What is ISO/IEC 38503 - Assessment of governance of information technology about?
ISO/IEC 38503 is a series on information technology. Information technology is the use of computers to create, process, store, retrieve, and exchange all kinds of electronic data and information. ISO/IEC 38503 provides guidance on the assessment of governance of information technology (IT) based on the principles, definitions, and model for the governance of IT outlined in ISO/IEC 38500 and ISO/IEC TR 38502 and the implementation considerations outlined in ISO/IEC TS 38501 .
ISO/IEC 38503 includes approaches for conducting the assessment, the criteria against which the assessment can be made, guidance on the evidence that can be used for the assessment, as well as a method for determining the maturity of the organization’s governance of information technology.
BS ISO/IEC 38503:2022 history
2022BS ISO/IEC 38503:2022 Information technology. Governance of IT. Assessment of the governance of IT