Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

ME1.5 - Board and Executive Reporting

This topic is intended to enable collaboration and sharing of information to facilitate a better understanding and approach to implementing this COBIT control objective based on the risk, value and guidance provided by its corresponding control practices.

COBIT Control Objective ME1.5 - Board and Executive Reporting is contained within Process Popup Monitor and Evaluate IT Performance.

Learn more about COBIT and related publications.

Click “Join This Community” to be able to actively participate in discussions and contribute content. You must be an ISACA member to join this topic. Join ISACA now.

This Topic Has:
7 Members
0 Online
4231 Visits

 Recent Discussions

Community Leader

Knowledge Center Manager

Knowledge Center Manager

Title: Become a Topic Leader!

Badge: Energizer

Board and Executive Reporting

Develop senior management reports on IT’s contribution to the business, specifically in terms of the performance of the enterprise’s portfolio, IT-enabled investment programmes, and the solution and service deliverable performance of individual programmes. Include in status reports the extent to which planned objectives have been achieved, budgeted resources used, set performance targets met and identified risks mitigated. Anticipate senior management’s review by suggesting remedial actions for major deviations. Provide the report to senior management, and solicit feedback from management’s review.

View value and Risk Drivers  help

Hide value and Risk Drivers help

Value Drivers

  • Quality reporting that meets the board’s governance requirements
  • Performance information that can be effectively and efficiently used for strategic, managerial and day-to-day operations
  • Enhanced decision-making processes in responding to business needs and concerns, and a focus on process improvement opportunities
  • Increased satisfaction of management and the board with performance reporting
  Risk Drivers
  • Decisions failing to support the business needs and concerns
  • Senior management dissatisfied with IT performance
  • Disconnect between management and IT
  • Inability of the board and executive to direct and control key IT activities

View Control Practices  help

Hide Control Practices  help

  1. Establish a board and executive reporting process, based on the performance monitoring framework, for regular, accurate and timely reporting on IT’s contribution to the business by measuring achievement of IT goals, mitigation of IT risks and the usage of resources.
  2. Design senior management reports to highlight key issues (positive and negative) generally relating to IT’s contribution to the business and specifically to IT solution and service delivery capability and performance.
  3. Consolidate results of IT performance measurement. Translate them into business performance impacts (positive or negative) and incorporate the results into standard periodic reports to the board. Clearly link IT performance measurement to business outcomes and identify how IT supports business strategy.

Discussions: 0 total

Must be a Topic member to contribute

No Results Found

Documents & Publications: 104 total

Must be a Topic member to contribute
View All »
Posted by ISACA 36 days ago
Posted by ISACA 505 days ago
Posted by ISACA 719 days ago
Posted by ISACA 764 days ago

Events & Online Learning: 10 total

Journal Articles: 253 total

Volume 3, 2107
by Jayakumar Sundaram, CISA, ISO 27001 LA
The SoA is a continuously updated and controlled document that provides an overview of information security implementation.
Volume 1, 2018
by Mike Van Stone, CISA, CISSP, CPA, and Ben Halpert
Ever-changing laws continue to increase the risk and cost of noncompliance when unintentional data losses occur.
Volume 1, 2018
by Steven J. Ross, CISA, CISSP, MBCP
Managing availability in a multi-modal environment requires a great deal of attention to details, which are being defined by the multi-modal pioneers of our day.
Volume 1, 2018
by Mohammed J. Khan, CISA, CRISC, CIPM
To facilitate and administer the implementation of controls around the subject of big data, one must truly understand the concepts of deidentification, reidentification and anonymization.
Volume 1, 2018
by Adeniyi Akanni, Ph. D., CISA, CRISC, ITIL
This article describes a six-stage cycle of implementing big data in commercial banks, points out the major challenges in implementation and provides a suggested solution.
Volume 1, 2018
by Andrew Clark
With advances in computing power, the abundance of data storage and recent advances in algorithm design, machine learning is increasingly being utilized by corporations to...

Wikis: 2 total

Blog Posts: 131 total

21 Feb 2018
We are happy to announce that  on Feb//2018  the ISACA awareness session  was held in Baghdad.This the first time to speak about ISACA Value in Iraq.Professional from government and private sector were excited to hear about ISACA value and they started to...
Posted By : Ali099 | 1 comments
Have you experienced ransomware attack so far and, if yes, what did you do to resolve? I set up Twitter poll here: It lasts for seven days. Thank you for taking part in the poll.
Posted By : Dragan Pleskonjic | 2 comments
There are some math models for business that MBAs are taught. Just like assembling burgers for fast food or call wait queue management in a call center, vulnerability patching is a time based business opportunity. Leadership can be expected to use this ...
Posted By : Don Turnblade | 1 comments
My personal thoughts after listening to C-level executives at the CxO Roundtable Series sponsored by Intel, IBM, HyTrust & ReedSmith. For an invite, please reach out to me. Data Protection under the GDPR For past few months, I’ve been helping to org...
Posted By : Thomas152 | 1 comments
I predict that on 1 July 2018, I will be calmly eating a barbecue sandwich, talking with friends and possibly, I will burn a copy of the RFC2246: TLS version 1.0 standard for entertainment value.  Those will less effective Vendor, Network, Systems, Applic...
Posted By : Don Turnblade | 0 comments
Posted By : TafadzwaPadare | 1 comments