Risk governance for IT outsourcing
The board should work closely with management to prioritise and manage the company's high-risk IT vulnerabilities.
IN TODAY'S digital age, information technology (IT) is a significant, if not an integral, part of the operations of most companies. Many businesses outsource part or all of their IT to third- party providers.
The most common types of IT outsourcing are in systems development and maintenance, data centre operations, network administration, disaster recovery services, application hosting, and cloud computing. The outsource function can involve the provision of IT capabilities and facilities by a single third party or multiple vendors located in Singapore or abroad.
The decision to outsource is often one based on cost-benefit analysis, but the important questions around risks and risk management should not be ignored. Many outsourcing deals that go awry can be traced to insufficient consideration of risk mitigation.
BT is now on Telegram!
For daily updates on weekdays and specially selected content for the weekend. Subscribe to t.me/BizTimes
Companies & Markets
Suntec Reit Q1 DPU down 13% to S$0.01511 in absence of capital distribution
Sheng Siong Q1 net profit up 9.3% on higher revenue
Great Eastern chairman appeals for patience as shareholders fume over share price ‘disaster’
Changi Airport’s Q1 passenger movements surpass pre-pandemic levels
S&P Global first-quarter profit beats estimates on strong product demand
Malaysia mulls over plans for casino in Forest City as part of Johor-S’pore Special Economic Zone: sources