COBIT 5 AS A MECHANISM FOR IT GOVERNANCE A CASE STUDY OF STATOIL COMPANY

Abstract

The increasing environmental complexity led large companies to adopt the governance concept to meet their different stakeholders’ required objectives. However, governance needsa supportto be successful. IT Governanceaimsto deliver morevaluefrom IT investmentsina satisfactory method for all stakeholders, meeting the governance objectives. IT Governance focuses on five components: Strategic Alignment, Value Delivery, Resource Management, Risk Management, and Performance Measurement. Strategic Alignment is about aligning IT with the business and collaborative solutions. Value Delivery concentrates on optimizing expenses and proving the value of IT. Resource Management aims to optimize knowledge and IT infrastructure. Risk Management purpose is addressing the safeguarding of IT assets, disaster recovery and continuity of operations.PerformanceMeasurementisabouttrackingprojectdeliveryandmonitoringIT services.Eachoneofthesestagesnecessitatesasetof factors to become mature. COBIT 5 (Control Objectives for Information and its related Technology) is the latest framework for effective IT Governance. In order to realise maturity of IT Governance components, COBIT 5 provides and elaborates Business and IT goals, outcome and performance metrics, process framework, control objectives, management practices, Maturity models, IT balanced scorecard, COBIT benchmarks and IT Assurance Guide. Statoil is one of the best international companies which adopt IT Governance, and it has a long experience in this area. That’swhyithasbeenchosenasanadequatemodelforempiricalstudy