The King III Report on Corporate Governance specifies over 150 requirements relating to the governance and management of information and technology. According to the King III Code, monitoring progress with the implementation of these IT governance and management requirements is the board's responsibility.

The overall status of compliance with the King III requirements is best communicated by way of a scorecard that compares one year to the next. The total compliance score is determined from each of the IT governance domains addressed by the King III Report:

  • Governance structures, mechanisms and processes
  • Strategic alignment of IT with the business
  • Delivery of value from investments in IT
  • IT resource optimisation
  • IT risk management
  • Managing and reporting IT performance.