Our approach to information technology governance is mainly based on the COBIT (Control Objective for information and related Technologies) framework. Our consultants are CISA certified and work with version 4.0 of COBIT.

Information technology governance has five main areas:

- Value Management
- Risk Management
- Performance Management
- Resources Management
- Strategic Alignment

The first step in implementing a governance framework is to insure that you have a detailed understanding of the objectives of your Business. These objectives will allow you to identify the IT objectives that are most important to your organization.

For instance, if the protection of personal information is an essential objective of your organization, then information security management becomes an essential element of your IT strategy.

You can then analyze the level of maturity of your processes: how your information security management compares with regard to best practices in the industry. You can then determine the actions to be taken, and define an action plan.