In this text, the term stakeholder is used to describe those entities, whether people or organizations, that have a “stake” in a particular aspect of planning or operation of the organization. (pg 38)
A stockholder describes someone with ownership of the organizations common or preferred stock shares. (pg 38)
Without specific and detailed planning, organizational units would try to meet goals alone, leaving each unit with their own ideas and initiatives. (pg 38)
When an organization’s stated positions do not match the demonstrated ethical, entrepreneurial, and philosophical approaches of its management teams, the developmental plan becomes unmanageable. (pgs 38-39)
The developmental plan is guided by the organization’s values, vision, missions, and strategy. (pg 39)
One of the first positions that management must articulate is the values statement. (pg 39)
The vision statement expresses what the organization wants to become. (pg 40)
The vision statement is the best case scenario for the organization’s future. (pg 40)
The mission statement explicitly declares the business of the organization and its intended areas of operation. (pg 40)
Many organizations require each division or major department to generate its own mission statement. (pg 40)
Strategic planning lays out long term direction to be taken by the organization. It guides the informational efforts and focuses resources toward specific, clearly defined goals in the midst of an ever-changing environment. (pg 41)
Strategic planning is multilayered, with two key objectives, general strategy and overall strategic planning. (pg 42)
A typical strategic plan includes an executive summary, mission statement and vision statement, organizational profile and history, strategic issues and core values, program goals and objectives, management/operations goals and objectives, and appendices (optional) (strengths, weaknesses, opportunities, and threats) (pg 44)
Strategic planning and corporate responsibility is best accomplished using an approach many call governance, risk management, and compliance (GRC). (pg 45)
ITGI- Information Technology Governance Institute (pg 45)
InfoSec governance, if properly implemented, can yield significant benefits. (pg 46)
CGTF- Corporate Governance Task Force (pg 46)
The Ideal Model governance framework=
Initiating-Lay the ground work for a successful improvement effort.Diagnosing- determine where you are relative to where you want to be.
Establishing- Plan the specifics of how you will reach your destination.
Acting- do the work according to the