Home

ISO/IEC 38500:2008
Subscribe to updates

Corporate governance of information technology

This standard is also included in the online collection : IT Management collection.

Abstract

ISO/IEC 38500:2008 provides guiding principles for directors of organizations (including owners, board members, directors, partners, senior executives, or similar) on the effective, efficient, and acceptable use of Information Technology (IT) within their organizations.

ISO/IEC 38500:2008 applies to the governance of management processes (and decisions) relating to the information and communication services used by an organization. These processes could be controlled by IT specialists within the organization or external service providers, or by business units within the organization.

It also provides guidance to those advising, informing, or assisting directors.

They include:

  • senior managers;
  • members of groups monitoring the resources within the organization;
  • external business or technical specialists, such as legal or accounting specialists, retail associations, or professional bodies;
  • vendors of hardware, software, communications and other IT products;
  • internal and external service providers (including consultants);
  • IT auditors.

 

Format
  • PDF

    This format preserves the paper layout, and is watermarked

  • EPUB

    This format allows documents to be read on tablets and smartphones

  • COLOUR PDF

    Enhanced user-friendly colour PDF format

  • REDLINE

    See any updates made from previous versions at a glance

  • PAPER

    Normally A4 size documents. Shipping costs apply

Language

+

PDF + ePub
Paper

Swiss francs CHF 88

Add to basket

Got a question?

Check out our FAQs

Email customer services
or call us on +41 22 749 08 88
09:00 – 12:30, 14:00 – 17:00 (UTC+1).