ISO/IEC 38500:2024Governance of IT for the organization

ISO/IEC 38500:2024 sets out fundamental principles for governing bodies and offers guidance to individuals who support these bodies, including executive managers, auditors, and service providers, on the appropriate and efficient utilization of IT within organizations. It addresses the governance of both present and future IT usage, underlining that IT governance is a component of organizational or corporate governance. The standard is intended to be relevant to organizations of all kinds and sizes, with the goal of instilling confidence in IT governance among stakeholders through adherence to the recommended principles and practices. It assists governing bodies in effectively managing IT usage and establishes a universal language for IT governance across organizations.