Pauline IT
PROFESSIONAL
toolkit
WHAT IS POLICY
IT policy and procedures are valuable governance tools in each company. While policies instruct the rules to be followed, procedures specify how those actual rules are applied in real life. Put together, policies and procedures determine expectations for conduct and activities as well as supplying methods to apply those expectations.
GUIDELINES
1. Communication Skills: Excellent communication skills are required for success no matter the size of the organization
2. Benchmarking: Consists of comparing your processes and performances with the best.
3. Competitive Intelligence: Learning and understanding what or how others are doing worldwide in order to elevate one’s competitions
4. Safety in Teams: Each staff deserve a safe environment and the business should provide it to them.
5.Tolerance in the Workplace: tolerance is a fundamental practice on working to achieve business goals and implementing
original solutions to a vast range of workplace problems and trouble
6. Innovation: Consist of applying new and better solutions that meet new requirements, unarticulated needs, or existing market needs
7.Quality of Services: in terms of presentation, functionality, value, speed, timeliness, reliability, courtesy, friendliness.
8. IT security roles, policies and procedures: management and security actions must be in line with business requirements.
9. Confidentiality: Authorized users can only have access to information, guaranteed business operations and data exchanges can be trusted.
TOOLS AND BEST PRACTICES
​
COBIT
"COBIT (Control Objectives for Information and Related Technologies) is a good-practice framework created by international professional association ISACA for information technology (IT) management and IT governance. COBIT provides an implementable "set of controls over information technology and organizes them around a logical framework of IT-related processes and enablers". (Read here)
Risk Management
Risk management is the identification, evaluation, and prioritization of risks (defined in ISO 31000 as the effect of uncertainty on objectives) followed by coordinated and economical application of resources to minimize, monitor, and control the probability or impact of unfortunate events or to maximize the realization of opportunities. Risk management’s objective is to assure uncertainty does not deflect the endeavor from the business goals. Continue...
Security
Internet Security: Internet security is a branch of computer security specifically related to the Internet, often involving browser security[citation needed] but also network security on a more general level, as it applies to other applications or operating systems as a whole. Its objective is to establish rules and measures to use against attacks over the Internet.The Internet represents an insecure channel for exchanging information leading to a high risk of intrusion or fraud, such as phishing, online viruses, trojans, worms and more.
​
​
​
