Auditing digital governance: Major changes to the Digital Governance Audit Guide

15 novembre 2023 | ACTUALITÉS, Cigref in english, Communiqués

Organisations today are finding that, with the acceleration of technological developments, the “softwarisation” of products and production chains, and the digitisation of all organisational processes, the contribution of digital technology to the company’s value chain is increasing considerably. For Cigref’s member organisations, this phenomenon is characterised by an increase in their dependence on digital technology and a rise in the associated vulnerabilities and risks.

The last three years have seen a wealth of developments, some of which have had a structuring effect on the operational models of digital departments and on the governance of digital technology within companies. The growth, performance and resilience of organisations now depend on digital technologies.

We are seeing the spread of ‘agile’ approaches, the hybridisation of IT sourcing (cloud or in-house), the evolution of make-or-buy models, but also the development of new practices such as DevOps and, above all, a change in the roles and missions of digital departments.

It was against this backdrop that Cigref launched an update of the “IT Governance Audit Guide”. The result was a working group made up of members with a variety of professional backgrounds, whose task was to reconsider the 12 core vectors of the Audit Guide in the light of developments in the digital function since 2019.

The results of the group’s work are therefore presented in this note, which provides a summary of best practices to be shared, and which will offer good material for the next edition of the Guide, on which we will be working with our long-standing partners, ISACA-AFAI and IFACI.

Editorial by Djilali KIES, CIO at TDF, Working group leader

Auditer la gouvernance du numérique : les évolutions majeures du Guide d’audit de la gouvernance du numérique

Les organisations constatent aujourd’hui, qu’avec l'accélération des évolutions technologiques, la softwarisation des produits et des chaînes de production, et la numérisation de l’ensemble des processus des organisations, la contribution du numérique à la...

Cigref publishes its third version of the trusted cloud reference document

Cigref's "trusted cloud" referential expresses the generic trust needs of Cigref members as users of cloud services. It summarizes Cigref's work carried out since 2019 by the "trusted cloud" working group, led by Vincent Niebel, CIO of the EDF Group. This version,...

Rapport d’orientation stratégique 2023 du Cigref : « 10 ruptures à l’horizon 2030-2040 ».

À l’occasion de sa 53ème Assemblée générale, le Cigref a dévoilé l’édition 2023 de son Rapport d’orientation stratégique, « 10 ruptures à l'horizon 2030-2040 ». Ce rapport d'orientation stratégique (ROS) répond aux inquiétudes et au besoin d’anticipation et de...