Technical foundations: the structure of IT assets is manageable
structure clear assets and stored data – data that easily known and understood by every member will facilitate each error due to the risk posed by these assets, which if not the parts list of every asset that arises when there is a problem that does not be easily detected by both.
IT risk governance process
IT risk governance process must have clear standards process in order both organizations with operational standards set by the authorities in determining the operational standards. With a clear stream in the process of managing IT risk then if anything happens to it then any personnel have been able to and understand who is responsible for repairing and maintaining these IT assets.
Be risk-conscious culture of IT
Risks that arise in information technology must be minimized in every way there, one is a common sense that if you do things that should not be able to create a risk that IT will have negative effects for the organization is not made or applied, for that the need for awareness of each member organization to have such awareness of the culture in which this awareness can at least contribute to minimize the risk empirical in information technology.
Established companies to build IT capabilities with risk governance, Implementing an integrated framework for managing IT risks so that they can make informed decisions coherent (consistent cross-section) by considering trade-offs of risk from the perspective of the overall company. And have the same language to discuss the risks of IT in the business perspective.
all explanations about what are the pillars of the IT risk governance can be read in www.miatut.com
