ISO/IEC 38503:2022 信息技术 IT治理 IT治理评估

标准编号：ISO/IEC 38503:2022

中文名称：信息技术 IT治理 IT治理评估

英文名称：Information technology — Governance of IT — Assessment of the governance of IT

发布日期：2022-01

标准范围

ISO/IEC 38503:2022本文件根据ISO/IEC 38500和ISO/IEC TR 38502中概述的IT治理原则、定义和模型以及ISO/IEC TS 38501中概述的实施注意事项，为信息技术(IT)治理评估提供了指导。该文件包括进行评估的方法、进行评估的标准、可用于评估的证据指南，以及确定组织IT治理成熟度的方法。本文档适用于各种规模的组织，无论其使用程度如何。

ISO/IEC 38503:2022 This document provides guidance on the assessment of governance of information technology (IT) based on the principles, definitions and model for the governance of IT outlined in ISO/IEC 38500 and ISO/IEC TR 38502 and the implementation considerations outlined in ISO/IEC TS 38501.
This document includes approaches for conducting the assessment, the criteria against which the assessment can be made, guidance on the evidence that can be used for the assessment, as well as a method for determining the maturity of the organization’s governance of IT.
This document is applicable to organizations of all sizes, regardless of the extent of their use of IT.

标准预览图