The IT Governance Institute (ITGI) has released new guidance on information security governance and information security governance titled, Information Security Governance: Guidance for Boards of Directors and Executive Management.
Here is an interesting article on ‘unplanned work’ in IT organizations, and the direct and indirect costs associated to it. Unplanned work is any activity in the IT organization that can’t be mapped to an authorized project, procedure or change request. Any service interruption, failed change, emergency change, or patch or security incident creates unplanned work. Unplanned work also comes at the cost of planned project work.
Tracing and tracking time spent and costs associated with ‘unplanned work’ is very worthwhile. The business case for implementing IT controls to monitor these variabels, and manage actions to improve time spent on unplanned work, seems straightforward.
RSS Feed
© 2003-2008 mirror42.com. All Rights Reserved.
