|
Standard
ISO/IEC 38500
Third edition
Information technology —
2024-02
Governance of IT for the
organization
Technologies de l'information — Gouvernance des technologies
de l'information pour l'entreprise
Reference number
ISO/IEC 38500:2024(en) © ISO/IEC 2024
---------------------- Page: 1 ----------------------
ISO/IEC 38500:2024(en)
COPYRIGHT PROTECTED DOCUMENT
© ISO/IEC 2024
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: [email protected]
Website: www.iso.org
Published in Switzerland
© ISO/IEC 2024 – All rights reserved
ii
---------------------- Page: 2 ----------------------
ISO/IEC 38500:2024(en)
Contents Page
Foreword .v
Introduction .vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Good governance of IT . 3
4.1 Outcomes of good governance of IT .3
4.1.1 Overview .3
4.1.2 Effective performance .3
4.1.3 Responsible stewardship .4
4.1.4 Ethical behaviour .4
4.2 Principles, model and framework.4
5 Principles for the governance of IT . 5
5.1 Overview .5
5.2 Purpose .6
5.2.1 Principle .6
5.2.2 Governance implications for use of IT .6
5.2.3 Outcomes .7
5.3 Value generation.
...