Within most companies, the data from which the company creates its reports originates from data within the company’s IT facility. As you might expect, much of corporate governance is based upon IT-related factors.
Further, over the past decades, companies have invested heavily in IT solutions that drive a variety of company (enterprise) applications. Unfortunately, many IT projects fail, either because of poor management, incorrect requirements, or misalignment of the IT solution with the company strategy. Put simply, companies make large investments in IT solutions, and to succeed, the projects should be governed.
IT governance is a subset of corporate governance, which includes the policies, procedures, and controls that relate to information technology use and deployment, performance, return on investment, and risk mitigation. As shown in FIGURE 15-6, IT governance is one of many key governance types a company must fulfill.