This ICT Governance Implementation Toolkit assists departments with the implementation of the Corporate Governance of ICT Policy Framework. It focuses on the core requirements, as defined by the DPSA, for a governance framework and provides departments with the key components with which to get started.
- Corporate Governance of and Governance of ICT System (adopted principles and adapted practices)
- Governance of ICT Policy
- Corporate Governance of ICT Charter (articulation of the requirements for the Corporate Governance of and Governance of ICT and description how CGICT will be implemented and managed in the context of the organisation, the enabling governance structures, processes and practices)
- Terms of reference for the required structures to achieve the organisation's strategic objectives (ICT Strategic Committee, ICT Steering Committee, Architecture Committee, Risk Committee and Audit Committee)
- Role descriptions and responsibilities (Governance Champion, Enterprise Architect, Government Information Technology Officer, ICT Manager)
- Corporate Governance of and Governance of ICT implementation and maintenance plan
- ICT Legal Register
- Risk Management Policy
- Internal Audit Plan (details planned ICT audits)
- ICT Accountability Framework and Management Plan
- ICT Portfolio Management Framework
- Information Security Strategy
- ICT Security Policy
- Information Security Plan
- ICT Continuity Plan informed by the Departmental Business Continuity Plan
- COBIT 5 EDM1 ICT Governance
- COBIT 5 APO1 ICT Management
- COBIT 5 APO2 ICT Strategy
- COBIT 5 DSS1 ICT Operations
- COBIT MEA1 ICT Performance
- COBIT 5 APO12 Risk Management
- COBIT 5 APO13 Security Management
- COBIT 5 DSS5 Information Security Services
- COBIT 5 DSS4 ICT Continuity.