IT Governance: King III Breakfast

Posted on May 20, 2010

I attended a breakfast session this morning hosted by Ernst & Young exploring the IT governance requirements of King 3.

” King III has shifted the IT governance landscape. Alongside the enhanced IT governance requirements, it recommends adequate reporting to the board in order to assist the board to discharge its responsibility.

What is regarded as sufficient reporting? How can such a technical area be demystified so that the reporting makes sense without losing its substance and meaning? How often are reports to the board required? ”

The presenters were Leon du Rand an independent consultant and previous CIO of ABSA and Marius van den Berg a Director in Ernst & Young Advisory Services who chaired the King III IT Governance subcommittee.

Both of the speakers have tremendous insight into King 3 and IT governance. The presentation covered the King 3 principles, and spent a fair bit of time exploring the process for defining the board reporting, providing a methodology that can be used to achieve this.

The presentation brought home to me the vast size of the task of achieving compliance with the King 3 principles, and of how organisations still need to grapple with just how they are going to tackle this. Much responsibility is placed onto the directors by King 3, and one has to wonder just how much IT experience they have and how directors are going to co-opt this experience onto their boards so they can discharge their responsibilities.

Note : I am a long time employee of Ernst & Young

Some documents available on the EY website that you may find useful :


King III Implementation checklist 

King III Integrated Report Disclosure Checklist

ISACA SA KZN Regional Chapter Meeting – 17 June 2010

Posted on May 20, 2010

Details for the next ISACA SA KZN Regional Chapter meeting.
Region: Durban, KZN
Date: 17 June 2010
Time: 2:30pm for 3pm
Venue: KPMG Services (Proprietary) Limited, 20 Kingsmead Boulevard, Kingsmead Office Park, Durban 4000
Farzana Badat – Compliance Services (Financial Risk Management) will be presenting: “Privacy – Protection of Personal Information”

Overview: Information protection principles. Understanding the practical implications of the PPI Bill for industry. What other organisations are doing to get ready for the PPI Bill. Critical success factors for privacy implementation along with examples of privacy breaches.
Members are encouraged to invite one non-Isaca member to attend the chapter meeting.
Please note:
·         These meetings are free of charge to all members and their guests, there is no charge to attend.
·         Remember that attendance at Chapter meetings counts towards CPE hours.
·         Please RSVP by no later than 15:00hrs Friday, 11 June 2010  to Nadine:
 Please remember that attendance at ISACA events have cost implications for the chapter. We respectfully ask members not to arrive at events unless you have confirmed your attendance by the due date. Likewise, if you have confirmed your attendance, please endeavour to attend the event.

See more ISACA events at the ISACA website.

White Hat – May 2010 : Metadata: Have you sprung a leak?

Posted on May 20, 2010

The details for the next Durban White Hat meeting are now available.

Title: Metadata: Have you sprung a leak?
Speaker: Sean Thomas
Date: 27 May 2010
Time: 18:30
Venue: Elephant Room, M Block.

If you have any problems or need help getting to the venue, email or drop me a mail and I will provide you with whatever details you need.

If all goes according to plan will see you there.

%d bloggers like this: