IT Governance
Establishing and maintaining a framework of processes, structures, and relational mechanisms to ensure that IT sustains and extends the organisation's strategies and objectives.
Proficiency Level
Level 1 (Follow)
- Consistently follows established IT policies, procedures, and standards in their daily work.
- Understands the basic principles of IT governance (e.g., security awareness, acceptable use) relevant to their role.
- Completes required compliance training related to IT policies.
Level 2 (Assist)
- Assists in collecting data or evidence required for IT governance reporting or audits under guidance.
- Helps maintain documentation related to IT policies, standards, or control procedures.
- Supports the logistics of governance meetings (e.g., scheduling, taking minutes).
Level 3 (Apply)
- Applies relevant IT governance framework elements (e.g., specific controls from COBIT, ITIL processes like Change Management) within their area of responsibility.
- Monitors compliance with specific IT policies and controls related to their work.
- Participates in IT risk assessments or control self-assessments for their domain.
Level 4 (Ensure)
- Implements, manages, and monitors specific IT governance processes (e.g., IT risk management, IT compliance management, vendor governance) within a defined scope.
- Ensures IT activities and projects within their area align with the overall IT governance framework and policies.
- Reports on governance effectiveness, risks, and compliance status for their domain to relevant committees or management.
Level 5 (Strategise)
- Designs, develops, implements, and oversees the organisation-wide IT governance framework, policies, structures (e.g., committees), and processes.
- Ensures IT strategy, investments, and operations align with business strategy and objectives through governance mechanisms.
- Advises senior leadership and the board on IT governance matters, including IT-related risks and value delivery.