IT Governance

IT Governance

IT Governance Jonathan Poland

IT Governance refers to the way in which an organization’s executive leadership manages and directs information technology. It is a type of corporate governance that involves the use of processes and practices to control and guide the use of technology within an organization. The scope and nature of IT Governance may vary significantly depending on the industry, internal politics, and maturity of the organization. The following are common practices.

Application Portfolio Management
Oversight of applications at the portfolio level. In many cases, an annual health check is performed to identify risks related to legacy systems, compliance, capacity and availability.

Asset Management
Governance of IT asset management processes such as asset life cycle management and IT inventory management.

Audits
Financial, technology and security audits.

Benchmarking
Comparison of IT performance and costs to your industry and competition.

Business Technology Alignment
Strategic management of gaps between business needs and IT capabilities. This includes things such as products that lack IT integration and addressing business pain points with IT. An IT Governance board may sponsor initiatives to analyze gaps that act as an input to strategy formation and tactical actions.

Capability Management
Viewing business and IT as a set of capabilities. A useful technique for executive management of strategy, risk management and performance visualization.

Compliance
Governance of IT regulatory compliance.

Enterprise Architecture
The practice of managing architecture at the organizational level. It is common for an enterprise architecture team to act as working level support for IT Governance. For example, they may propose practices, review project architecture and deliver analysis and reporting.

Facilities And Infrastructure
Governance related to IT facilities and infrastructure such as data centers.

Financial Governance
Financial controls such as budget approvals.

Information Governance
Mechanisms of information governance to support legal, risk and operational requirements. For example, roles and responsibilities such as data stewards and custodians may be established.

Information Security
The practice of defending your information from threats. In many cases, information security garners much attention from both Corporate Governance and IT Governance bodies.

IT Operations
Governance of core IT processes.

Information Technology Performance Management
Monitoring and measurement of IT performance metrics.

Information Technology Practices
Establishment and direction of practices related to IT such as a Project Management Office.

Information Technology Processes
Establishment and oversight of IT processes such as service management.

Information Technology Risk Management
Identification and treatment of risks related to IT. Not to be confused with Risk IT, the technology capabilities used to manage business risk.

Information Technology Strategy
Planning IT strategy and setting goals.

Knowledge Management
Establishing and governing knowledge management practices such as the requirement that application managers and projects document their architecture.

Problems And Incidents
It is common for an IT Governance Board to review a monthly incident report or investigate a particularly high impact incident.

Procurement
Governance of IT procurement processes potentially with approval authority for major deals.

Programs And Projects
Reviews of programs and projects often at defined checkpoints such as budget approval and pre-launch.

Quality Assurance
Governance of quality assurance practices such as development and testing processes.

Reporting And Dashboards
A governance board may sponsor reports and dashboards to support activities such as strategy formation and risk management. Dashboards may also be developed to provide visibility into IT for corporate governance and executive management purposes.

Service Portfolio Management
Governing IT as a collection of services.

Standards And Certifications
Developing or adopting standards and governance of certification processes.

Supplier Management
Governance of vendor management practices.

Decision Tree Jonathan Poland

Decision Tree

A decision tree is a graphical representation of a decision-making process. It is a flowchart-like structure that shows the various…

Risk Awareness Jonathan Poland

Risk Awareness

Risk awareness refers to the extent to which people or organizations are aware of risks and the strategies in place…

Service Level Objective Jonathan Poland

Service Level Objective

An service level objective (SLO) is a standard used to measure the performance of a business or technology service. These…

Pre-Sales Jonathan Poland

Pre-Sales

The term “pre-sales” can refer to a range of different things depending on the industry in which it is used.…

Investor Relations Jonathan Poland

Investor Relations

Investor relations (IR) is the process of managing the relationship between a company and its investors. This includes communicating with…

Operations Planning Jonathan Poland

Operations Planning

Operations planning involves identifying and implementing strategies and tactics to optimize the core processes and practices that enable a business…

Inferior Good Jonathan Poland

Inferior Good

An inferior good is a type of consumer good for which the demand decreases as the consumer’s income increases. In…

Design to Value Jonathan Poland

Design to Value

Design to value refers to the design requirements and considerations that aim to maximize the value of a product or…

Law of Supply and Demand Jonathan Poland

Law of Supply and Demand

The Law of Supply and Demand is one of the fundamental principles of economics. It states that the quantity of…

Jonathan Poland © 2026

Enter your
text here

Learn More

Overchoice Jonathan Poland

Overchoice

Overchoice, also known as the “paradox of choice,” is a phenomenon in which having too many options or choices can…

Media Planning Jonathan Poland

Media Planning

Media planning involves the strategic selection and scheduling of various media channels and platforms to deliver advertising messages to a…

IT Operations Jonathan Poland

IT Operations

IT operations involves the delivery and management of information technology services, including the implementation of processes and systems to support…

Personal Data Jonathan Poland

Personal Data

Personal data is any information that can be used to identify an individual, including their name, date of birth, address,…

Process Risk Jonathan Poland

Process Risk

Process risk is the risk of financial loss or other negative consequences that may arise from the operation of a…

Due Diligence Jonathan Poland

Due Diligence

Due diligence refers to the level of investigation, care, and judgement that is appropriate and expected in a given situation.…

Abstraction Jonathan Poland

Abstraction

Abstraction is a problem-solving technique that involves looking at a problem in general, rather than specific, terms. It involves using…

Beautiful Words Jonathan Poland

Beautiful Words

Beautiful words are words that have a mysterious, wondrous, or charming quality. They can also have a dark or conflicted…

Change Management Jonathan Poland

Change Management

Change management is the process of planning and implementing changes within an organization. It involves analyzing the current state of…