Auditing digital governance: Major changes to the Digital Governance Audit Guide

15 novembre 2023 | ACTUALITÉS, Cigref in english, Communiqués

Organisations today are finding that, with the acceleration of technological developments, the “softwarisation” of products and production chains, and the digitisation of all organisational processes, the contribution of digital technology to the company’s value chain is increasing considerably. For Cigref’s member organisations, this phenomenon is characterised by an increase in their dependence on digital technology and a rise in the associated vulnerabilities and risks.

The last three years have seen a wealth of developments, some of which have had a structuring effect on the operational models of digital departments and on the governance of digital technology within companies. The growth, performance and resilience of organisations now depend on digital technologies.


We are seeing the spread of ‘agile’ approaches, the hybridisation of IT sourcing (cloud or in-house), the evolution of make-or-buy models, but also the development of new practices such as DevOps and, above all, a change in the roles and missions of digital departments.


It was against this backdrop that Cigref launched an update of the “IT Governance Audit Guide”. The result was a working group made up of members with a variety of professional backgrounds, whose task was to reconsider the 12 core vectors of the Audit Guide in the light of developments in the digital function since 2019.

The results of the group’s work are therefore presented in this note, which provides a summary of best practices to be shared, and which will offer good material for the next edition of the Guide, on which we will be working with our long-standing partners, ISACA-AFAI and IFACI.

Editorial by Djilali KIES, CIO at TDF, Working group leader

Saisir les opportunités de l’IA pour un numérique responsable : nouveau rapport disponible !

Numeum, l’Institut G9+, le Cigref, Planet Tech Care et le Hub France IA, ont dévoilé un rapport inédit intitulé « Green AI & AI for green ». Fruit d’une étude qualitative menée auprès de 72 professionnels – Directeurs des Systèmes d'Information (DSI), Chief Data...

Anticiper les cyberattaques : de la surveillance à la gestion de crise

Dans un monde de plus en plus connecté, les entreprises, grandes ou petites, se retrouvent désormais exposées à des cyberattaques de toutes sortes. La numérisation rapide des organisations a considérablement étendu leur surface d'attaque, créant ainsi un défi majeur...

Le Cigref et ses partenaires européens publient un Manifeste pour les élections européennes.

Nos quatre associations, Beltug en Belgique, Cigref en France, CIO Platform Nederland aux Pays-Bas et Voice en Allemagne, qui représentent collectivement plus de mille grandes entreprises européennes utilisatrices de technologies numériques, ont identifié quatre...

Metaverse: Demystification and the road ahead

This report on metavers, produced by the Cigref working group led by Malika Mir, Director of Information Systems at GROUPE BEL, and Olivier Le Garlantezec, Digital Tech Partnerships Director at LVMH Group, explores the various issues facing organisations and society...