or to arrange an initial meeting.

Book

BUY IT Governance books

IT Governance: A Pocket Guide

Buy now

+44 (0) 845 070 1750
live chat support software