ISO38500 - ISO 38500 - International Standard for Corporate Governance of IT (IT Governance) - ISO/IEC 38500
ISO38500 is the international standard for the corporate governance of information technology.
ISO/IEC 38500 provides guidance to those advising, informing or assisting directors on the effective and acceptable use of Information Technology (IT) within the organisation.
On this page:
About ISO/IEC 38500
ISO/IEC 38500:2008 is the official standard that applies to the governance of management processes (and decisions) relating to the information and communication services used by an organisation.
ISO/IEC 38500 defines six principles:
-
Establish responsibilities
-
Plan to best support the organisation
-
Acquire validly
-
Ensure performance when required
-
Ensure comformance with rules
-
Ensure respect for human factors
This standard originated from an existing Australian standard, named AS8015. The ISO/IEC 29382, Corporate Governance of Information and Communication Technology, was first published early in 2007 and was officially re-named ISO/IEC 38500 in 2008.
The ISO/IEC 38500 standard is available in two formats: Hardcopy or download.
Implementing ISO/IEC 38500
Whilst the IT governance standard is a brilliantly short and straightforward international standard, actual implementation of an IT governance framework can be challenging. The Calder-Moir IT Governance Framework evolved alongside the evolution of the international standard as a conceptual approach to help organisations visualise effective IT governance, drawing on, and integrating, the wide range of IT management tools and systems that exist in the world today.
The effectiveness of the Calder-Moir Framework as a unifying approach to IT governance and management is exemplified by the IT Governance Framework Toolkit. This product reflects ISO/IEC 38500 and provides practical, detailed tools and guidance for implementing IT governance in your organisation.
Useful Links on:
ISO/IEC 38500
IT Governance
We also offer a Consultancy service on IT Governance. Our consultants work with your board, senior executives and functional specialists to help define, develop and implement an IT governance framework that is appropriate for your business. Please contact us for more information or to arrange an initial meeting.