In fact, there are some problems with IT governance. IT governance is always being confused with IT controls, IT management, and compliance. As the terms are increasing, there are more problems coming out. In example, Governance, Risk, and Compliance (GRC) has the connection between compliance and governance. The main concern of IT governance is to manage the IT resource to represent different stakeholders where their ranking are built by the governing body from the organizations. IT governance can be described in a simpler way such as, IT governance is to achieve the goal by managing the use of IT resources. In actual, IT governance is regarding to create values with the direction provided according to the stakeholders, where the IT management …show more content…
For instance, AS8015-2005, Australian Standard for IT Governance. It was adopted as ISO/IEC 38500 in May, years 2008. ISO/IEC 38500-2008, IT governance gives the framework for effective IT governance to assist the organization to fulfill and understand the organizations regulatory, legal, and ethical obligations from different sizes of organizations, inclusive of both public and private organizations, non-profit organizations, and government entities. It gives the principles to guide the organizations directors for efficient, effective, and acceptable use of IT in their organizations. Besides, Control Objectives for Information and related Technology, COBIT is the world leading IT governance and control framework. IT has the model for reference of 37 IT processes that usually found in a company. The processes are defined with process outputs and inputs, process objectives, key process activities, elementary maturity model, and performance measures. There are some other framework such as the Capability Maturity Model, CMM, which concern on software engineering, the Balance Scorecard, BSC, the ways to assess the company performance in different field, Six Sigma, concern on the quality assurance, The Open Group Architecture Framework (TOGAF), the guide to align the IT and business to produce effective governance and useful