[ictgov] Scope for Governance of ICT Standards/Guides

Marghanita da Cruz marghanita at ramin.com.au
Tue Oct 3 17:43:06 EST 2006 

Hi All,

Following up on Tom and Chris' references to AS8017/AS8018.

Two standards are referred to as under development, in the preface of
AS8015-2005 Corporate Governance of ICT as covering "ICT Projects" and
"ICT Operations. There has been extensive debate and discussion about
the scope of these standards.

With regard to ITIL, in my view, it is covered within the scope
of ISO20000 IT Service Management. I would welcome thoughts on whether
PMBOK is an equivalent project management standard and have held the
view for some time, that it would be useful to have a standard or
provide some guidance in the project management area.

There are also other standards such as ISO 2700 series, ASNZS 7799.2 &
ISO 9000 that need to be drawn together/positioned.

Bear in mind that Governance is not something at the top or bottom of an
organisation it is what holds the organisation together....In my view,
there has been a lot of work on management but not enough guidance on
what information to seek and what to do with it.

As a starting point on the ICT Governance standards
*The Audience for these standards are Directors/Boards/Steering Committees
*AS8017 relates to Governance of ICT in Business Operations (covering 
initiation of projects)
*AS8016 relates to Governance of proposed uses of ICT (covering 
transition into busines operations)

Issues that need to be covered are
Monitoring/Evaluating Report
Architecture
Software Development
Legal (Regulatory, Contracts, License)
and what Tom Cleary wrote:
> My fear is that AS8016/7 becomes subsumed into ITIL, where there is
> already an acknowledged gap in the model when it comes to handing stuff
> into production.
>
> IMHO, "problem management" and "change management" have a problem when
> dealing with large Technology shifts or with ( more or less ) 
anything to
> do with security where the "steady state" model becomes meaningless.
>
> I think the security management model is also a bit inflexible, in 
that it
> assumes a perfectly mature Governance process is already in place and
> working well.
>
> We all know how often that is true in practice.....
>
> I'm hoping that the other draft standards will cover that contentious
> ground meaningfully - particularly the "culture clash" between Business
> focussed people, Developers and Operations folks.......

I welcome further discussion/brainstorming, over the next week or so,
on what should be covered in each document, with an objective to
preparing Terms of Reference for working groups.

Expressions of interest in collaborating in co-ordinating/researching and
drafting this work would also be welcome.

References to relevant, preferably open source documents, would be most
welcome.

Please note, it would be helpful, if you respond to the whole list (by
addressing your email to ictgov at listserv.csu.edu.au , because in this
way your comments will be collated for future reference via the ICT
Governance Forum archive at
http://listserv.csu.edu.au/mailman/listinfo/ictgov

Marghanita
-- 
Marghanita da Cruz
Aligning ICT with Business?
Just one benefit of effective Governance
http://www.ramin.com.au/itgovernance
Phone: 0414-869202
Email: marghanita at ramin.com.au

More information about the ictgov mailing list