New User Special Price Expires in

Let's log you in.

Sign in with Facebook


Don't have a StudySoup account? Create one here!


Create a StudySoup account

Be part of our community, it's free to join!

Sign up with Facebook


Create your account
By creating an account you agree to StudySoup's terms and conditions and privacy policy

Already have a StudySoup account? Login here

MIS 475 : Chapter 8 : Governance of the information systems organization.

by: Winn

MIS 475 : Chapter 8 : Governance of the information systems organization. MIS 475

Marketplace > Marshall University > MIS 475 > MIS 475 Chapter 8 Governance of the information systems organization
GPA 3.72

Preview These Notes for FREE

Get a free preview of these Notes, just enter your email below.

Unlock Preview
Unlock Preview

Preview these materials now for free

Why put in your email? Get access to more of this material and other relevant free materials for your school

View Preview

About this Document

First part of the exam
Managing and Using Information System
Class Notes
Management, information, system
25 ?




Popular in Managing and Using Information System

Popular in Department

This 3 page Class Notes was uploaded by Winn on Sunday March 13, 2016. The Class Notes belongs to MIS 475 at Marshall University taught by in Spring 2016. Since its upload, it has received 12 views.

Similar to MIS 475 at Marshall


Reviews for MIS 475 : Chapter 8 : Governance of the information systems organization.


Report this Material


What is Karma?


Karma is the currency of StudySoup.

You can buy or earn more Karma at anytime and redeem it for class notes, study guides, flashcards, and more!

Date Created: 03/13/16
Chapter 8 : Governance of the information systems organization. Explaining Important Most Important 1) IT Goverance Governance in the context of business enterprises is all about making decisions that define expectation, grant authority or ensure performance. A traditional perspective of IT governance focuses on how decision rights can be distributed differently to facilitate centralized, decentralized or hybrid modes of decision making. ** Centralized versus Decentralized organizational structures. Centralized IS organizations vring together all staff, hardware, software, data and processing into a single location. Decentralized IS organizations scatter these components in different locations to address local business needs. 70.6 % of the participating organizations are centralized in terms of IT. Federalism is a structuring approach that distributes power, hardware, software , data and personnel between a central IS group and IS in business units. Define IT governance as “specifying the decision rights and accountability framework to encourage desirable behavior in using IT”. Good IT governance probed a structure to make good decisions. It can also limit the negative impact of organizational politics in IT-related decisions. An archetype is a pattern from decision rights allocation. 2) IT governance and security : a) Information Security Strategy : based on such IT principles as protecting the confidentiality of customer information, strict compliance with regulations, and maintaining a security baseline that is above the industry benchmark b) Information security policies : encourage standardization and integration - Policies must reflect the delicate balance between the enhanced information security gained from following them versus productivity losses and user inconvenience. c) Information security infrastructure : aligning security mechanisms to the IS architecture specifications. - To achieve consistency in protection , economies of scale , and synergy among the components. d) Information Security Education/Training/Awareness : it is very important to make business users aware of security policies and practices. e) Information security investments : The “FUD factor” ( fear , uncertainty, and doubt) used to be all that was needed to get top management to invest in information security. - Decision makers are truly empowered when they hold the authority to make decisions that (1)Are suitable for their positions (2)Make the best use of their expertise and knowledge (3)Cater to the needs and specialization of the organizations units to which they belong 3) Decision-making mechanisms : - Policies are useful for defining the process of making a decision under certain situations. - A review board, or committee that is formally designated to approve, monitor and review specific topic, can be an effective governance mechanism. - IT steering committee, or an advisory committee of key stakeholders or experts that provides guidance on important IT issues. 4) Governance frameworks for control decisions : a) Sarbanes – Oxley Act of 2002 : was enacted in the United States in 2002 to increase regulatory visibility and accountability of public companies and their financial health. b) Frameworks for Implementing SoX : - COSO - COBIT ( control objectives for information and related technology ) - ITIL ( Information technology infrastructure library )


Buy Material

Are you sure you want to buy this material for

25 Karma

Buy Material

BOOM! Enjoy Your Free Notes!

We've added these Notes to your profile, click here to view them now.


You're already Subscribed!

Looks like you've already subscribed to StudySoup, you won't need to purchase another subscription to get this material. To access this material simply click 'View Full Document'

Why people love StudySoup

Jim McGreen Ohio University

"Knowing I can count on the Elite Notetaker in my class allows me to focus on what the professor is saying instead of just scribbling notes the whole time and falling behind."

Kyle Maynard Purdue

"When you're taking detailed notes and trying to help everyone else out in the class, it really helps you learn and understand the I made $280 on my first study guide!"

Jim McGreen Ohio University

"Knowing I can count on the Elite Notetaker in my class allows me to focus on what the professor is saying instead of just scribbling notes the whole time and falling behind."


"Their 'Elite Notetakers' are making over $1,200/month in sales by creating high quality content that helps their classmates in a time of need."

Become an Elite Notetaker and start selling your notes online!

Refund Policy


All subscriptions to StudySoup are paid in full at the time of subscribing. To change your credit card information or to cancel your subscription, go to "Edit Settings". All credit card information will be available there. If you should decide to cancel your subscription, it will continue to be valid until the next payment period, as all payments for the current period were made in advance. For special circumstances, please email


StudySoup has more than 1 million course-specific study resources to help students study smarter. If you’re having trouble finding what you’re looking for, our customer support team can help you find what you need! Feel free to contact them here:

Recurring Subscriptions: If you have canceled your recurring subscription on the day of renewal and have not downloaded any documents, you may request a refund by submitting an email to

Satisfaction Guarantee: If you’re not satisfied with your subscription, you can contact us for further help. Contact must be made within 3 business days of your subscription purchase and your refund request will be subject for review.

Please Note: Refunds can never be provided more than 30 days after the initial purchase date regardless of your activity on the site.