It Governance Flashcards
It governance
Framework that ensures that information technology decisions are made while taking into account the goals and objectives of the business
Two goals of it governance
Organization achieves good values from its investments in IT and mitigating IT related risks
Mitigating it related risks
Failure of IT systems and processes to meet a wide array of state and federal rules, security risks from hackers and privacy risks
Managing mitigated risks
Good internal controls and management accountability must be embedded in the organization
Plan Do Check Act
Applied to a specific targeted process, proven to work
Must have a target
Business Continuity Planning
Defines the people and procedures required to ensure timely and orderly resumption of an organizations process with minimal iterruptiom
Due diligence
Effort made my an individual to avoid harm to another party
Disaster Recovery Plan
Part of business continuity planning
Defines the process to recover business information system assets in the event of a disaster
Identifies the teams or people responsible for taking action in a disaster
Process for disaster recovery plan
Identify what is vital records and data to be saved
Determine where and how the data will be backed up
Relook the current data storage plan
Recovery time objective
Time within which a business function must be recovered (future)
Recivery point objective
The time in the past in which the business must be recovered
Maximum tolerable downtime
Greatest amount of business loss that is tolerable
Mission critical
Systems necessary to keep the mission of the company viable
Business critical
Systems necessary to support the management of a company
Essential
Not needed urgently to keep the company running
