1、BSIS0/1EC38500:2015BRITISH STANDARDNational forewordThis British Standard is the UK implementation of ISO/IEC 38500:2015It supersedes BS ISO/EC 38500:2008 which is withdrawn.The UK participation in its preparation was entrusted by TechnicalCommittee IST/60,IT Service Management and IT Governance,toS
2、ubcommittee IST/60/1,Governance of Information Technology.A list of organizations represented on this committee can be obtained onrequest to its secretary.This publication does not purport to include all the necessary provisions ofa contract.Users are responsible for its correct application.The Brit
3、ish Standards Institution 2015.Published by BSI Standards Limited 20151SBN97805808079541Cs03.100.99:35.020:35.080Compliance with a British Standard cannot confer immunity fromlegal obligations.This British Standard was published under the authority of theStandards Policy and Strategy Committee on 28
4、 February 2015.Amendments issued since publicationAmd.No.DateText affectedBSI1S0/1EC38500:2015INTERNATIONALISO/IECSTANDARD38500Second edition2015-02-15Information technology-Governanceof IT for the organizationTechnologies de linformation-Gouvernance des technologies deIinformation pour lentrepriseR
5、eference numberIS0/1EC38500:2015(E)ISOIEC1S0/IEC2015BS1S0/1EC38500:2015IS0/1EC38500:2015(E)COPYRIGHT PROTECTED DOCUMENT1s0/1EC2015All rights reserved.Unless otherwise specified,no part of this publication may be reproduced or utilized otherwise in any formor by any means,electronic or mechanical,inc
6、luding photocopying,or posting on the internet or an intranet,without priorwritten permission.Permission can be requested from either ISO at the address below or IS0s member body in the country ofthe requester.ISO copyright officeCase postale 56.CH-1211 Geneva 20Tel.+41227490111Fax+41227490947E-mail
7、 copyrightiso.orgWeb www.iso.orgPublished in SwitzerlandiiISO/IEC 2015-All rights reservedBS1S0/1EC38500:2015IS0/1IEC38500:2015(E)ContentsPageForeword.ivIntroduction1Scope12Terms and definitions.13Benefits of Good Governance of IT44Principles and Model for Good Governance of IT54.1Principles54.2Model.65Guidance for the Governance of IT85.1General.85.2Principle 1:Responsibility85.3Principle 2:Strategy.85.4Principle 3:Acquisition95.5Principle 4:Performance.95.6Principle 5:Conformance105.7Principle 6:Human Behaviour10Bibliography.12ISO/IEC 2015-All rights reservedi进i
