Why choose the IT Governance Network?

Global leaders in the design and implementation of IT governance frameworks and mechanisms.

More than 10 years experience in the protection of personal information (POPIA).

Consulting services, software solutions and wide range of training available.

POPIA Compliance Framework and Monitoring System

POPI Compliance FrameworkThe Protection of Personal Information Act is technical and complex, it requires a wide range of technical and organisational measures to be implemented to protect the rights of natural and juristic persons to privacy.  To ensure compliance, the Information Regulator requires all organisations to develop and implement a compliance framework so that they can effectively monitor the protection afforded natural and juristic persons. 

A functionally rich POPIA Compliance Framework and Monitoring System supports small and large organisations effectively and efficiently achieve POPIA compliance. It enables organisations to jump start their POPIA programme by implementing an international standards-based POPIA compliance framework.   

More about the POPIA Compliace Framework and Monitoring System ...

King IV

To download a demonstration copy of the IT Governance assessment tool for use with King IV, first register on this web site in the top right-hand corner. Once registered, a link on the left-hand menu will display the download option.

To learn more about the assessment and the requirements of each domain, attend one of our IT Governance seminars. Details of the training schedule are available on the SEMINAR SCHEDULE at the top of screen.  

Description of the King IV - Compliance Governance course

King IV defines South Africa’s requirements for compliance governance. The King IV Principle 13 recommends 8 practices for compliance governance that align with governance principles and governance outcomes. The recommended practices include strategic direction and policy on compliance from the governing body and the adoption of the appropriate standards and framework to give effect to the policy.

King IV recommends that the governing body delegate to management responsibility for implementing policy on enterprisewide compliance management and for embedding it into the day-to-day, medium and long-term decision making, activities and culture. The governing body is to oversee management of compliance with laws and adherence to non-binding rules, codes and standards.

King IV requires practices that align with principles, and principles that align with governance outcomes. Governance systems should be designed to reinforce and govern a holistic and inter-related set of arrangements that can be understood and implemented in an integrated manner using organisational structures, processes and ethical, conscious behaviour.

ISO 19600 is an international stardard provides guidance for establishing, developing, implementing, evaluating, maintaining and improving an effective and responsive compliance management system within an organization.

ISO 19600 requires that the governing body and top management demonstrate leadership and commitment with respect to the compliance management system by establishing and upholding the core values of the organization, ensuring that the compliance policy and compliance objectives are established and are consistent with the values, objectives and strategic direction of the organization and ensuring that policies, procedures and processes are developed and implemented to achieve compliance objectives.

SEMINAR OBJECTIVES

This seminar will assist participants understand the King IV requirements for compliance governance and learn how to improve their current capability to fulfil compliance obligations and achieve compliance objectives.

On completion of this seminar, participants will be able to:

  • Demonstrate an understanding of King IV corporate governance framework, the applicable principles and practices for compliance governance
  • Articulate a plan of action to address the requirements of King IV and assist the governing body and top management fulfil their compliance governance responsibilities as set out in King IV
  • Design and implement a compliance governance framework and management system using the guidance of ISO 19600
  • Develop a suitable accountability framework, organisational structures, policies, processes and practices
  • Perform reviews and report on the compliance governance framework.

COURSE CONTENT

  • The role of the board and top management in governing how compliance supports the organisation
  • Developing policy for the articulation of strategic direction and adoption of appropriate standards and frameworks
  • Implementing policy for enterprise-wide compliance management, long and medium-term decision-making and integration into day-to-day operations
  • Managing compliance with laws and adherence to non-binding rules, codes and standards
  • Mechanisms for monitoring and assessing adequacy and effectiveness of compliance
  • Undertaking formal reviews of the adequacy and effectiveness of the organisation’s compliance function.

Description of the King IV - Information and Technology Governance course

King IV defines South Africa’s requirements for information and technology governance. The King IV Principle 12 recommends practices for the governance of information and technology that align with governance principles and governance outcomes. COBIT® is an IT governance and management framework from ISACA. It provides practical guidance for the implementation of IT governance in accordance with King IV.

Governance systems should be designed to reinforce and govern a holistic and inter-related set of arrangements that can be understood and implemented in an integrated manner using organisational structures, processes and ethical, conscious behaviour.

SEMINAR OBJECTIVES

This seminar will assist participants understand the King IV requirements for information and technology governance and learn how to improve their current capability to govern technology and information.

On completion of this seminar, participants will be able to:

  • Demonstrate an understanding of King IV corporate governance framework, the applicable principles and practices for information and technology governance
  • Articulate a plan of action to address the requirements of King IV and assist the Board and CIO fulfil their governance responsibilities as set out in King IV
  • Design and implement a governance framework and management system for the information and technology governance practices of King IV
  • Develop an accountability framework
  • Perform reviews and report on the information and technology governance framework.

COURSE CONTENT

  • The role of the board and CIO in governing the way information and technology supports the organisation
  • Developing policy for the articulation of strategic direction and adoption of appropriate standards and frameworks
  • Implementing policy for enterprise-wide information and technology management, long and medium-term decision-making and day-to-day operations
  • Techniques for establishing adequacy and effectiveness of information and technology management
  • Governance of cyber-security risk and opportunity
  • Performing formal reviews of the adequacy and effectiveness of an organisation’s information and technology function
  • Minimum requirements for the disclosure of structures and processes for information and technology management.

View the SEMINAR SCHEDULE at the top of this page for details of these King IV courses.

COBIT 5 Assessor mistakes!

Common mistakes by COBIT 5 assessors.

View video

King IV Corporate Governance Assessment

King IV assessmentAssess the current level of your organisation's corporate governance using this King IV assessment tool.

Read more...

COBIT Assessment as a Service

COBIT 5 AssessmentConduct a COBIT assessment using this COBIT Assessment-as-a-Service.

Read more...

POPIA Preliminary Assessments

it governance oversightPOPIA preliminary assessments provide an efficient and effective approach to determining the extent to which the requirements of the Protection of Personal Information Act have been addressed.

Read more...

Go to top