Professional Documents
Culture Documents
Many CIO’s today have created their own set of leadership and management rules, written them
down distributed them to their organizations and integrated them into the daily life of the
organization. Some lists are very specific, covering such areas as governance, aligment, compliance
and capital expenditures, while others relate to actionable principles.
Bill Godfrey, CIO of Dow Jones, develope a set of rules that, ‘… in one formo r anotheer are there
to sustain, protect and Foster aligment…’ (Wailgum, 2005).
There will be 100% adherence to the Project management process for all non-trivial
develplment projects (projects estimated to take more that two weeks of staff time).
All development projects will have a specifically identified buisiness sponsor, and a
specifically identified IT Project leader prior to initiation.
All development projects requiring infraestructure support will directly involve
infrastructure suppor staff during Project initiation, giving the infrastructure staff an
opportunity to directly participate in the design of systems solutions.
All the staff time will be appropriately entered into the IT time reporting system on a
weekly basis.
1
Implementing IT governance – A practical guide to global best practices in IT management.
Rule 6 - Technology business management
As represented in appproved budgets, technology costs will not exceed plan unless explicit
approval is granted by the CIO.
Technology contracts will be managed and approved through business management
services or purchasing.
All third-party contractors and consultants will sign non-disclosured agreements, managed
under the non-employee security policy, and managed through the company’s preferred
vendor program.
All requests for proposals from third parties will be reviewed and approved by the CIO
prior to excecution.
All request fro proposals from thid party parties which could have infrastructre
implications will be reviewed and approved by IT infrastructure services prior to
excecution.
Business technology directors are 100% accountable for all technology, direct and indirect,
in support of their assigned business lines.
Business technology directors ‘own’ all business application vendor relatioinships.
Enterprises technology directors ‘own’ all infrastructure vendor relationships.
Information technology services will comply will all audit, regulatory and legal
requirements.
The IT senior leadership team is accountable for compliance.
Rule 12 – Operations procedural compliance
There will be 100% compliance with [the] Enterprise change control policy and procedure.
All production applications will be supported by a service level agreement between IT and
the business.
All technology staff will comply with the company’s information security policy.
Information security approval must be secured prior to implementing new technology or
making major enhancements to existing technology. This review and approval is to take
place before an informal or formal obligations are made between the Company and
suplier.
All Access to a financially significant applications will be managed and controlled through
information security.