Explaining IT risk to senior executives and board directors in a meaningful way has always been difficult for computer folks. Now two major independent efforts to bridge the language gap have begun, with a third to follow later this year.
Both the Open Group—long a major force in software standardization—and the International Organization for Standardization announced their gap-bridging efforts in June. The Open Group introduced its Risk Management and Analysis Taxonomy; ISO rolled out its ISO 38500 standard for corporate governance and information technology.
