Risk governance for IT outsourcing
The board should work closely with management to prioritise and manage the company's high-risk IT vulnerabilities.
IN TODAY'S digital age, information technology (IT) is a significant, if not an integral, part of the operations of most companies. Many businesses outsource part or all of their IT to third- party providers.
The most common types of IT outsourcing are in systems development and maintenance, data centre operations, network administration, disaster recovery services, application hosting, and cloud computing. The outsource function can involve the provision of IT capabilities and facilities by a single third party or multiple vendors located in Singapore or abroad.
The decision to outsource is often one based on cost-benefit analysis, but the important questions around risks and risk management should not be ignored. Many outsourcing deals that go awry can be traced to insufficient consideration of risk mitigation.
BT is now on Telegram!
For daily updates on weekdays and specially selected content for the weekend. Subscribe to t.me/BizTimes
Companies & Markets
UBS weighs synthetic risk transfer amid capital boost proposals
Oil settles higher on supply concerns in the Mid-East, economic woes subdue gains
S-Reits falter as investors weigh possibility of zero rate cuts in 2024
CapitaLand Investment posts total revenue of S$650 million for Q1
Europe: Stoxx 600 logs best day in three months as banks shine
US: Stocks rally after strong tech results