Title :
Towards a model for information technology governance applicable to the banking sector
Author :
Lemus, Sandra María ; Pino, Francisco J. ; Velthius, Mario Piattini
Author_Institution :
Superintendencia de Bancos de Guatemala, Guatemala, Guatemala
Abstract :
Information Technologies (IT) play a crucial role in the development of activities concerning banking organizations. To achieve IT Governance, while at the same time giving special consideration to the attainment of business objectives, is of essential interest to any banking organization. This article presents a model for IT Governance which is applicable to the banking sector, which begins with the identification of COBIT processes that support the fulfilment of the principles of operative risk defined by BASEL II. It also integrates best practices oriented to risk and investment management for IT, information security and service lifecycle administration, described in models like: RISK IT, VAL IT, ISO 27002 and ITIL respectively. This model allows a banking organization to govern, evaluate and monitor its IT, thus fitting it to its strategic objectives. It also permits it to manage the operative risk from the perspective of normative fulfilment in banking.
Keywords :
banking; investment; risk management; security of data; COBIT process identification; IT; banking organizations; banking sector; information security; information technology governance; investment management; operative risk principle; risk management; service lifecycle administration; Banking; IEC standards; ISO standards; Organizations; Risk management; Silicon compounds; BASEL II; COBIT; ISO 27002; IT Governance; ITIL; RISK IT; VAL IT;
Conference_Titel :
Information Systems and Technologies (CISTI), 2010 5th Iberian Conference on
Conference_Location :
Santiago de Compostela
Print_ISBN :
978-1-4244-7227-7
