I manage a small IT shop pretty much by myself and have to wear many hats. Often being reactive rather than proactive to IT issues due to many business demands. This past year I earned a CISA (certified IS Auditor) and am working on a CISM (certified Info Security Mgr) certification. The business is expanding rapidly and as we bring on more help and I focus more on leading rather than doing, I’m looking for help. IT Goverance is probably the term I’d best describe as my emerging role. Anyway, CoBIT are a set of Control objective for Information Technology. I’m working this year on implementing CoBIT in our organization but CoBIT in itself is a framework and doesn’t explain the how-to/best practices. Others have suggested turning to Tech Republic to help sort out how to implement an IT Goverance solution and blend theory together with real-life practices. Any thoughts or feedback would be appreciated.
Joe