You are on page 1of 3

ICT GOVERNANCE CHARTER (TIER 1)

Document Control
Reference: CBT5 DOC
1.1a
Issue No:
Issue Date:
Page: 1 of 3

Uncontrolled
1
2

Preamble
[
]

Comment [LM1]: Provide the initial


statement of intent. Describe the overall
desired result from governance of ICT.

Definitions
a. Board
The Board of Directors of the [organisation].
b. CIO
Chief Information Officer,
c. ICT Strategy Committee
Executive-level committee that defines the corporate ICT Strategic Plan.
d. ICT Steering Committee
Executive- and/or management-level committee that interprets the ICT
Strategic Plan and defines the ICT Implementation Plan.
e. ICT Organisational Committee
Executive- and/or management-level committee that oversees the
implementation of ICT projects as defined by the ICT Implementation Plan.
[
]

Stakeholders

Comment [LM2]: Definitions of other


terms relevant to the enterprise IT goals.
Add or remove as necessary.

Each element of the ICT programme at the [organisation] should make reference
to key stakeholders. For a complete list of stakeholders and their level of
involvement in any given process, refer to the RACI chart.
There is a number of key internal stakeholders whose requirements should be
considered:
a. Resource Manager
The Resource Manager is the internal stakeholder for all resources and allocation
of resources.
b. Asset Manager
The Asset Manager is the internal stakeholder for all corporate ICT assets, their
development and correct use.
c. Relationship Managers
The Relationship Managers are internal stakeholders for their particular business
units.
4

Comment [LM3]: Add or remove any


specified stakeholders according to the
enterprises needs and structure.

Scope of ICT Governance


Governance of enterprise ICT is focused on the alignment of corporate goals with
ICT goals.
an overview
all elements
of [theCOBIT
organisations]
This isThis
thecharter
DEMO provides
version ONLY
you canofpurchase
the FULL
5
ICT governance framework
and
is
intended
to
be
a
point
of
reference
for everyone
Documentation Toolkit here:
inhttp://www.itgovernance.co.uk/shop/p-1305-cobit5-documentation-toolkit.aspx
the organisation who is reliant upon, supported by or benefits from corporate
ICT.

Objectives
The key objectives of the ICT Governance programme in the [organisation] are:
a. [
]

Accountability

[Organisation Name]

[Classified/unclassified]

Customisable POLICY STATEMENT template IT Governance Ltd 2005-2013v1.2


Comments to feedback@itgovernance.co.uk

www.itgovernance.co.uk

Comment [LM4]: List the objectives


you hope to achieve through governance of
enterprise IT. This may include effective
risk management, achieving regulatory
compliance, creation of an enabling
environment for the development of ICT
services, and so on.

ICT GOVERNANCE CHARTER (TIER 1)

Document Control
Reference: CBT5 DOC
1.1a
Issue No:
Issue Date:
Page: 2 of 3

Uncontrolled

Each aspect of the ICT governance framework, and each implementation objective
has accountability assigned according to the RACI chart. For reference, the key
roles and accountabilities are:
a. Chief Executive Officer (CEO): [ ]
b. Chief Financial Officer (CFO): [
]
c. Chief
Information
Officer
(CIO):
[ you
] can purchase the FULL COBIT 5
This
is the DEMO
version
ONLY
d. Chief Operating Officer Documentation
(COO): [
]
Toolkit here:
e.http://www.itgovernance.co.uk/shop/p-1305-cobit5-documentation-toolkit.aspx
Executive Management: [
]
f. Process Owners: [
]
g. ICT Governance Champion: [
]
h. ICT Manager: [
]
i. ICT Strategic Committee: [
]
j. ICT Steering Committee: [
]
k. ICT Operational Committee: [
]
7

Timeline
Objectives will be met through the completion of projects as follows:
a. [
]

Comment [LM5]: Provide a headline


summary of the key ICT accountabilities of
the role.

Risk Management
[Risks will be managed according to best practice1. This will involve the
identification of likely risks, planning to avoid them and planning to mitigate any
damage should they arise.

Comment [LM6]: Supply expected


completion times for each relevant
implementation objective. Ongoing
objectives may include stepped deadlines.
Comment [LM7]: Describe your
organisations enterprise risk management
framework.

Unforeseen risks will be responded to in a timely fashion, with all mitigation


documented and assessed.]
9

Programme Benefits
The organisation intends to achieve the following benefits by implementing this ICT
governance framework and aligning corporate and IT goals:
a. [
]
Document Owner and Approval
The [Board of Directors] is the owner of this document and is responsible for
ensuring that this policy document is reviewed.
A current version of this document is available to all members of staff on the
[corporate intranet] and [
]. It does not contain confidential information and
can be released to relevant external parties.
This charter was approved by the [Board of Directors] on [date] and is issued on a
version controlled basis under the signature of the [Chief Information Officer
(CIO)].

Best practice risk management frameworks might draw, for instance, on ISO31000, ISO27005 and/or COSO.

[Organisation Name]

[Classified/unclassified]

Customisable POLICY STATEMENT template IT Governance Ltd 2005-2013v1.2


Comments to feedback@itgovernance.co.uk

www.itgovernance.co.uk

Comment [LM8]: Details the benefits


per objective, as well as a brief description
of the metric used to confirm the benefit has
been achieved. E.g. Retirement of
redundant technologies will achieve
reduced operating expenditure through a
focus on less equipment with a greater
efficiency.

ICT GOVERNANCE CHARTER (TIER 1)

Document Control
Reference: CBT5 DOC
1.1a
Issue No:
Issue Date:
Page: 3 of 3

Uncontrolled
Signature:

Date:

Change History Record


Issue
1

Description of Change
Initial issue

[Organisation Name]

Approval
<Manager>

Date of Issue
Xx/yy/zz

[Classified/unclassified]

Customisable POLICY STATEMENT template IT Governance Ltd 2005-2013v1.2


Comments to feedback@itgovernance.co.uk

www.itgovernance.co.uk