Abstract
IT compliance is one of the main challenges for Information Systems, not only because it is difficult to implement compliant applications, but because it requires very high investments and expenditures. Companies involved by IT compliance can pursue two different behaviours: the Compliance view considers IT compliance merely like a duty to accomplish with, and related cost as a necessary expenditure. The Governance view on the contrary considers IT compliance rules like an opportunity to improve administrative processes and information quality, and related cost like an investment able to create satisfactory returns.
In this paper, these two views are described, especially focusing on Governance view and benefits deriving from its implementation in companies. A business case is also examined, describing the implementation of IT compliance applying the Governance view in a large and global Italian group.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Damianides M (2005) Sarbanes-oxley and IT governance: new guidance on IT control and compliance. Inf Syst Manage 22(1):77–85
Cantino V (2007) Corporate governance, misurazione della performance e compliance del sistema di controllo interno. Giuffè, Milano
Broadbent M (2005) Why governance matters. CIO Insight II
Dameri RP, Privitera S (2009) IT governance. Franco Angeli, Milano
Dameri RP (2009) Le determinanti dell’IT governance e la creazione di valore, impresaprogetto no 1. www.impresaprogetto.it
Gartner (2006) Understanding the cost of compliance, July
Botosan C (2000) Evidence that greater disclosure lowers the cost of equity capital. J Appl Corp Finance 12(4)
Weill P, Ross M (2004) IT governance. How top performers manage IT decision rights for superior results. Harvard Business School Press, Boston
Dameri RP (2008) Governance, risk and compliance management suite. A software selection for implementing an integrated compliance framework in listed companies, Genova, 2nd April 2008
ITGI (2004) IT control objectives for Sarbanes-Oxley. www.itgi.org
Dameri RP, Garelli R (2006) IT governance in international business group. In Proceedings of the 13th European conference on information technology evaluation, Università di Genova, Genova, Italy, 28–29 September 2006
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Dameri, R.P. (2010). From IT Compliance Cost to IT Governance Benefits: An Italian Business Case. In: D'Atri, A., De Marco, M., Braccini, A., Cabiddu, F. (eds) Management of the Interconnected World. Physica-Verlag HD. https://doi.org/10.1007/978-3-7908-2404-9_37
Download citation
DOI: https://doi.org/10.1007/978-3-7908-2404-9_37
Published:
Publisher Name: Physica-Verlag HD
Print ISBN: 978-3-7908-2403-2
Online ISBN: 978-3-7908-2404-9
eBook Packages: Business and EconomicsBusiness and Management (R0)