Mapping the Information Technology (IT) governance requirements contained in the King III Report to the IT domains and processes of the Control Objectives for Information and Related Technology (COBIT) framework

Steenkamp, Gretha, Boshoff, Willie, Butler, Rika

12 1900

Thesis (MAcc)--University of Stellenbosch, 2009. / ENGLISH ABSTRACT: Due to the integration of IT into all aspects of modern-day businesses, it is vital that the risks associated with IT are governed as an integral element of enterprise-wide corporate governance. The Third King Report on Corporate Governance (King III) was issued by the South African Chapter of the Institute of Directors in September 2009 and becomes operational on 1 March 2010. This marks the first time that the King Report has specifically addressed IT governance. King III will apply to all corporate entities. Such entities could benefit from applying an IT governance framework to ensure that they adequately address all aspects of IT governance, as required by King III. One of the comprehensive frameworks available is COBIT (Control Objectives for Information and Related Technology) issued by ISACA (previously known as the Information Systems Audit and Control Association). King III mentions the fact that COBIT could be used to assess and implement IT governance within an entity. The aim of this research is to determine whether the use of COBIT ensures compliance with King III’s requirements relating to IT governance. It was found that the main requirements in King III relating to IT governance and the processes of COBIT are well aligned, and, as a result, COBIT could be used effectively to ensure compliance with King III in relation to IT governance. However, an entity would still have to pay attention to certain King III-specific requirements. Furthermore, it was found that the application of the principles in COBIT could further strengthen the IT governance of an entity, as COBIT also addresses the more detailed activities, such as the implementation and operation of the IT system, which is not specifically addressed by King III.

Information Technology (IT) governance

Theses -- Accountancy

Dissertations -- Accountancy

Análise de processos de tecnologia da informação para o disclosure da informação contábil

Lazzari, Robson Luis Meneguzzi

15 March 2016

Submitted by Silvana Teresinha Dornelles Studzinski (sstudzinski) on 2016-06-14T15:26:55Z No. of bitstreams: 1 Robson Luis Meneguzzi Lazzari_.pdf: 2737794 bytes, checksum: 9dadff38c69edaabec05da0277f10c14 (MD5) / Made available in DSpace on 2016-06-14T15:26:55Z (GMT). No. of bitstreams: 1 Robson Luis Meneguzzi Lazzari_.pdf: 2737794 bytes, checksum: 9dadff38c69edaabec05da0277f10c14 (MD5) Previous issue date: 2016-03-15 / UNISINOS - Universidade do Vale do Rio dos Sinos / O objetivo deste estudo foi analisar como os processos de TI contribuem para o disclosure da informação contábil. Esta investigação foi realizada com relação ao disclosure das informações contábeis para a gestão da empresa, envolvendo os principais agentes internos nesse processo. A metodologia de pesquisa baseia-se em um estudo de caso realizado no segundo semestre de 2015, em uma empresa atuante no setor moveleiro do Rio Grande do Sul. Os dados coletados foram analisados por meio de análise de conteúdo. Os resultados encontrados indicam como os processos de TI contribuem para o disclosure da informação contábil, identificando e analisando os principais aspectos de disclosure que devem ser priorizados pelos processos de TI para disponibilizar informações mais assertivas e de qualidade para a gestão da organização. Neste contexto, no caso investigado, os aspectos prioritários são os de acessibilidade – acesso às informações por qualquer recurso de TI e em qualquer lugar –, garantia da segurança – dos dados e informações –, assegurar a integridade, agilidade (tempestividade) na disponibilização, alinhamento com a estratégia do negócio, disponibilização de controles e recursos de monitoramento de despesas e receitas, transparência dos processos de negócio de TI, criação de confiança – nos recursos de TI e no disclosure de suas informações – e alinhamento com fatores externos (como leis). / The objective of this study was to analyze how IT processes contribute to the disclosure of accounting information. This research was conducted with a relation of the disclosure of accounting information for management of the company, involving the main internal actors in this process. The research methodology is based on a case study realized in the second half of 2015 in a furniture industry of Rio Grande do Sul. The collected data were analyzed using content analysis. The results indicate how IT processes contribute to the disclosure of accounting information, identifying and analyzing the main aspects of disclosure that should be prioritized by IT processes to deliver information more assertiveness and quality to management of the organization. In this context, in the investigated case, the priority aspects are accessibility - access to information by any IT resource in anywhere - ensuring security – of Data and information - to ensure the integrity, agility (timing) in disclosure, alignment with the business strategy, providing control and monitoring capabilities of revenue and expenditure, transparency of IT business processes, creating confidence - the IT resources and disclosure of your information - and alignment with external factors (such as laws).

Sistemas de Informação (SI)

COBIT 5

Disclosure

Information technology (IT) governance

Information systems