ISO/IEC 38500 provides principles, definitions, and a model to help the governing bodies understand the importance of Information Technology (IT).This standard is intended to help all types of organizations in evaluating, directing and monitoring the use of Information Technology (IT), regardless of the degree of IT usage. It consists of management practices and decisions associated with the current and future use of IT.
The purpose of this standard is to promote an effective, efficient and acceptable use of IT in all organizations by informing and guiding governing bodies in governing the IT use and establishing an IT governance vocabulary.
ISO/IEC 38500 assists governing bodies to ensure that the use of IT contributes positively to the performance of the organization. Therefore, by fulfilling ISO/IEC 38500 requirements, the organizations are able to monitor IT usage, ensure business continuity and sustainability, align IT with business needs and ensure appropriate implementation and operation of IT assets.